From de918b22e1a3eda9a1680c22ebab5d9e22cca438 Mon Sep 17 00:00:00 2001 From: DashlordBetaGouvBot Date: Sun, 14 Jan 2024 23:03:55 +0000 Subject: [PATCH] chore: report update --- report.json | 154805 ++++++++++++++++++++++++------------------------- 1 file changed, 76205 insertions(+), 78600 deletions(-) diff --git a/report.json b/report.json index 7fb504bdf78..6797f48c0d2 100644 --- a/report.json +++ b/report.json @@ -10,7 +10,7 @@ "http": { "url": "https://api.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:22:09 GMT", + "end_time": "Sun, 14 Jan 2024 01:22:44 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -19,17 +19,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 01:22:06 GMT", - "ETag": "\"184fhxe98pj13s7\"", + "Date": "Sun, 14 Jan 2024 01:22:41 GMT", + "ETag": "\"oknvj3udeo17ik\"", "Server": "nginx/1.18.0 (Ubuntu)", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js", "x-nextjs-cache": "HIT" }, - "scan_id": 46226245, + "scan_id": 46434939, "score": 20, - "start_time": "Sun, 07 Jan 2024 01:17:38 GMT", + "start_time": "Sun, 14 Jan 2024 01:22:37 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -203,7 +203,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-03T22:52:39Z", + "up_since": "2024-01-09T21:08:53Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -215,8 +215,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T01:31:28Z", - "next_check_at": "2024-01-07T01:36:27Z", + "last_check_at": "2024-01-14T01:30:55Z", + "next_check_at": "2024-01-14T01:35:54Z", "created_at": "2021-04-22T19:48:42Z", "mute_until": null, "favicon_url": "https://api.gouv.fr/favicons/favicon.ico", @@ -224,7 +224,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T01:11:35Z", + "tested_at": "2024-01-14T01:30:58Z", "expires_at": "2024-03-29T09:55:39Z", "valid": true, "error": null @@ -233,11 +233,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 204, - "connection": 188, - "handshake": 383, - "response": 190, - "total": 964 + "namelookup": 179, + "connection": 140, + "handshake": 289, + "response": 147, + "total": 754 } }, "uptimeGrade": "A", @@ -256,39 +256,39 @@ "version": "8.2p1 Ubuntu 4ubuntu0.11", "vulnerabilities": [ { + "id": "CVE-2020-15778", "is_exploit": "false", "cvss": "6.8", - "id": "CVE-2020-15778", "type": "cve" }, { + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", "is_exploit": "true", "cvss": "6.8", - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", "type": "githubexploit" }, { + "id": "10213DBE-F683-58BB-B6D3-353173626207", "is_exploit": "true", "cvss": "6.8", - "id": "10213DBE-F683-58BB-B6D3-353173626207", "type": "githubexploit" }, { + "id": "PRION:CVE-2020-12062", "is_exploit": "false", "cvss": "5.0", - "id": "PRION:CVE-2020-12062", "type": "prion" }, { + "id": "PRION:CVE-2016-20012", "is_exploit": "false", "cvss": "5.0", - "id": "PRION:CVE-2016-20012", "type": "prion" }, { + "id": "CVE-2020-12062", "is_exploit": "false", "cvss": "5.0", - "id": "CVE-2020-12062", "type": "cve" } ] @@ -665,7 +665,7 @@ "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "OK", - "finding": "82 >= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", @@ -875,7 +875,7 @@ "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "1704590633" + "finding": "1705195466" }, { "id": "HSTS", @@ -1431,7 +1431,7 @@ "ip": "api.gouv.fr/149.202.190.28", "port": "443", "severity": "INFO", - "finding": "126" + "finding": "125" } ], "thirdparties": { @@ -1442,7 +1442,7 @@ "value": "1", "domain": "api.gouv.fr", "path": "/", - "expires": 1704592358, + "expires": 1705197193, "size": 16, "httpOnly": false, "secure": false, @@ -1454,10 +1454,10 @@ }, { "name": "_pk_id.22.382f", - "value": "9c14731313efb964.1704590559.", + "value": "807319c25912a4bf.1705195394.", "domain": "api.gouv.fr", "path": "/", - "expires": 1738545759, + "expires": 1739150594, "size": 42, "httpOnly": false, "secure": false, @@ -1472,8 +1472,8 @@ "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 01:22:37 GMT", - "etag": "\"184fhxe98pj13s7\"", + "date": "Sun, 14 Jan 2024 01:23:12 GMT", + "etag": "\"oknvj3udeo17ik\"", "server": "nginx/1.18.0 (Ubuntu)", "vary": "Accept-Encoding", "x-nextjs-cache": "HIT", @@ -1790,26 +1790,179 @@ } ] }, - "zap": null, + "zap": { + "@programName": "ZAP", + "@version": "2.14.0", + "@generated": "Sun, 14 Jan 2024 01:22:12", + "site": [ + { + "@name": "https://api.gouv.fr", + "@host": "api.gouv.fr", + "@port": "443", + "@ssl": "true", + "alerts": [ + { + "name": "Content Security Policy (CSP) Header Not Set", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "Missing Anti-clickjacking Header", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "

The response does not include either Content-Security-Policy with 'frame-ancestors' directive or X-Frame-Options to protect against 'ClickJacking' attacks.

" + }, + { + "name": "Dangerous JS Functions", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" + }, + { + "name": "Permissions Policy Header Not Set", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" + }, + { + "name": "Server Leaks Information via \"X-Powered-By\" HTTP Response Header Field(s)", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

The web/application server is leaking information via one or more \"X-Powered-By\" HTTP response headers. Access to such information may facilitate attackers identifying other frameworks/components your web application is reliant upon and the vulnerabilities such components may be subject to.

" + }, + { + "name": "Server Leaks Version Information via \"Server\" HTTP Response Header Field", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

The web/application server is leaking version information via the \"Server\" HTTP response header. Access to such information may facilitate attackers identifying other vulnerabilities your web/application server is subject to.

" + }, + { + "name": "Strict-Transport-Security Header Not Set", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.

" + }, + { + "name": "Timestamp Disclosure - Unix", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A timestamp was disclosed by the application/web server - Unix

" + }, + { + "name": "X-Content-Type-Options Header Missing", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.

" + }, + { + "name": "Base64 Disclosure", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" + }, + { + "name": "Content-Type Header Missing", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The Content-Type header was either missing or empty.

" + }, + { + "name": "Information Disclosure - Suspicious Comments", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" + }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" + }, + { + "name": "Re-examine Cache-control Directives", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" + }, + { + "name": "Sec-Fetch-Dest Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.

" + }, + { + "name": "Sec-Fetch-Mode Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.

" + }, + { + "name": "Sec-Fetch-Site Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Specifies the relationship between request initiator's origin and target's origin.

" + }, + { + "name": "Sec-Fetch-User Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Specifies if a navigation request was initiated by a user.

" + }, + { + "name": "Storable and Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" + }, + { + "name": "Storable but Non-Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" + } + ] + } + ] + }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "CAA Record", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "caa" ], - "description": "DNS DMARC information was detected.\n", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -1819,36 +1972,33 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "api.gouv.fr.", - "matched-at": "_dmarc.api.gouv.fr", - "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" - ], - "timestamp": "2024-01-07T01:25:57.294040514Z", + "matched-at": "api.gouv.fr", + "timestamp": "2024-01-14T01:26:31.107713217Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -1858,13 +2008,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "api.gouv.fr.", - "matched-at": "api.gouv.fr", - "timestamp": "2024-01-07T01:25:57.401745063Z", + "matched-at": "_dmarc.api.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + ], + "timestamp": "2024-01-14T01:26:31.116592416Z", "matcher-status": true }, { @@ -1902,10 +2056,10 @@ "matched-at": "api.gouv.fr", "extracted-results": [ "1 mx1.ovh.net.", - "5 mx2.ovh.net.", - "100 mxb.ovh.net." + "100 mxb.ovh.net.", + "5 mx2.ovh.net." ], - "timestamp": "2024-01-07T01:25:57.805872498Z", + "timestamp": "2024-01-14T01:26:31.2292381Z", "matcher-status": true }, { @@ -1941,14 +2095,14 @@ "host": "api.gouv.fr.", "matched-at": "api.gouv.fr", "extracted-results": [ - "\"google-site-verification=6LnXgjWSo1BZA0bGwIpPwxkv6wJXlav37nt5OuBlu4c\"", - "\"google-site-verification=ld_Y4E2WCMYwp-QQ5qDQLWzxQO7YKsEeHtTe8aScRcE\"", "\"google-site-verification=mtU0zHGIV-mwFoyp1bM0f67XKGJEQOxlfM5t1BTTeHA\"", - "\"v=spf1 mx include:spf.sendinblue.com include:spf.mailjet.com include:mx.ovh.com ~all\"", + "\"google-site-verification=ld_Y4E2WCMYwp-QQ5qDQLWzxQO7YKsEeHtTe8aScRcE\"", "\"1|www.api.gouv.fr\"", - "\"Sendinblue-code:2338554a9d09e27cb9014c7b56690dca\"" + "\"google-site-verification=6LnXgjWSo1BZA0bGwIpPwxkv6wJXlav37nt5OuBlu4c\"", + "\"Sendinblue-code:2338554a9d09e27cb9014c7b56690dca\"", + "\"v=spf1 mx include:spf.sendinblue.com include:spf.mailjet.com include:mx.ovh.com ~all\"" ], - "timestamp": "2024-01-07T01:25:58.292809297Z", + "timestamp": "2024-01-14T01:26:32.107608753Z", "matcher-status": true }, { @@ -1981,10 +2135,10 @@ "host": "api.gouv.fr.", "matched-at": "api.gouv.fr", "extracted-results": [ - "ns18.ovh.net.", - "dns18.ovh.net." + "dns18.ovh.net.", + "ns18.ovh.net." ], - "timestamp": "2024-01-07T01:25:58.41150473Z", + "timestamp": "2024-01-14T01:26:32.231191636Z", "matcher-status": true }, { @@ -2014,7 +2168,7 @@ "HEAD" ], "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:26:12.794645679Z", + "timestamp": "2024-01-14T01:26:46.513671783Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2046,7 +2200,7 @@ "nginx/1.18.0" ], "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:26:24.353961509Z", + "timestamp": "2024-01-14T01:26:58.288231238Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2073,7 +2227,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:17.476121922Z", + "timestamp": "2024-01-14T01:27:52.071535863Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2100,7 +2254,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:17.4761586Z", + "timestamp": "2024-01-14T01:27:52.071590525Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2132,12 +2286,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132698095Z", + "timestamp": "2024-01-14T01:28:12.015911829Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2169,12 +2323,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132740174Z", + "timestamp": "2024-01-14T01:28:12.015950682Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2206,12 +2360,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-frame-options", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132755051Z", + "timestamp": "2024-01-14T01:28:12.015961162Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2243,12 +2397,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132768727Z", + "timestamp": "2024-01-14T01:28:12.015975328Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2280,12 +2434,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132782683Z", + "timestamp": "2024-01-14T01:28:12.015989284Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2317,12 +2471,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "clear-site-data", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132795447Z", + "timestamp": "2024-01-14T01:28:12.016004552Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2354,12 +2508,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132808331Z", + "timestamp": "2024-01-14T01:28:12.016017096Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2391,12 +2545,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132821967Z", + "timestamp": "2024-01-14T01:28:12.01603032Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2428,12 +2582,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132835091Z", + "timestamp": "2024-01-14T01:28:12.016043435Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2465,12 +2619,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.1328506Z", + "timestamp": "2024-01-14T01:28:12.016061649Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2502,12 +2656,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:27:37.132864316Z", + "timestamp": "2024-01-14T01:28:12.016075635Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr'", "matcher-status": true }, @@ -2535,7 +2689,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr/robots.txt", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:28:00.200888135Z", + "timestamp": "2024-01-14T01:28:34.765227668Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr/robots.txt'", "matcher-status": true }, @@ -2573,7 +2727,7 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrantOrg", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", @@ -2581,7 +2735,7 @@ "DINSIC ISN" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162384962Z", + "timestamp": "2024-01-14T01:28:35.904306543Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2619,15 +2773,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "registrantPhone", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "DINSIC ISN" + "+33.681349243" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162422152Z", + "timestamp": "2024-01-14T01:28:35.904354513Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2665,15 +2819,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrantAddress", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "swscdmldpsaea7q26su0@y.o-w-o.info" + "39 quai Andre Citroen", + "Paris", + "75015", + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162432361Z", + "timestamp": "2024-01-14T01:28:35.904370963Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2720,7 +2877,7 @@ "dns18.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162441288Z", + "timestamp": "2024-01-14T01:28:35.904387294Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2758,15 +2915,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "status", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "2024-02-24T18:09:37Z" + "active" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162454743Z", + "timestamp": "2024-01-14T01:28:35.904402743Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2804,15 +2961,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "2016-02-24T18:09:37Z" + "2023-10-19T13:36:35.060437Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162469771Z", + "timestamp": "2024-01-14T01:28:35.904415677Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2850,15 +3007,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "expirationDate", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "2023-10-19T13:36:35.060437Z" + "2024-02-24T18:09:37Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162485711Z", + "timestamp": "2024-01-14T01:28:35.904429452Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2896,15 +3053,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "registrantName", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "+33.681349243" + "DINSIC ISN" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162499426Z", + "timestamp": "2024-01-14T01:28:35.90446584Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2942,18 +3099,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "secureDNS", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "FR", - "39 quai Andre Citroen", - "Paris", - "75015" + "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.16251213Z", + "timestamp": "2024-01-14T01:28:35.904482492Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -2991,15 +3145,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "registrationDate", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "FR" + "2016-02-24T18:09:37Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162527759Z", + "timestamp": "2024-01-14T01:28:35.90449774Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3037,15 +3191,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantEmail", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "false" + "swscdmldpsaea7q26su0@y.o-w-o.info" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162543569Z", + "timestamp": "2024-01-14T01:28:35.904511005Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3083,15 +3237,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "registrantCountry", "type": "http", "host": "https://api.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/api.gouv.fr", "extracted-results": [ - "active" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T01:28:01.162556513Z", + "timestamp": "2024-01-14T01:28:35.904537805Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/api.gouv.fr'", "matcher-status": true }, @@ -3131,7 +3285,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr/", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:28:30.420354113Z", + "timestamp": "2024-01-14T01:29:05.311985001Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr/'", "matcher-status": true }, @@ -3171,7 +3325,7 @@ "host": "https://api.gouv.fr", "matched-at": "https://api.gouv.fr/", "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:28:30.420396562Z", + "timestamp": "2024-01-14T01:29:05.31202703Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.gouv.fr/'", "matcher-status": true }, @@ -3221,7 +3375,7 @@ "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11" ], "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:29:43.504990463Z", + "timestamp": "2024-01-14T01:30:19.204221971Z", "matcher-status": true }, { @@ -3251,7 +3405,7 @@ "Let's Encrypt" ], "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:30:34.473672215Z", + "timestamp": "2024-01-14T01:31:09.242568732Z", "matcher-status": true }, { @@ -3282,7 +3436,7 @@ "www.api.gouv.fr" ], "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:30:34.473780797Z", + "timestamp": "2024-01-14T01:31:09.242707941Z", "matcher-status": true }, { @@ -3313,7 +3467,7 @@ "tls12" ], "ip": "149.202.190.28", - "timestamp": "2024-01-07T01:30:36.456647441Z", + "timestamp": "2024-01-14T01:31:12.009535031Z", "matcher-status": true } ], @@ -3321,7 +3475,7 @@ { "requestedUrl": "https://api.gouv.fr/", "finalUrl": "https://api.gouv.fr/", - "fetchTime": "2024-01-07T01:17:27.023Z", + "fetchTime": "2024-01-14T01:22:26.476Z", "runWarnings": [], "categories": { "performance": { @@ -3353,7 +3507,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 1 }, "seo": { "title": "SEO", @@ -3384,53 +3538,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3219, + "numericValue": 2353, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1828, - "firstMeaningfulPaint": 2288, - "largestContentfulPaint": 3286, - "interactive": 3219, - "speedIndex": 2716, - "totalBlockingTime": 129, - "maxPotentialFID": 161, - "cumulativeLayoutShift": 0.10415353732638889, - "cumulativeLayoutShiftMainFrame": 0.10415353732638889, - "totalCumulativeLayoutShift": 0.11437570529513891, + "firstContentfulPaint": 1776, + "firstMeaningfulPaint": 2226, + "largestContentfulPaint": 3051, + "interactive": 2353, + "speedIndex": 2647, + "totalBlockingTime": 75, + "maxPotentialFID": 199, + "cumulativeLayoutShift": 0.10117746310763889, + "cumulativeLayoutShiftMainFrame": 0.10117746310763889, + "totalCumulativeLayoutShift": 0.10997629123263891, "observedTimeOrigin": 0, - "observedTimeOriginTs": 320965305, + "observedTimeOriginTs": 611723445, "observedNavigationStart": 0, - "observedNavigationStartTs": 320965305, - "observedFirstPaint": 1018, - "observedFirstPaintTs": 321982810, - "observedFirstContentfulPaint": 1018, - "observedFirstContentfulPaintTs": 321982810, - "observedFirstContentfulPaintAllFrames": 1018, - "observedFirstContentfulPaintAllFramesTs": 321982810, - "observedFirstMeaningfulPaint": 1286, - "observedFirstMeaningfulPaintTs": 322250896, - "observedLargestContentfulPaint": 1286, - "observedLargestContentfulPaintTs": 322250896, - "observedLargestContentfulPaintAllFrames": 1286, - "observedLargestContentfulPaintAllFramesTs": 322250896, - "observedTraceEnd": 4238, - "observedTraceEndTs": 325203658, - "observedLoad": 1919, - "observedLoadTs": 322884360, - "observedDomContentLoaded": 1140, - "observedDomContentLoadedTs": 322105780, - "observedCumulativeLayoutShift": 0.10415353732638889, - "observedCumulativeLayoutShiftMainFrame": 0.10415353732638889, - "observedTotalCumulativeLayoutShift": 0.11437570529513891, - "observedFirstVisualChange": 1021, - "observedFirstVisualChangeTs": 321986305, - "observedLastVisualChange": 4238, - "observedLastVisualChangeTs": 325203305, - "observedSpeedIndex": 1270, - "observedSpeedIndexTs": 322235110 + "observedNavigationStartTs": 611723445, + "observedFirstPaint": 1001, + "observedFirstPaintTs": 612724063, + "observedFirstContentfulPaint": 1001, + "observedFirstContentfulPaintTs": 612724063, + "observedFirstContentfulPaintAllFrames": 1001, + "observedFirstContentfulPaintAllFramesTs": 612724063, + "observedFirstMeaningfulPaint": 1246, + "observedFirstMeaningfulPaintTs": 612969468, + "observedLargestContentfulPaint": 1246, + "observedLargestContentfulPaintTs": 612969468, + "observedLargestContentfulPaintAllFrames": 1246, + "observedLargestContentfulPaintAllFramesTs": 612969468, + "observedTraceEnd": 4088, + "observedTraceEndTs": 615811762, + "observedLoad": 1779, + "observedLoadTs": 613502839, + "observedDomContentLoaded": 1123, + "observedDomContentLoadedTs": 612846020, + "observedCumulativeLayoutShift": 0.10117746310763889, + "observedCumulativeLayoutShiftMainFrame": 0.10117746310763889, + "observedTotalCumulativeLayoutShift": 0.10997629123263891, + "observedFirstVisualChange": 1002, + "observedFirstVisualChangeTs": 612725445, + "observedLastVisualChange": 4085, + "observedLastVisualChangeTs": 615808445, + "observedSpeedIndex": 1245, + "observedSpeedIndexTs": 612967980 }, { "lcpInvalidated": false @@ -3448,23 +3602,23 @@ "type": "debugdata", "items": [ { - "numRequests": 33, + "numRequests": 34, "numScripts": 12, "numStylesheets": 2, "numFonts": 3, - "numTasks": 966, - "numTasksOver10ms": 4, + "numTasks": 923, + "numTasksOver10ms": 3, "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 148.633, - "throughput": 7047366.450653998, - "maxRtt": 152.15, - "maxServerLatency": 299.50199999999995, - "totalByteWeight": 674555, - "totalTaskTime": 261.34999999999894, - "mainDocumentTransferSize": 15181 + "rtt": 150.276, + "throughput": 4864821.753026045, + "maxRtt": 150.898, + "maxServerLatency": 276.306, + "totalByteWeight": 507981, + "totalTaskTime": 257.67199999999906, + "mainDocumentTransferSize": 16051 } ] } @@ -3572,7 +3726,7 @@ "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.96, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, + "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", "lighthouse_seo": 0.99, "lighthouse_seoGrade": "A", @@ -3594,7 +3748,7 @@ "http": { "url": "https://api.trackdechets.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:22:07 GMT", + "end_time": "Sun, 14 Jan 2024 01:19:28 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -3608,7 +3762,7 @@ "Cross-Origin-Embedder-Policy": "require-corp", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 01:22:06 GMT", + "Date": "Sun, 14 Jan 2024 01:19:26 GMT", "ETag": "W/\"196-HUCJKwlQurC5GNaaJnH0d+HOnRw\"", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "no-referrer", @@ -3621,13 +3775,13 @@ "X-Permitted-Cross-Domain-Policies": "none", "X-RateLimit-Limit": "1000", "X-RateLimit-Remaining": "998", - "X-RateLimit-Reset": "1704590586", - "X-Request-ID": "52b0c8262801656d9a58c470b751b5b5", + "X-RateLimit-Reset": "1705195226", + "X-Request-ID": "6a474d30a27dfe26cfeaa8234131786f", "X-XSS-Protection": "0" }, - "scan_id": 46226256, + "scan_id": 46434913, "score": 110, - "start_time": "Sun, 07 Jan 2024 01:19:11 GMT", + "start_time": "Sun, 14 Jan 2024 01:19:23 GMT", "state": "FINISHED", "status_code": 400, "tests_failed": 0, @@ -3649,9 +3803,9 @@ "'none'" ], "font-src": [ - "https:", "data:", - "'self'" + "'self'", + "https:" ], "form-action": [ "self" @@ -3672,9 +3826,9 @@ "'none'" ], "style-src": [ - "https:", "'sha256-47deqpj8hbsa+/timw+5jceuqerkm5nmpjwzg3hsufu='", - "'self'" + "'self'", + "https:" ], "upgrade-insecure-requests": [ "'none'" @@ -3874,77 +4028,77 @@ "testssl": [ { "id": "service", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -3952,7 +4106,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -3960,7 +4114,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -3968,7 +4122,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -3976,7 +4130,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -3984,7 +4138,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -3992,497 +4146,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "03FA57E5C442FC0EA52ACAAA2CFBD006ABF6" }, { "id": "cert_serialNumberLen", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "AB7C9A465E2368CADEFEE7B3E90420A65128EC06" }, { "id": "cert_fingerprintSHA256", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "9FEA18876EE3B2D062CF7DB4A4EB7031966467D082698318F7984F8DAB20EFA0" }, { "id": "cert", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "api.trackdechets.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "api.trackdechets.beta.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "api.trackdechets.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "2023-11-26 08:51" }, { "id": "cert_notAfter", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "2024-02-24 08:51" }, { "id": "cert_extlifeSpan", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "400 Bad Request ('/') -- better try another URL" }, { "id": "HTTP_clock_skew", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", - "finding": "1704590591" + "finding": "1705195243" }, { "id": "HSTS_time", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "default-src 'none';base-uri 'self';font-src 'self' https: data:;frame-ancestors 'self';img-src 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=';connect-src api.trackdechets.beta.gouv.fr;form-action self;upgrade-insecure-requests" }, { "id": "X-XSS-Protection", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Access-Control-Allow-Origin", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "https://app.trackdechets.beta.gouv.fr" }, { "id": "Referrer-Policy", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -4490,7 +4644,7 @@ }, { "id": "heartbleed", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -4499,7 +4653,7 @@ }, { "id": "CCS", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -4508,7 +4662,7 @@ }, { "id": "ticketbleed", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -4517,7 +4671,7 @@ }, { "id": "ROBOT", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -4526,7 +4680,7 @@ }, { "id": "secure_renego", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -4534,7 +4688,7 @@ }, { "id": "secure_client_renego", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -4543,7 +4697,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -4552,7 +4706,7 @@ }, { "id": "BREACH", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -4561,7 +4715,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -4570,14 +4724,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -4586,7 +4740,7 @@ }, { "id": "FREAK", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -4595,7 +4749,7 @@ }, { "id": "DROWN", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -4604,7 +4758,7 @@ }, { "id": "DROWN_hint", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -4613,7 +4767,7 @@ }, { "id": "LOGJAM", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -4622,7 +4776,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -4631,7 +4785,7 @@ }, { "id": "BEAST", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -4640,7 +4794,7 @@ }, { "id": "LUCKY13", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -4649,7 +4803,7 @@ }, { "id": "winshock", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -4658,7 +4812,7 @@ }, { "id": "RC4", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -4667,325 +4821,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "api.trackdechets.beta.gouv.fr/185.179.149.96", + "ip": "api.trackdechets.beta.gouv.fr/185.231.167.96", "port": "443", "severity": "INFO", - "finding": "54" + "finding": "56" } ], "thirdparties": { @@ -5000,7 +5154,7 @@ "cross-origin-embedder-policy": "require-corp", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 07 Jan 2024 01:22:28 GMT", + "date": "Sun, 14 Jan 2024 01:19:59 GMT", "etag": "W/\"378-MAeTIgaPkJnVE7n+BcgLws4/LM4\"", "origin-agent-cluster": "?1", "referrer-policy": "no-referrer", @@ -5012,15 +5166,15 @@ "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", "x-ratelimit-limit": "1000", - "x-ratelimit-remaining": "999", - "x-ratelimit-reset": "1704590609", - "x-request-id": "83b64f6025ae0b206f2b47789cde95c6", + "x-ratelimit-remaining": "992", + "x-ratelimit-reset": "1705195219", + "x-request-id": "b57d84e2969845434cc8120cdc47c05e", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "api.trackdechets.beta.gouv.fr", - "ip": "185.179.149.96", + "ip": "185.231.167.96", "geoip": { "continent": { "code": "EU", @@ -5165,7 +5319,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 01:18:43", + "@generated": "Sun, 14 Jan 2024 01:18:57", "site": [ { "@name": "https://api.trackdechets.beta.gouv.fr", @@ -5308,7 +5462,7 @@ "extracted-results": [ "trackdechets-api.baleen.cshield.net." ], - "timestamp": "2024-01-07T01:24:29.535592865Z", + "timestamp": "2024-01-14T01:22:04.495594524Z", "matcher-status": true }, { @@ -5343,7 +5497,7 @@ "type": "dns", "host": "api.trackdechets.beta.gouv.fr.", "matched-at": "api.trackdechets.beta.gouv.fr", - "timestamp": "2024-01-07T01:24:29.540098741Z", + "timestamp": "2024-01-14T01:22:04.824385116Z", "matcher-status": true }, { @@ -5369,7 +5523,7 @@ "host": "https://api.trackdechets.beta.gouv.fr", "matched-at": "https://api.trackdechets.beta.gouv.fr", "ip": "185.231.167.96", - "timestamp": "2024-01-07T01:25:07.986362648Z", + "timestamp": "2024-01-14T01:22:43.228291788Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -5406,7 +5560,7 @@ "host": "https://api.trackdechets.beta.gouv.fr", "matched-at": "https://api.trackdechets.beta.gouv.fr", "ip": "185.231.167.96", - "timestamp": "2024-01-07T01:25:18.08032658Z", + "timestamp": "2024-01-14T01:22:53.256086996Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -5443,7 +5597,7 @@ "host": "https://api.trackdechets.beta.gouv.fr", "matched-at": "https://api.trackdechets.beta.gouv.fr", "ip": "185.231.167.96", - "timestamp": "2024-01-07T01:25:18.08038034Z", + "timestamp": "2024-01-14T01:22:53.256143371Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -5474,7 +5628,7 @@ "Let's Encrypt" ], "ip": "185.231.167.96", - "timestamp": "2024-01-07T01:27:25.220623484Z", + "timestamp": "2024-01-14T01:24:59.935253795Z", "matcher-status": true }, { @@ -5504,7 +5658,7 @@ "api.trackdechets.beta.gouv.fr" ], "ip": "185.231.167.96", - "timestamp": "2024-01-07T01:27:25.220757703Z", + "timestamp": "2024-01-14T01:24:59.935360595Z", "matcher-status": true }, { @@ -5535,7 +5689,7 @@ "tls12" ], "ip": "185.231.167.96", - "timestamp": "2024-01-07T01:27:26.740404696Z", + "timestamp": "2024-01-14T01:25:01.329622684Z", "matcher-status": true }, { @@ -5566,7 +5720,7 @@ "tls13" ], "ip": "185.231.167.96", - "timestamp": "2024-01-07T01:27:26.947975233Z", + "timestamp": "2024-01-14T01:25:01.532069362Z", "matcher-status": true } ], @@ -5574,7 +5728,7 @@ { "requestedUrl": "https://api.trackdechets.beta.gouv.fr/", "finalUrl": "https://api.trackdechets.beta.gouv.fr/", - "fetchTime": "2024-01-07T01:18:58.398Z", + "fetchTime": "2024-01-14T01:19:11.040Z", "runWarnings": [], "categories": { "performance": { @@ -5585,7 +5739,7 @@ "snapshot" ], "id": "performance", - "score": 0.983953857421875 + "score": 0.9839567184448242 }, "accessibility": { "title": "Accessibility", @@ -5637,48 +5791,48 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5876, + "numericValue": 5881, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5876, - "firstMeaningfulPaint": 5876, - "interactive": 5876, - "speedIndex": 5876, + "firstContentfulPaint": 5881, + "firstMeaningfulPaint": 5881, + "interactive": 5881, + "speedIndex": 5881, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 432650243, + "observedTimeOriginTs": 513503846, "observedNavigationStart": 0, - "observedNavigationStartTs": 432650243, - "observedFirstPaint": 794, - "observedFirstPaintTs": 433444591, - "observedFirstContentfulPaint": 1187, - "observedFirstContentfulPaintTs": 433837366, - "observedFirstContentfulPaintAllFrames": 1187, - "observedFirstContentfulPaintAllFramesTs": 433837366, - "observedFirstMeaningfulPaint": 1187, - "observedFirstMeaningfulPaintTs": 433837366, - "observedTraceEnd": 4331, - "observedTraceEndTs": 436981442, - "observedLoad": 926, - "observedLoadTs": 433576074, + "observedNavigationStartTs": 513503846, + "observedFirstPaint": 863, + "observedFirstPaintTs": 514366416, + "observedFirstContentfulPaint": 1181, + "observedFirstContentfulPaintTs": 514684498, + "observedFirstContentfulPaintAllFrames": 1181, + "observedFirstContentfulPaintAllFramesTs": 514684498, + "observedFirstMeaningfulPaint": 1181, + "observedFirstMeaningfulPaintTs": 514684498, + "observedTraceEnd": 4415, + "observedTraceEndTs": 517918956, + "observedLoad": 947, + "observedLoadTs": 514450613, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 432650777, + "observedDomContentLoadedTs": 513504369, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 782, - "observedFirstVisualChangeTs": 433432243, - "observedLastVisualChange": 1649, - "observedLastVisualChangeTs": 434299243, - "observedSpeedIndex": 1306, - "observedSpeedIndexTs": 433955808 + "observedFirstVisualChange": 842, + "observedFirstVisualChangeTs": 514345846, + "observedLastVisualChange": 1658, + "observedLastVisualChangeTs": 515161846, + "observedSpeedIndex": 1374, + "observedSpeedIndexTs": 514878237 }, { "lcpInvalidated": false @@ -5700,19 +5854,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 0, - "numTasks": 18, + "numTasks": 16, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 81.122, - "throughput": 14112691.191747107, - "maxRtt": 81.122, - "maxServerLatency": 26.260000000000005, - "totalByteWeight": 1132704, - "totalTaskTime": 5.980999999999999, - "mainDocumentTransferSize": 1249 + "rtt": 88.23599999999999, + "throughput": 12673017.968624106, + "maxRtt": 88.23599999999999, + "maxServerLatency": 30.50400000000002, + "totalByteWeight": 1132689, + "totalTaskTime": 5.208, + "mainDocumentTransferSize": 1248 } ] } @@ -5816,7 +5970,7 @@ "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.983953857421875, + "lighthouse_performance": 0.9839567184448242, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.64, "lighthouse_accessibilityGrade": "C", @@ -5845,7 +5999,7 @@ "http": { "url": "https://annuaire-entreprises.data.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:22:07 GMT", + "end_time": "Sun, 14 Jan 2024 01:17:18 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -5854,16 +6008,16 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 01:22:06 GMT", + "Date": "Sun, 14 Jan 2024 01:17:17 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46226244, + "scan_id": 46434900, "score": 55, - "start_time": "Sun, 07 Jan 2024 01:17:32 GMT", + "start_time": "Sun, 14 Jan 2024 01:17:15 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -6402,7 +6556,7 @@ "ip": "annuaire-entreprises.data.gouv.fr/185.231.164.12", "port": "443", "severity": "MEDIUM", - "finding": "expires < 30 days (22)" + "finding": "expires < 30 days (15)" }, { "id": "cert_notBefore", @@ -6570,7 +6724,7 @@ "ip": "annuaire-entreprises.data.gouv.fr/185.231.164.12", "port": "443", "severity": "INFO", - "finding": "1704590608" + "finding": "1705195121" }, { "id": "HSTS_time", @@ -7154,7 +7308,7 @@ "ip": "annuaire-entreprises.data.gouv.fr/185.231.164.12", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "55" } ], "thirdparties": { @@ -7174,7 +7328,7 @@ "value": "1", "domain": "annuaire-entreprises.data.gouv.fr", "path": "/", - "expires": 1704592352, + "expires": 1705196870, "size": 17, "httpOnly": false, "secure": false, @@ -7186,10 +7340,10 @@ }, { "name": "_pk_id.145.4c08", - "value": "a40b2cd53e09b2ea.1704590552.", + "value": "0a9a586a96e70e75.1705195070.", "domain": "annuaire-entreprises.data.gouv.fr", "path": "/", - "expires": 1738545752, + "expires": 1739150270, "size": 43, "httpOnly": false, "secure": false, @@ -7201,10 +7355,10 @@ }, { "name": "annuaire-entreprises-session", - "value": "Fe26.2*1*9ca4adeab27caa050e70ba2ac2c138d919575ac907adaac1fd1d16118bf55781*kNh3fzOPQKszlI9oSch5GA*TwJADwtyJ6FQDzyVVVsRSQR3HfUJSJUaNwez9K5mxE1iuv1EpY5ZhFIqDvqUlMJ_*1705886551340*834bbd7dc9c5c3820f85c70cb3bce8e3494889b763e96b8f22ff8ccdd24b6e3d*wzSqxPYP8NoZZKDTqVVXXmwtO5JVzg3wgjbgWqf_q1Q~2", + "value": "Fe26.2*1*a57c1cdb880fab4361cb9e7913e383f4d0bff0e9d78a784415d96ec6c278bc09*XleGHO31eXGCTYxyjLaoJg*BxVeK4mrBFUri837DOKkfsu_9u0pRXuro1RXCPH6DD_bf42uQb6fZUcD_z5tvsf5*1706491069327*60ddea16eea410f036d53923dc59a1c0aac69d046e429c1fe5ae0dc82de79628*jdYQuXGZZjrsNm5lgApGR-Jzco-dZtoEexq-aYrkZ1E~2", "domain": "annuaire-entreprises.data.gouv.fr", "path": "/", - "expires": 1705886491.40774, + "expires": 1706491009.402963, "size": 314, "httpOnly": true, "secure": true, @@ -7216,10 +7370,10 @@ }, { "name": "bln_challengejs", - "value": "5iJfyJvAnKY8cJxyMtsWvt---TFoyjyrH8nAmOxaZn06_PURLOI6hDLomD0uNlsNUd2uS8I5k3DBzd6PdQr0k4jDcd5p1q-wHkd8oGSujiqcrvxN-lnq_sdoK-BNJMNePP5yiWxpPr8-6qLPy9DvKgm1kwyaGs8lGyAWS_YxG_oxjzwNzA1iNb2WlIyRJOE6OySoBQC-kLnA3-7DPS-svePCpGr4eOd-W2F2qiiBXgQmkAREKkYxcXUQB8EuBSClMo48ne4F6ZG7u9opmhEqTA", + "value": "OV93u6jvpZGYtfwkl_8mBc75lJxwTHHpXFSG9pl6DZCH60Soa4Xfr7yCgkZ9pGy2ZMktQ4ZvYdCIItWZ2kmO4hTGjX8gwyKk9EnS30wHxPTRaYyoO-ln_KcNw0sFLwcsSM9wl56rCKK8gUy0kJjMcNTvM0I3rYXa-NKFF8t2gpIjVkV9bvUDKgxJlTobuacfV-QmNIkjMqYeRAG31fRdmczhAlshD4_RfIk9WJeGWBor0HZ6D2wMO-VKLAXzXqTwswe4A6A5kdDP9U8B1CVoTQ", "domain": ".data.gouv.fr", "path": "/", - "expires": 1704591451.269185, + "expires": 1705195969.266736, "size": 293, "httpOnly": false, "secure": false, @@ -7235,17 +7389,17 @@ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 01:22:31 GMT", + "date": "Sun, 14 Jan 2024 01:17:49 GMT", "etag": "\"13i8pt5pkf2p5k\"", "referrer-policy": "origin-when-cross-origin", - "set-cookie": "annuaire-entreprises-session=Fe26.2*1*9ca4adeab27caa050e70ba2ac2c138d919575ac907adaac1fd1d16118bf55781*kNh3fzOPQKszlI9oSch5GA*TwJADwtyJ6FQDzyVVVsRSQR3HfUJSJUaNwez9K5mxE1iuv1EpY5ZhFIqDvqUlMJ_*1705886551340*834bbd7dc9c5c3820f85c70cb3bce8e3494889b763e96b8f22ff8ccdd24b6e3d*wzSqxPYP8NoZZKDTqVVXXmwtO5JVzg3wgjbgWqf_q1Q~2; Max-Age=1295940; Path=/; HttpOnly; Secure; SameSite=Lax", + "set-cookie": "annuaire-entreprises-session=Fe26.2*1*a57c1cdb880fab4361cb9e7913e383f4d0bff0e9d78a784415d96ec6c278bc09*XleGHO31eXGCTYxyjLaoJg*BxVeK4mrBFUri837DOKkfsu_9u0pRXuro1RXCPH6DD_bf42uQb6fZUcD_z5tvsf5*1706491069327*60ddea16eea410f036d53923dc59a1c0aac69d046e429c1fe5ae0dc82de79628*jdYQuXGZZjrsNm5lgApGR-Jzco-dZtoEexq-aYrkZ1E~2; Max-Age=1295940; Path=/; HttpOnly; Secure; SameSite=Lax", "strict-transport-security": "max-age=63072000", "vary": "Accept-Encoding", "via": "1.1 varnish (Varnish/6.0)", "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-powered-by": "Next.js", - "x-varnish": "42911588", + "x-varnish": "19947121", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -7307,7 +7461,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.190.42", + "ip": "172.253.122.95", "geoip": { "continent": { "code": "NA", @@ -7327,7 +7481,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -7347,7 +7501,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -7391,7 +7545,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 01:17:08", + "@generated": "Sun, 14 Jan 2024 01:16:51", "site": [ { "@name": "https://annuaire-entreprises.data.gouv.fr", @@ -7510,73 +7664,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "annuaire-entreprises.data.gouv.fr.", "matched-at": "annuaire-entreprises.data.gouv.fr", - "timestamp": "2024-01-07T01:24:54.520574843Z", + "extracted-results": [ + "gouv-data-annuaire-entreprises.baleen.cshield.net." + ], + "timestamp": "2024-01-14T01:20:01.402713633Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "annuaire-entreprises.data.gouv.fr.", "matched-at": "annuaire-entreprises.data.gouv.fr", - "extracted-results": [ - "gouv-data-annuaire-entreprises.baleen.cshield.net." - ], - "timestamp": "2024-01-07T01:24:54.6204009Z", + "timestamp": "2024-01-14T01:20:01.413800285Z", "matcher-status": true }, { @@ -7616,7 +7770,7 @@ "1; mode=block" ], "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:07.996880404Z", + "timestamp": "2024-01-14T01:20:12.522592883Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7643,118 +7797,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:34.101693503Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://annuaire-entreprises.data.gouv.fr", - "matched-at": "https://annuaire-entreprises.data.gouv.fr", - "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:43.983179578Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://annuaire-entreprises.data.gouv.fr", - "matched-at": "https://annuaire-entreprises.data.gouv.fr", - "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:43.983228179Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://annuaire-entreprises.data.gouv.fr", - "matched-at": "https://annuaire-entreprises.data.gouv.fr", - "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:43.983273052Z", + "timestamp": "2024-01-14T01:20:34.935012662Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7786,86 +7829,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://annuaire-entreprises.data.gouv.fr", - "matched-at": "https://annuaire-entreprises.data.gouv.fr", - "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:43.983293029Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://annuaire-entreprises.data.gouv.fr", - "matched-at": "https://annuaire-entreprises.data.gouv.fr", - "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:43.983308017Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:43.983326162Z", + "timestamp": "2024-01-14T01:20:43.186153238Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7897,12 +7866,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:43.98334118Z", + "timestamp": "2024-01-14T01:20:43.186203362Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7934,12 +7903,197 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://annuaire-entreprises.data.gouv.fr", + "matched-at": "https://annuaire-entreprises.data.gouv.fr", + "ip": "185.231.164.12", + "timestamp": "2024-01-14T01:20:43.186220654Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://annuaire-entreprises.data.gouv.fr", + "matched-at": "https://annuaire-entreprises.data.gouv.fr", + "ip": "185.231.164.12", + "timestamp": "2024-01-14T01:20:43.186233488Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr", "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:43.983356319Z", + "timestamp": "2024-01-14T01:20:43.186248656Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://annuaire-entreprises.data.gouv.fr", + "matched-at": "https://annuaire-entreprises.data.gouv.fr", + "ip": "185.231.164.12", + "timestamp": "2024-01-14T01:20:43.186264516Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://annuaire-entreprises.data.gouv.fr", + "matched-at": "https://annuaire-entreprises.data.gouv.fr", + "ip": "185.231.164.12", + "timestamp": "2024-01-14T01:20:43.186277951Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://annuaire-entreprises.data.gouv.fr", + "matched-at": "https://annuaire-entreprises.data.gouv.fr", + "ip": "185.231.164.12", + "timestamp": "2024-01-14T01:20:43.186291346Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr'", "matcher-status": true }, @@ -7967,7 +8121,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr/robots.txt", "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:55.073970177Z", + "timestamp": "2024-01-14T01:20:52.239887053Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr/robots.txt'", "matcher-status": true }, @@ -7995,7 +8149,7 @@ "host": "https://annuaire-entreprises.data.gouv.fr", "matched-at": "https://annuaire-entreprises.data.gouv.fr/robots.txt", "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:25:55.079898411Z", + "timestamp": "2024-01-14T01:20:52.278036729Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://annuaire-entreprises.data.gouv.fr/robots.txt'", "matcher-status": true }, @@ -8026,7 +8180,7 @@ "Let's Encrypt" ], "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:27:52.610960604Z", + "timestamp": "2024-01-14T01:22:43.241101759Z", "matcher-status": true }, { @@ -8056,7 +8210,7 @@ "annuaire-entreprises.data.gouv.fr" ], "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:27:52.61105964Z", + "timestamp": "2024-01-14T01:22:43.241223696Z", "matcher-status": true }, { @@ -8087,7 +8241,7 @@ "tls12" ], "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:27:54.34407314Z", + "timestamp": "2024-01-14T01:22:44.497818245Z", "matcher-status": true }, { @@ -8118,7 +8272,7 @@ "tls13" ], "ip": "185.231.164.12", - "timestamp": "2024-01-07T01:27:54.59171625Z", + "timestamp": "2024-01-14T01:22:44.674004612Z", "matcher-status": true } ], @@ -8126,7 +8280,7 @@ { "requestedUrl": "https://annuaire-entreprises.data.gouv.fr/", "finalUrl": "https://annuaire-entreprises.data.gouv.fr/", - "fetchTime": "2024-01-07T01:17:22.129Z", + "fetchTime": "2024-01-14T01:17:04.912Z", "runWarnings": [], "categories": { "performance": { @@ -8189,53 +8343,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3465, + "numericValue": 3294, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1980, - "firstMeaningfulPaint": 1980, - "largestContentfulPaint": 1980, - "interactive": 3465, - "speedIndex": 1980, - "totalBlockingTime": 136, - "maxPotentialFID": 175, - "cumulativeLayoutShift": 0.0022281956142849394, - "cumulativeLayoutShiftMainFrame": 0.0022281956142849394, - "totalCumulativeLayoutShift": 0.0022281956142849394, + "firstContentfulPaint": 1845, + "firstMeaningfulPaint": 1845, + "largestContentfulPaint": 1845, + "interactive": 3294, + "speedIndex": 1845, + "totalBlockingTime": 96, + "maxPotentialFID": 134, + "cumulativeLayoutShift": 0.0030225427415635853, + "cumulativeLayoutShiftMainFrame": 0.0030225427415635853, + "totalCumulativeLayoutShift": 0.0030225427415635853, "observedTimeOrigin": 0, - "observedTimeOriginTs": 282683165, + "observedTimeOriginTs": 215322079, "observedNavigationStart": 0, - "observedNavigationStartTs": 282683165, - "observedFirstPaint": 305, - "observedFirstPaintTs": 282988296, - "observedFirstContentfulPaint": 305, - "observedFirstContentfulPaintTs": 282988296, - "observedFirstContentfulPaintAllFrames": 305, - "observedFirstContentfulPaintAllFramesTs": 282988296, - "observedFirstMeaningfulPaint": 305, - "observedFirstMeaningfulPaintTs": 282988296, - "observedLargestContentfulPaint": 305, - "observedLargestContentfulPaintTs": 282988296, - "observedLargestContentfulPaintAllFrames": 305, - "observedLargestContentfulPaintAllFramesTs": 282988296, - "observedTraceEnd": 3048, - "observedTraceEndTs": 285730700, - "observedLoad": 740, - "observedLoadTs": 283423352, - "observedDomContentLoaded": 691, - "observedDomContentLoadedTs": 283374187, - "observedCumulativeLayoutShift": 0.0022281956142849394, - "observedCumulativeLayoutShiftMainFrame": 0.0022281956142849394, - "observedTotalCumulativeLayoutShift": 0.0022281956142849394, - "observedFirstVisualChange": 305, - "observedFirstVisualChangeTs": 282988165, - "observedLastVisualChange": 2805, - "observedLastVisualChangeTs": 285488165, - "observedSpeedIndex": 343, - "observedSpeedIndexTs": 283026012 + "observedNavigationStartTs": 215322079, + "observedFirstPaint": 270, + "observedFirstPaintTs": 215591979, + "observedFirstContentfulPaint": 270, + "observedFirstContentfulPaintTs": 215591979, + "observedFirstContentfulPaintAllFrames": 270, + "observedFirstContentfulPaintAllFramesTs": 215591979, + "observedFirstMeaningfulPaint": 270, + "observedFirstMeaningfulPaintTs": 215591979, + "observedLargestContentfulPaint": 270, + "observedLargestContentfulPaintTs": 215591979, + "observedLargestContentfulPaintAllFrames": 270, + "observedLargestContentfulPaintAllFramesTs": 215591979, + "observedTraceEnd": 2921, + "observedTraceEndTs": 218243408, + "observedLoad": 613, + "observedLoadTs": 215935369, + "observedDomContentLoaded": 512, + "observedDomContentLoadedTs": 215833821, + "observedCumulativeLayoutShift": 0.0030225427415635853, + "observedCumulativeLayoutShiftMainFrame": 0.0030225427415635853, + "observedTotalCumulativeLayoutShift": 0.0030225427415635853, + "observedFirstVisualChange": 269, + "observedFirstVisualChangeTs": 215591079, + "observedLastVisualChange": 2769, + "observedLastVisualChangeTs": 218091079, + "observedSpeedIndex": 305, + "observedSpeedIndexTs": 215627208 }, { "lcpInvalidated": false @@ -8257,19 +8411,19 @@ "numScripts": 2, "numStylesheets": 4, "numFonts": 5, - "numTasks": 742, + "numTasks": 744, "numTasksOver10ms": 3, "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.6939999999999995, - "throughput": 10988822.248156277, - "maxRtt": 99.108, - "maxServerLatency": 178.47899999999998, - "totalByteWeight": 440182, - "totalTaskTime": 177.941, - "mainDocumentTransferSize": 2055 + "rtt": 2.987, + "throughput": 13657605.808047801, + "maxRtt": 84.16199999999999, + "maxServerLatency": 103.13500000000002, + "totalByteWeight": 440200, + "totalTaskTime": 164.8350000000001, + "mainDocumentTransferSize": 2061 } ] } @@ -8394,7 +8548,7 @@ "http": { "url": "https://acceslibre.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:25:09 GMT", + "end_time": "Sun, 14 Jan 2024 01:24:59 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -8404,19 +8558,19 @@ "Content-Language": "fr", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 01:25:08 GMT", + "Date": "Sun, 14 Jan 2024 01:24:58 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=2QbjWCcX6NRKXdbeMEZgT2KKpejjdd8W; expires=Sun, 05 Jan 2025 01:25:08 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Set-Cookie": "csrftoken=BtIyT9htSm2Jr34laJgtAbpEPAPTzkP9; expires=Sun, 12 Jan 2025 01:24:58 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie, origin, Accept-Language", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "8c7bcbd7-616b-4894-b732-ee1ed55e92c1" + "X-Request-ID": "116066b1-6ebb-4d51-9283-e07e8f452a2c" }, - "scan_id": 46226327, + "scan_id": 46434968, "score": 65, - "start_time": "Sun, 07 Jan 2024 01:25:05 GMT", + "start_time": "Sun, 14 Jan 2024 01:24:55 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -8456,7 +8610,7 @@ "data": { "csrftoken": { "domain": "acceslibre.beta.gouv.fr", - "expires": 1736040308, + "expires": 1736645098, "httponly": false, "max-age": null, "path": "/", @@ -8613,8 +8767,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T01:52:04Z", - "next_check_at": "2024-01-07T01:57:02Z", + "last_check_at": "2024-01-14T01:47:15Z", + "next_check_at": "2024-01-14T01:52:12Z", "created_at": "2021-04-22T19:48:51Z", "mute_until": null, "favicon_url": "https://acceslibre.beta.gouv.fr/static/img/favicon.f67248f8d5b7.ico", @@ -8622,24 +8776,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T01:52:06Z", + "tested_at": "2024-01-14T01:27:23Z", "expires_at": "2024-03-10T13:10:08Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.959, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 25, - "connection": 176, - "handshake": 183, - "response": 210, - "total": 593 + "namelookup": 42, + "connection": 110, + "handshake": 117, + "response": 128, + "total": 396 } }, "uptimeGrade": "A", - "apdexGrade": "E" + "apdexGrade": "A" }, "nmap": { "host": "acceslibre.beta.gouv.fr", @@ -8666,1142 +8820,6 @@ "dependabot": null, "codescan": null, "testssl": [ - { - "id": "service", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "2023-12-11 13:10" - }, - { - "id": "cert_notAfter", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "2024-03-10 13:10" - }, - { - "id": "cert_extlifeSpan", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "1704591690" - }, - { - "id": "HSTS_time", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "1/1 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Referrer-Policy", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=238E6AE1EB23003C09E74843E6B3A94A02D18C473A2E9FC679099F130C0B4B08" - }, - { - "id": "LOGJAM", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "acceslibre.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "A+" - }, { "id": "service", "ip": "acceslibre.beta.gouv.fr/148.253.75.120", @@ -10002,7 +9020,7 @@ "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -10149,7 +9167,7 @@ "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "63 >= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", @@ -10352,7 +9370,7 @@ "ip": "acceslibre.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704591744" + "finding": "1705196131" }, { "id": "HSTS_time", @@ -11285,7 +10303,7 @@ "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "63 >= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", @@ -11481,14 +10499,14 @@ "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "acceslibre.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704591800" + "finding": "1705196188" }, { "id": "HSTS_time", @@ -12421,7 +11439,7 @@ "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "63 >= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", @@ -12624,7 +11642,7 @@ "ip": "acceslibre.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704591854" + "finding": "1705196244" }, { "id": "HSTS_time", @@ -13210,12 +12228,1148 @@ "severity": "OK", "finding": "A+" }, + { + "id": "service", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2023-12-11 13:10" + }, + { + "id": "cert_notAfter", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2024-03-10 13:10" + }, + { + "id": "cert_extlifeSpan", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "1705196299" + }, + { + "id": "HSTS_time", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "1/1 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "same-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=238E6AE1EB23003C09E74843E6B3A94A02D18C473A2E9FC679099F130C0B4B08" + }, + { + "id": "LOGJAM", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "A+" + }, { "id": "scanTime", - "ip": "acceslibre.beta.gouv.fr/5.104.101.30", + "ip": "acceslibre.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "222" + "finding": "225" } ], "thirdparties": { @@ -13226,15 +13380,15 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/600aff6d-b1eb-414c-a186-233177221bbf/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-1-40" + "url": "https://client.crisp.chat/settings/website/600aff6d-b1eb-414c-a186-233177221bbf/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-1-34" }, { "type": "unknown", @@ -13242,7 +13396,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/en.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/en.js?e0efffc" } ], "cookies": [ @@ -13251,7 +13405,7 @@ "value": "1", "domain": "acceslibre.beta.gouv.fr", "path": "/", - "expires": 1704593448, + "expires": 1705197890, "size": 15, "httpOnly": false, "secure": false, @@ -13263,10 +13417,10 @@ }, { "name": "_pk_id.3.c7e8", - "value": "8d3c5a265201a9a2.1704591649.", + "value": "a7d9ff07b6a22fe9.1705196090.", "domain": "acceslibre.beta.gouv.fr", "path": "/", - "expires": 1738546849, + "expires": 1739151290, "size": 41, "httpOnly": false, "secure": false, @@ -13278,10 +13432,10 @@ }, { "name": "csrftoken", - "value": "FJpnSqSSNlG1XWvleVCEG8TZpBlsUlP5", + "value": "WYIz8nwfQzyiBTowG5ktknrZ0kIY7H3N", "domain": "acceslibre.beta.gouv.fr", "path": "/", - "expires": 1736041247.555732, + "expires": 1736645689.346622, "size": 41, "httpOnly": false, "secure": true, @@ -13297,19 +13451,19 @@ "content-language": "en", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 01:40:47 GMT", + "date": "Sun, 14 Jan 2024 01:34:49 GMT", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=FJpnSqSSNlG1XWvleVCEG8TZpBlsUlP5; expires=Sun, 05 Jan 2025 01:40:47 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "set-cookie": "csrftoken=WYIz8nwfQzyiBTowG5ktknrZ0kIY7H3N; expires=Sun, 12 Jan 2025 01:34:49 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "strict-transport-security": "max-age=31536000", "vary": "Cookie, origin, Accept-Language", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "7098c1d5-be4c-4703-8c76-12afc053492c" + "x-request-id": "8ceee92f-f80e-4b83-b94e-9ffd2bce061f" }, "endpoints": [ { "hostname": "acceslibre.beta.gouv.fr", - "ip": "109.232.236.90", + "ip": "109.232.233.130", "geoip": { "continent": { "code": "EU", @@ -13385,7 +13539,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -13405,7 +13559,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -13610,7 +13764,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 01:40:03", + "@generated": "Sun, 14 Jan 2024 01:34:10", "site": [ { "@name": "https://acceslibre.beta.gouv.fr", @@ -13820,73 +13974,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "acceslibre.beta.gouv.fr.", "matched-at": "acceslibre.beta.gouv.fr", - "timestamp": "2024-01-07T01:45:37.96054259Z", + "extracted-results": [ + "access4all.osc-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T01:39:43.89969763Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "acceslibre.beta.gouv.fr.", "matched-at": "acceslibre.beta.gouv.fr", - "extracted-results": [ - "access4all.osc-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T01:45:38.025408637Z", + "timestamp": "2024-01-14T01:39:43.903437993Z", "matcher-status": true }, { @@ -13924,8 +14078,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:45:49.276481909Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:39:57.268649712Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -13960,8 +14114,8 @@ "extracted-results": [ "https://4007bda579804c1499dd28ae18cb0ff5@sentry.incubateur.net/35" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:45:49.312639679Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:39:57.298736535Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -13998,8 +14152,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:12.8411845Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:20.152191407Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14036,8 +14190,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:12.841226198Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:20.152249385Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14063,8 +14217,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:12.925164429Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:20.23606835Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14098,8 +14252,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:16.839481135Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:24.507169888Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14135,8 +14289,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:20.762768131Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:28.523581422Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14172,8 +14326,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:20.762815489Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:28.523644309Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14209,8 +14363,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:20.76283188Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:28.523661762Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14246,8 +14400,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:20.762845035Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:28.523682691Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14283,8 +14437,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:20.762863499Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:28.523699693Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14320,8 +14474,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:20.762883707Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:28.52371439Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr'", "matcher-status": true }, @@ -14362,8 +14516,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr/api/docs/", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:26.329927102Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:35.232294833Z", "curl-command": "curl -X 'GET' -H 'Accept: text/html' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr/api/docs/'", "matcher-status": true }, @@ -14390,8 +14544,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr/robots.txt", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:30.10969798Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:38.111469781Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -14421,8 +14575,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr/sitemap.xml", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:30.165617522Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:38.164743869Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr/sitemap.xml'", "matcher-status": true }, @@ -14461,8 +14615,8 @@ "type": "http", "host": "https://acceslibre.beta.gouv.fr", "matched-at": "https://acceslibre.beta.gouv.fr/", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:46:42.534831477Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:40:50.79944701Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: acceslibre.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://acceslibre.beta.gouv.fr/'", "matcher-status": true }, @@ -14492,8 +14646,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:52:21.665924032Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:46:30.901869928Z", "matcher-status": true }, { @@ -14522,8 +14676,8 @@ "extracted-results": [ "acceslibre.beta.gouv.fr" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:52:21.666062151Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:46:30.90201034Z", "matcher-status": true }, { @@ -14553,8 +14707,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:52:22.901619718Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:46:32.282106429Z", "matcher-status": true }, { @@ -14584,8 +14738,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T01:52:23.076969911Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T01:46:32.47609711Z", "matcher-status": true } ], @@ -14593,7 +14747,7 @@ { "requestedUrl": "https://acceslibre.beta.gouv.fr/", "finalUrl": "https://acceslibre.beta.gouv.fr/", - "fetchTime": "2024-01-07T01:40:17.534Z", + "fetchTime": "2024-01-14T01:34:24.431Z", "runWarnings": [], "categories": { "performance": { @@ -14604,7 +14758,7 @@ "snapshot" ], "id": "performance", - "score": 0.9850898742675781 + "score": 0.9850807189941406 }, "accessibility": { "title": "Accessibility", @@ -14656,53 +14810,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4654, + "numericValue": 4598, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4654, - "firstMeaningfulPaint": 4654, - "largestContentfulPaint": 6027, - "interactive": 4654, - "speedIndex": 4654, + "firstContentfulPaint": 4598, + "firstMeaningfulPaint": 4598, + "largestContentfulPaint": 5955, + "interactive": 4598, + "speedIndex": 4598, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.00774927298227946, - "cumulativeLayoutShiftMainFrame": 0.00774927298227946, - "totalCumulativeLayoutShift": 0.00774927298227946, + "cumulativeLayoutShift": 0.007000783284505209, + "cumulativeLayoutShiftMainFrame": 0.007000783284505209, + "totalCumulativeLayoutShift": 0.007000783284505209, "observedTimeOrigin": 0, - "observedTimeOriginTs": 406423603, + "observedTimeOriginTs": 378872604, "observedNavigationStart": 0, - "observedNavigationStartTs": 406423603, - "observedFirstPaint": 775, - "observedFirstPaintTs": 407198492, - "observedFirstContentfulPaint": 775, - "observedFirstContentfulPaintTs": 407198492, - "observedFirstContentfulPaintAllFrames": 775, - "observedFirstContentfulPaintAllFramesTs": 407198492, - "observedFirstMeaningfulPaint": 775, - "observedFirstMeaningfulPaintTs": 407198492, - "observedLargestContentfulPaint": 775, - "observedLargestContentfulPaintTs": 407198492, - "observedLargestContentfulPaintAllFrames": 775, - "observedLargestContentfulPaintAllFramesTs": 407198492, - "observedTraceEnd": 3511, - "observedTraceEndTs": 409935052, - "observedLoad": 1203, - "observedLoadTs": 407626725, + "observedNavigationStartTs": 378872604, + "observedFirstPaint": 601, + "observedFirstPaintTs": 379473536, + "observedFirstContentfulPaint": 601, + "observedFirstContentfulPaintTs": 379473536, + "observedFirstContentfulPaintAllFrames": 601, + "observedFirstContentfulPaintAllFramesTs": 379473536, + "observedFirstMeaningfulPaint": 601, + "observedFirstMeaningfulPaintTs": 379473536, + "observedLargestContentfulPaint": 601, + "observedLargestContentfulPaintTs": 379473536, + "observedLargestContentfulPaintAllFrames": 601, + "observedLargestContentfulPaintAllFramesTs": 379473536, + "observedTraceEnd": 3347, + "observedTraceEndTs": 382219857, + "observedLoad": 1039, + "observedLoadTs": 379911108, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 406424263, - "observedCumulativeLayoutShift": 0.00774927298227946, - "observedCumulativeLayoutShiftMainFrame": 0.00774927298227946, - "observedTotalCumulativeLayoutShift": 0.00774927298227946, - "observedFirstVisualChange": 776, - "observedFirstVisualChangeTs": 407199603, - "observedLastVisualChange": 1126, - "observedLastVisualChangeTs": 407549603, - "observedSpeedIndex": 787, - "observedSpeedIndexTs": 407210878 + "observedDomContentLoadedTs": 378873181, + "observedCumulativeLayoutShift": 0.007000783284505209, + "observedCumulativeLayoutShiftMainFrame": 0.007000783284505209, + "observedTotalCumulativeLayoutShift": 0.007000783284505209, + "observedFirstVisualChange": 595, + "observedFirstVisualChangeTs": 379467604, + "observedLastVisualChange": 712, + "observedLastVisualChangeTs": 379584604, + "observedSpeedIndex": 599, + "observedSpeedIndexTs": 379471654 }, { "lcpInvalidated": false @@ -14724,19 +14878,19 @@ "numScripts": 4, "numStylesheets": 1, "numFonts": 4, - "numTasks": 14, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.909, - "throughput": 10493102.175804174, - "maxRtt": 84.851, - "maxServerLatency": 16.405, - "totalByteWeight": 1126748, - "totalTaskTime": 3.1820000000000004, - "mainDocumentTransferSize": 6423 + "rtt": 5.2139999999999995, + "throughput": 15360756.862130702, + "maxRtt": 84.774, + "maxServerLatency": 11.193000000000001, + "totalByteWeight": 1126796, + "totalTaskTime": 1.703, + "mainDocumentTransferSize": 6418 } ] } @@ -14831,8 +14985,8 @@ "sonarcloud": null, "summary": { "httpGrade": "B-", - "apdex": 0.959, - "apdexGrade": "E", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -14845,7 +14999,7 @@ "cookiesCount": 3, "trackersGrade": "C", "trackersCount": 6, - "lighthouse_performance": 0.9850898742675781, + "lighthouse_performance": 0.9850807189941406, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -14871,7 +15025,7 @@ "http": { "url": "https://adock.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:13:38 GMT", + "end_time": "Sun, 14 Jan 2024 01:13:47 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -14881,7 +15035,7 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self' *.gouv.fr; report-uri https://o59236.ingest.sentry.io/api/1187894/envelope/; connect-src 'self' https://o59236.ingest.sentry.io/ https://api-adresse.data.gouv.fr/; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/; font-src 'self' https://fonts.gstatic.com/ themes.googleusercontent.com data:; script-src 'self' https://stats.data.gouv.fr/; frame-ancestors 'none'; form-action 'self'; base-uri 'self'; img-src 'self' https: data:", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 01:13:37 GMT", + "Date": "Sun, 14 Jan 2024 01:13:46 GMT", "ETag": "W/\"64669689-4f4\"", "Last-Modified": "Thu, 18 May 2023 21:20:09 GMT", "Server": "nginx", @@ -14892,9 +15046,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46226041, + "scan_id": 46434740, "score": 105, - "start_time": "Sun, 07 Jan 2024 01:13:34 GMT", + "start_time": "Sun, 14 Jan 2024 01:13:43 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -14911,17 +15065,17 @@ ], "connect-src": [ "https://o59236.ingest.sentry.io/", - "https://api-adresse.data.gouv.fr/", - "'self'" + "'self'", + "https://api-adresse.data.gouv.fr/" ], "default-src": [ "*.gouv.fr", "'self'" ], "font-src": [ - "https://fonts.gstatic.com/", "data:", "'self'", + "https://fonts.gstatic.com/", "themes.googleusercontent.com" ], "form-action": [ @@ -14931,21 +15085,21 @@ "'none'" ], "img-src": [ - "https:", "data:", - "'self'" + "'self'", + "https:" ], "report-uri": [ "https://o59236.ingest.sentry.io/api/1187894/envelope/" ], "script-src": [ - "https://stats.data.gouv.fr/", - "'self'" + "'self'", + "https://stats.data.gouv.fr/" ], "style-src": [ - "https://fonts.googleapis.com/", "'unsafe-inline'", - "'self'" + "'self'", + "https://fonts.googleapis.com/" ] }, "http": true, @@ -15134,8 +15288,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T01:48:42Z", - "next_check_at": "2024-01-07T01:53:40Z", + "last_check_at": "2024-01-14T01:42:44Z", + "next_check_at": "2024-01-14T01:47:42Z", "created_at": "2021-04-22T19:48:57Z", "mute_until": null, "favicon_url": "https://adock.beta.gouv.fr/favicon.ico", @@ -15143,7 +15297,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T01:13:52Z", + "tested_at": "2024-01-14T01:37:49Z", "expires_at": "2024-02-27T05:58:04Z", "valid": true, "error": null @@ -15152,11 +15306,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 159, - "connection": 146, - "handshake": 278, - "response": 133, - "total": 717 + "namelookup": 151, + "connection": 122, + "handshake": 251, + "response": 122, + "total": 647 } }, "uptimeGrade": "A", @@ -15573,7 +15727,7 @@ "ip": "adock.beta.gouv.fr/176.31.253.20", "port": "443", "severity": "OK", - "finding": "51 >= 30 days" + "finding": "44 >= 30 days" }, { "id": "cert_notBefore", @@ -15783,7 +15937,7 @@ "ip": "adock.beta.gouv.fr/176.31.253.20", "port": "443", "severity": "INFO", - "finding": "1704591651" + "finding": "1705196260" }, { "id": "HSTS_time", @@ -16374,7 +16528,7 @@ "ip": "adock.beta.gouv.fr/176.31.253.20", "port": "443", "severity": "INFO", - "finding": "96" + "finding": "62" } ], "thirdparties": { @@ -16394,7 +16548,7 @@ "value": "1", "domain": "adock.beta.gouv.fr", "path": "/", - "expires": 1704593383, + "expires": 1705198015, "size": 16, "httpOnly": false, "secure": false, @@ -16406,10 +16560,10 @@ }, { "name": "_pk_id.50.ea54", - "value": "abc919407391ddd7.1704591583.", + "value": "917ae7cab6574290.1705196216.", "domain": "adock.beta.gouv.fr", "path": "/", - "expires": 1738546783, + "expires": 1739151416, "size": 42, "httpOnly": false, "secure": false, @@ -16425,7 +16579,7 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self' *.gouv.fr; report-uri https://o59236.ingest.sentry.io/api/1187894/envelope/; connect-src 'self' https://o59236.ingest.sentry.io/ https://api-adresse.data.gouv.fr/; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/; font-src 'self' https://fonts.gstatic.com/ themes.googleusercontent.com data:; script-src 'self' https://stats.data.gouv.fr/; frame-ancestors 'none'; form-action 'self'; base-uri 'self'; img-src 'self' https: data:", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 01:39:41 GMT", + "date": "Sun, 14 Jan 2024 01:36:54 GMT", "etag": "W/\"64669689-4f4\"", "last-modified": "Thu, 18 May 2023 21:20:09 GMT", "server": "nginx", @@ -16526,7 +16680,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -16550,7 +16704,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -16774,7 +16928,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 01:39:00", + "@generated": "Sun, 14 Jan 2024 01:36:12", "site": [ { "@name": "https://adock.beta.gouv.fr", @@ -16924,7 +17078,7 @@ "type": "dns", "host": "adock.beta.gouv.fr.", "matched-at": "adock.beta.gouv.fr", - "timestamp": "2024-01-07T01:42:33.823757792Z", + "timestamp": "2024-01-14T01:39:03.887476219Z", "matcher-status": true }, { @@ -16964,7 +17118,7 @@ "1; mode=block" ], "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:42:58.328865184Z", + "timestamp": "2024-01-14T01:39:21.676609333Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -16991,7 +17145,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:43:48.243852056Z", + "timestamp": "2024-01-14T01:39:56.435859098Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17023,12 +17177,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:44:08.273484659Z", + "timestamp": "2024-01-14T01:40:10.312110623Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17060,12 +17214,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:44:08.283842026Z", + "timestamp": "2024-01-14T01:40:10.312150558Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17097,12 +17251,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:44:08.2840591Z", + "timestamp": "2024-01-14T01:40:10.3121624Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17134,12 +17288,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:44:08.284201364Z", + "timestamp": "2024-01-14T01:40:10.312176025Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17171,12 +17325,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:44:08.284217645Z", + "timestamp": "2024-01-14T01:40:10.312189831Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17208,12 +17362,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:44:08.284234206Z", + "timestamp": "2024-01-14T01:40:10.312203646Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17245,12 +17399,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:44:08.284255866Z", + "timestamp": "2024-01-14T01:40:10.312218454Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr'", "matcher-status": true }, @@ -17290,7 +17444,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr/", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:44:59.152579209Z", + "timestamp": "2024-01-14T01:40:45.160748259Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: adock.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr/'", "matcher-status": true }, @@ -17330,7 +17484,7 @@ "host": "https://adock.beta.gouv.fr", "matched-at": "https://adock.beta.gouv.fr/", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:44:59.15262813Z", + "timestamp": "2024-01-14T01:40:45.160795747Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: adock.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adock.beta.gouv.fr/'", "matcher-status": true }, @@ -17380,7 +17534,7 @@ "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6" ], "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:46:11.746886963Z", + "timestamp": "2024-01-14T01:41:44.495644634Z", "matcher-status": true }, { @@ -17414,7 +17568,7 @@ "host": "adock.beta.gouv.fr:443", "matched-at": "adock.beta.gouv.fr:443", "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:46:45.702355469Z", + "timestamp": "2024-01-14T01:42:16.475715406Z", "matcher-status": true }, { @@ -17444,7 +17598,7 @@ "Let's Encrypt" ], "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:47:01.681734069Z", + "timestamp": "2024-01-14T01:42:33.294587369Z", "matcher-status": true }, { @@ -17474,7 +17628,7 @@ "adock.beta.gouv.fr" ], "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:47:01.681854553Z", + "timestamp": "2024-01-14T01:42:33.294699268Z", "matcher-status": true }, { @@ -17505,7 +17659,7 @@ "tls12" ], "ip": "176.31.253.20", - "timestamp": "2024-01-07T01:47:04.036011172Z", + "timestamp": "2024-01-14T01:42:35.724648964Z", "matcher-status": true } ], @@ -17513,7 +17667,7 @@ { "requestedUrl": "https://adock.beta.gouv.fr/", "finalUrl": "https://adock.beta.gouv.fr/", - "fetchTime": "2024-01-07T01:39:14.651Z", + "fetchTime": "2024-01-14T01:36:26.473Z", "runWarnings": [], "categories": { "performance": { @@ -17576,53 +17730,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4809, + "numericValue": 6809, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3934, - "firstMeaningfulPaint": 4809, - "largestContentfulPaint": 5258, - "interactive": 4809, - "speedIndex": 4674, - "totalBlockingTime": 250, - "maxPotentialFID": 624, + "firstContentfulPaint": 4045, + "firstMeaningfulPaint": 6809, + "largestContentfulPaint": 5185, + "interactive": 6809, + "speedIndex": 4187, + "totalBlockingTime": 200, + "maxPotentialFID": 733, "cumulativeLayoutShift": 0.008662261962890626, "cumulativeLayoutShiftMainFrame": 0.008662261962890626, "totalCumulativeLayoutShift": 0.008662261962890626, "observedTimeOrigin": 0, - "observedTimeOriginTs": 348908730, + "observedTimeOriginTs": 299425228, "observedNavigationStart": 0, - "observedNavigationStartTs": 348908730, - "observedFirstPaint": 1451, - "observedFirstPaintTs": 350359237, - "observedFirstContentfulPaint": 1451, - "observedFirstContentfulPaintTs": 350359237, - "observedFirstContentfulPaintAllFrames": 1451, - "observedFirstContentfulPaintAllFramesTs": 350359237, - "observedFirstMeaningfulPaint": 1652, - "observedFirstMeaningfulPaintTs": 350560510, - "observedLargestContentfulPaint": 1614, - "observedLargestContentfulPaintTs": 350522686, - "observedLargestContentfulPaintAllFrames": 1614, - "observedLargestContentfulPaintAllFramesTs": 350522686, - "observedTraceEnd": 4321, - "observedTraceEndTs": 353229788, - "observedLoad": 2013, - "observedLoadTs": 350921325, - "observedDomContentLoaded": 1447, - "observedDomContentLoadedTs": 350355600, + "observedNavigationStartTs": 299425228, + "observedFirstPaint": 1104, + "observedFirstPaintTs": 300529215, + "observedFirstContentfulPaint": 1104, + "observedFirstContentfulPaintTs": 300529215, + "observedFirstContentfulPaintAllFrames": 1104, + "observedFirstContentfulPaintAllFramesTs": 300529215, + "observedFirstMeaningfulPaint": 1308, + "observedFirstMeaningfulPaintTs": 300733345, + "observedLargestContentfulPaint": 1210, + "observedLargestContentfulPaintTs": 300634743, + "observedLargestContentfulPaintAllFrames": 1210, + "observedLargestContentfulPaintAllFramesTs": 300634743, + "observedTraceEnd": 3729, + "observedTraceEndTs": 303154195, + "observedLoad": 1421, + "observedLoadTs": 300846197, + "observedDomContentLoaded": 1103, + "observedDomContentLoadedTs": 300527814, "observedCumulativeLayoutShift": 0.008662261962890626, "observedCumulativeLayoutShiftMainFrame": 0.008662261962890626, "observedTotalCumulativeLayoutShift": 0.008662261962890626, - "observedFirstVisualChange": 1460, - "observedFirstVisualChangeTs": 350368730, - "observedLastVisualChange": 2060, - "observedLastVisualChangeTs": 350968730, - "observedSpeedIndex": 1598, - "observedSpeedIndexTs": 350506646 + "observedFirstVisualChange": 1112, + "observedFirstVisualChangeTs": 300537228, + "observedLastVisualChange": 1712, + "observedLastVisualChangeTs": 301137228, + "observedSpeedIndex": 1212, + "observedSpeedIndexTs": 300636807 }, { "lcpInvalidated": false @@ -17644,18 +17798,18 @@ "numScripts": 3, "numStylesheets": 2, "numFonts": 3, - "numTasks": 473, + "numTasks": 482, "numTasksOver10ms": 5, - "numTasksOver25ms": 2, + "numTasksOver25ms": 1, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 2.05, - "throughput": 8979720.985871917, - "maxRtt": 152.641, - "maxServerLatency": 41.625, + "rtt": 1.9209999999999998, + "throughput": 13421180.859254757, + "maxRtt": 101.743, + "maxServerLatency": 13.862000000000009, "totalByteWeight": 1216063, - "totalTaskTime": 322.6009999999995, + "totalTaskTime": 325.84099999999995, "mainDocumentTransferSize": 1181 } ] @@ -17789,28 +17943,28 @@ "http": { "url": "https://aidantsconnect.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:22:07 GMT", + "end_time": "Sun, 14 Jan 2024 01:22:37 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'", + "Content-Security-Policy": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; object-src 'none'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 01:22:05 GMT", + "Date": "Sun, 14 Jan 2024 01:22:35 GMT", "Referrer-Policy": "strict-origin", "Strict-Transport-Security": "max-age=60", "Transfer-Encoding": "chunked", "Vary": "Cookie", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "26a06090-0263-4e77-97e4-0715d2629bb5" + "X-Request-ID": "973ec5df-bdbf-4143-b978-c57c3f0d556e" }, - "scan_id": 46226285, + "scan_id": 46434938, "score": 55, - "start_time": "Sun, 07 Jan 2024 01:21:47 GMT", + "start_time": "Sun, 14 Jan 2024 01:22:32 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -17823,9 +17977,9 @@ "output": { "data": { "connect-src": [ - "https://stats.data.gouv.fr/piwik.php", "https://stats.data.gouv.fr/matomo.php", "'self'", + "https://stats.data.gouv.fr/piwik.php", "https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2", "https://api-adresse.data.gouv.fr/search/" ], @@ -17833,58 +17987,58 @@ "'self'" ], "frame-src": [ - "https://www.youtube.com/embed/hATrqHG4zYQ", + "https://www.youtube.com/embed/AJGo6bydQss", "https://www.youtube-nocookie.com/embed/WTHj_kQXnzs", + "https://www.youtube.com/embed/hATrqHG4zYQ", + "http://www.youtube.com/embed/WTHj_kQXnzs", + "https://www.youtube-nocookie.com/embed/AJGo6bydQss", + "https://www.youtube.com/embed/ihsm-36I-fE", + "http://www.youtube.com/embed/AJGo6bydQss", + "http://www.youtube.com/embed/ihsm-36I-fE", "http://www.youtube-nocookie.com/embed/AJGo6bydQss", - "https://www.youtube.com/embed/WTHj_kQXnzs", - "https://www.youtube.com/embed/AJGo6bydQss", - "http://www.youtube-nocookie.com/embed/ihsm-36I-fE", - "http://www.youtube.com/embed/hATrqHG4zYQ", "https://www.youtube-nocookie.com/embed/hATrqHG4zYQ", - "http://www.youtube-nocookie.com/embed/WTHj_kQXnzs", + "http://www.youtube.com/embed/hATrqHG4zYQ", + "https://www.youtube.com/embed/WTHj_kQXnzs", "https://www.youtube-nocookie.com/embed/ihsm-36I-fE", - "http://www.youtube.com/embed/AJGo6bydQss", "http://www.youtube-nocookie.com/embed/hATrqHG4zYQ", - "https://www.youtube.com/embed/ihsm-36I-fE", - "http://www.youtube.com/embed/ihsm-36I-fE", - "https://www.youtube-nocookie.com/embed/AJGo6bydQss", - "http://www.youtube.com/embed/WTHj_kQXnzs" + "http://www.youtube-nocookie.com/embed/ihsm-36I-fE", + "http://www.youtube-nocookie.com/embed/WTHj_kQXnzs" ], "img-src": [ - "https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/", "data:", + "https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/", "'self'" ], "object-src": [ "'none'" ], "script-src": [ - "https://unpkg.com/easymde/dist/easymde.min.js", - "https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js", - "'sha256-arvyo8aj91wuvpfvqp2ffhuihzjn3xali7vgj2tqx18='", - "https://code.jquery.com/ui/1.13.1/jquery-ui.js", + "https://forms.sbc29.com/form.js", + "https://stats.data.gouv.fr/matomo.js", "https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js", "https://code.jquery.com/jquery-3.6.1.js", + "'sha256-arvyo8aj91wuvpfvqp2ffhuihzjn3xali7vgj2tqx18='", + "'sha256-co4gfu3p1qnocvjdyc+znsvh77xoc5h2oczyfb8yupa='", + "https://code.jquery.com/ui/1.13.1/jquery-ui.js", "https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js", - "https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js", "'sha256-tzfaiqy7u6q6ovmbu59mz7pal/g930thgxhg6dg/chq='", + "https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js", "'sha256-nr0pzgaeuncaj2dbnvxn6w2goemnj9jqe4tqs/h7o0c='", - "https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js", - "https://forms.sbc29.com/form.js", "https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js", - "https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js", - "'self'", - "'sha256-mxh/smf1qtric8hr62qt2dvp/stb/ixr4xmbrvkcz0u='", - "https://stats.data.gouv.fr/matomo.js", - "'sha256-co4gfu3p1qnocvjdyc+znsvh77xoc5h2oczyfb8yupa='", "'sha256-oohki3o/lokqd0j+jc75068tfqqov40dyk6wrkixi1c='", + "'self'", "https://stats.data.gouv.fr/piwik.js", - "'sha256-+ip5od5k5h6dnqj5xgjgipif2k6vdsriwatxnixvr8s='" + "https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js", + "https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js", + "'sha256-mxh/smf1qtric8hr62qt2dvp/stb/ixr4xmbrvkcz0u='", + "'sha256-+ip5od5k5h6dnqj5xgjgipif2k6vdsriwatxnixvr8s='", + "https://unpkg.com/easymde/dist/easymde.min.js", + "https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js" ], "style-src": [ - "https://unpkg.com/easymde/dist/easymde.min.css", + "https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css", "'self'", - "https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css" + "https://unpkg.com/easymde/dist/easymde.min.css" ] }, "http": true, @@ -18090,8 +18244,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T02:02:28Z", - "next_check_at": "2024-01-07T02:07:26Z", + "last_check_at": "2024-01-14T02:06:42Z", + "next_check_at": "2024-01-14T02:11:41Z", "created_at": "2021-04-22T19:49:02Z", "mute_until": null, "favicon_url": "https://aidantsconnect.beta.gouv.fr/static/images/favicons/favicon-32x32.png", @@ -18099,24 +18253,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T01:17:42Z", + "tested_at": "2024-01-14T01:41:48Z", "expires_at": "2024-03-07T18:44:08Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.889, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 182, - "connection": 154, - "handshake": 164, - "response": 323, - "total": 823 + "namelookup": 176, + "connection": 134, + "handshake": 140, + "response": 309, + "total": 759 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "A" }, "nmap": { "host": "aidantsconnect.beta.gouv.fr", @@ -18145,77 +18299,77 @@ "testssl": [ { "id": "service", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -18223,7 +18377,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -18231,7 +18385,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -18239,7 +18393,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -18247,7 +18401,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -18255,7 +18409,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -18263,518 +18417,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-08 18:44" }, { "id": "cert_notAfter", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-07 18:44" }, { "id": "cert_extlifeSpan", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704592027" + "finding": "1705197080" }, { "id": "HSTS_time", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=60 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'" + "finding": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -18782,7 +18936,7 @@ }, { "id": "heartbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -18791,7 +18945,7 @@ }, { "id": "CCS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -18800,7 +18954,7 @@ }, { "id": "ticketbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -18809,7 +18963,7 @@ }, { "id": "ROBOT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -18818,7 +18972,7 @@ }, { "id": "secure_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -18826,7 +18980,7 @@ }, { "id": "secure_client_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -18835,7 +18989,7 @@ }, { "id": "CRIME_TLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -18844,7 +18998,7 @@ }, { "id": "BREACH", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -18853,7 +19007,7 @@ }, { "id": "POODLE_SSL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -18862,14 +19016,14 @@ }, { "id": "fallback_SCSV", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -18878,7 +19032,7 @@ }, { "id": "FREAK", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -18887,7 +19041,7 @@ }, { "id": "DROWN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -18896,7 +19050,7 @@ }, { "id": "DROWN_hint", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -18905,7 +19059,7 @@ }, { "id": "LOGJAM", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -18914,7 +19068,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -18923,7 +19077,7 @@ }, { "id": "BEAST", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -18932,7 +19086,7 @@ }, { "id": "LUCKY13", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -18941,7 +19095,7 @@ }, { "id": "winshock", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -18950,7 +19104,7 @@ }, { "id": "RC4", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -18959,399 +19113,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", + "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -19359,7 +19513,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -19367,7 +19521,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -19375,7 +19529,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -19383,7 +19537,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -19391,7 +19545,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -19399,518 +19553,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-08 18:44" }, { "id": "cert_notAfter", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-07 18:44" }, { "id": "cert_extlifeSpan", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704592128" + "finding": "1705197177" }, { "id": "HSTS_time", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=60 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'" + "finding": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -19918,7 +20072,7 @@ }, { "id": "heartbleed", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -19927,7 +20081,7 @@ }, { "id": "CCS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -19936,7 +20090,7 @@ }, { "id": "ticketbleed", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -19945,7 +20099,7 @@ }, { "id": "ROBOT", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -19954,7 +20108,7 @@ }, { "id": "secure_renego", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -19962,7 +20116,7 @@ }, { "id": "secure_client_renego", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -19971,7 +20125,7 @@ }, { "id": "CRIME_TLS", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -19980,7 +20134,7 @@ }, { "id": "BREACH", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -19989,7 +20143,7 @@ }, { "id": "POODLE_SSL", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -19998,14 +20152,14 @@ }, { "id": "fallback_SCSV", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -20014,7 +20168,7 @@ }, { "id": "FREAK", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -20023,7 +20177,7 @@ }, { "id": "DROWN", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -20032,7 +20186,7 @@ }, { "id": "DROWN_hint", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -20041,7 +20195,7 @@ }, { "id": "LOGJAM", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -20050,7 +20204,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -20059,7 +20213,7 @@ }, { "id": "BEAST", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -20068,7 +20222,7 @@ }, { "id": "LUCKY13", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -20077,7 +20231,7 @@ }, { "id": "winshock", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -20086,7 +20240,7 @@ }, { "id": "RC4", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -20095,322 +20249,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", + "ip": "aidantsconnect.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" @@ -20762,7 +20916,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "60 >= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", @@ -20965,7 +21119,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704592228" + "finding": "1705197274" }, { "id": "HSTS_time", @@ -21035,7 +21189,7 @@ "ip": "aidantsconnect.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'" + "finding": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; object-src 'none'" }, { "id": "Referrer-Policy", @@ -21553,77 +21707,77 @@ }, { "id": "service", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -21631,7 +21785,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -21639,7 +21793,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -21647,7 +21801,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -21655,7 +21809,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -21663,7 +21817,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -21671,518 +21825,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-08 18:44" }, { "id": "cert_notAfter", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-07 18:44" }, { "id": "cert_extlifeSpan", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704592330" + "finding": "1705197371" }, { "id": "HSTS_time", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=60 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'" + "finding": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -22190,7 +22344,7 @@ }, { "id": "heartbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -22199,7 +22353,7 @@ }, { "id": "CCS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -22208,7 +22362,7 @@ }, { "id": "ticketbleed", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -22217,7 +22371,7 @@ }, { "id": "ROBOT", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -22226,7 +22380,7 @@ }, { "id": "secure_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -22234,7 +22388,7 @@ }, { "id": "secure_client_renego", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -22243,7 +22397,7 @@ }, { "id": "CRIME_TLS", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -22252,7 +22406,7 @@ }, { "id": "BREACH", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -22261,7 +22415,7 @@ }, { "id": "POODLE_SSL", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -22270,14 +22424,14 @@ }, { "id": "fallback_SCSV", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -22286,7 +22440,7 @@ }, { "id": "FREAK", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -22295,7 +22449,7 @@ }, { "id": "DROWN", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -22304,7 +22458,7 @@ }, { "id": "DROWN_hint", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -22313,7 +22467,7 @@ }, { "id": "LOGJAM", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -22322,7 +22476,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -22331,7 +22485,7 @@ }, { "id": "BEAST", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -22340,7 +22494,7 @@ }, { "id": "LUCKY13", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -22349,7 +22503,7 @@ }, { "id": "winshock", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -22358,7 +22512,7 @@ }, { "id": "RC4", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -22367,332 +22521,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "scanTime", - "ip": "aidantsconnect.beta.gouv.fr/80.247.13.145", + "ip": "aidantsconnect.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "408" + "finding": "393" } ], "thirdparties": { @@ -22785,21 +22939,21 @@ "cookies": [], "headers": { "content-encoding": "gzip", - "content-security-policy": "connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; default-src 'self'; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; object-src 'none'", + "content-security-policy": "frame-src https://www.youtube.com/embed/hATrqHG4zYQ https://www.youtube-nocookie.com/embed/hATrqHG4zYQ http://www.youtube.com/embed/hATrqHG4zYQ http://www.youtube-nocookie.com/embed/hATrqHG4zYQ https://www.youtube.com/embed/WTHj_kQXnzs https://www.youtube-nocookie.com/embed/WTHj_kQXnzs http://www.youtube.com/embed/WTHj_kQXnzs http://www.youtube-nocookie.com/embed/WTHj_kQXnzs https://www.youtube.com/embed/ihsm-36I-fE https://www.youtube-nocookie.com/embed/ihsm-36I-fE http://www.youtube.com/embed/ihsm-36I-fE http://www.youtube-nocookie.com/embed/ihsm-36I-fE https://www.youtube.com/embed/AJGo6bydQss https://www.youtube-nocookie.com/embed/AJGo6bydQss http://www.youtube.com/embed/AJGo6bydQss http://www.youtube-nocookie.com/embed/AJGo6bydQss; script-src 'self' https://unpkg.com/stimulus@3.2.1/dist/stimulus.umd.js https://unpkg.com/easymde/dist/easymde.min.js https://forms.sbc29.com/form.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.js https://unpkg.com/tarteaucitronjs@1.15.0/lang/tarteaucitron.fr.js https://unpkg.com/tarteaucitronjs@1.15.0/tarteaucitron.services.js 'sha256-+iP5od5k5h6dnQJ5XGJGipIf2K6VdSrIwATxnixVR8s=' 'sha256-ARvyo8AJ91wUvPfVqP2FfHuIHZJN3xaLI7Vgj2tQx18=' 'sha256-mXH/smf1qtriC8hr62Qt2dvp/StB/Ixr4xmBRvkCz0U=' https://cdn.jsdelivr.net/npm/chart.js@3.7.1/dist/chart.min.js 'sha256-oOHki3o/lOkQD0J+jC75068TFqQoV40dYK6wrkIXI1c=' https://cdnjs.cloudflare.com/ajax/libs/chartjs-plugin-datalabels/2.0.0/chartjs-plugin-datalabels.min.js 'sha256-CO4GFu3p1QNoCvjdyc+zNsVh77XOc5H2OcZYFb8YUPA=' https://code.jquery.com/jquery-3.6.1.js https://code.jquery.com/ui/1.13.1/jquery-ui.js 'sha256-NR0PzgaeuNCaj2DbnvXN6W2GoemNJ9jQE4tqs/H7O0c=' 'sha256-TzFaIqy7u6q6ovMbU59mz7pAL/g930THGxhG6dg/cHQ=' https://cdn.jsdelivr.net/npm/@tarekraafat/autocomplete.js@10.2.7/dist/autoComplete.min.js https://stats.data.gouv.fr/matomo.js https://stats.data.gouv.fr/piwik.js; connect-src 'self' https://stats.data.gouv.fr/matomo.php https://stats.data.gouv.fr/piwik.php https://api.sarbacane.com/v1/forms/contacts/upsert?listID=09a44be1-412f-4190-a3fe-6eaac71c9f00&formID=gJOzUSbKRDWeSVyadSRTTw&timezone=Europe/Paris&timezoneOffset=+2 https://api-adresse.data.gouv.fr/search/; default-src 'self'; style-src 'self' https://unpkg.com/easymde/dist/easymde.min.css https://unpkg.com/tarteaucitronjs@1.15.0/css/tarteaucitron.css; img-src 'self' data: https://www.service-public.fr/resources/v-5cf79a7acf/web/css/img/png/; object-src 'none'", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 01:45:38 GMT", + "date": "Sun, 14 Jan 2024 01:49:52 GMT", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=60", "vary": "Cookie", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "2517671e-8673-44f8-a1d7-61f5075b992c" + "x-request-id": "5250f5ad-7fc1-4b54-ae1b-8f956577f993" }, "endpoints": [ { "hostname": "aidantsconnect.beta.gouv.fr", - "ip": "148.253.96.193", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -22855,13 +23009,13 @@ }, { "hostname": "unpkg.com", - "ip": "104.16.124.175", + "ip": "104.16.123.175", "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -22875,16 +23029,8 @@ }, { "hostname": "forms.sbc29.com", - "ip": "185.75.141.220", + "ip": "37.97.66.118", "geoip": { - "city": { - "geoname_id": 2973317, - "names": { - "en": "Tassin-la-Demi-Lune", - "fr": "Tassin-la-Demi-Lune", - "pt-BR": "Tassin-la-Demi-Lune" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -22915,14 +23061,11 @@ } }, "location": { - "accuracy_radius": 5, - "latitude": 45.7556, - "longitude": 4.7838, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "69160" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -22937,28 +23080,7 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071625, - "iso_code": "ARA", - "names": { - "en": "Auvergne-Rhone-Alpes", - "fr": "Auvergne-Rhône-Alpes" - } - }, - { - "geoname_id": 2987410, - "iso_code": "69", - "names": { - "de": "Rhône", - "en": "Rhône", - "es": "Ródano", - "fr": "Rhône", - "pt-BR": "Ródano" - } - } - ] + } } } ] @@ -23046,24 +23168,6 @@ ], "rootPath": true }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, { "slug": "recaptcha", "name": "reCAPTCHA", @@ -23099,6 +23203,24 @@ ], "rootPath": true }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, { "slug": "pwa", "name": "PWA", @@ -23122,7 +23244,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 01:44:56", + "@generated": "Sun, 14 Jan 2024 01:49:09", "site": [ { "@name": "https://aidantsconnect.beta.gouv.fr", @@ -23283,23 +23405,20 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -23314,24 +23433,32 @@ "type": "dns", "host": "aidantsconnect.beta.gouv.fr.", "matched-at": "aidantsconnect.beta.gouv.fr", - "timestamp": "2024-01-07T01:54:01.735631768Z", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." + ], + "timestamp": "2024-01-14T01:57:58.529109489Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -23347,30 +23474,29 @@ "host": "aidantsconnect.beta.gouv.fr.", "matched-at": "aidantsconnect.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T01:54:02.381578644Z", + "timestamp": "2024-01-14T01:57:58.533144737Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "CAA Record", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "caa" ], - "description": "DNS DMARC information was detected.\n", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -23380,17 +23506,13 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "aidantsconnect.beta.gouv.fr.", - "matched-at": "_dmarc.aidantsconnect.beta.gouv.fr", - "extracted-results": [ - "\"v=DMARC1; p=none\"" - ], - "timestamp": "2024-01-07T01:54:02.498302777Z", + "matched-at": "aidantsconnect.beta.gouv.fr", + "timestamp": "2024-01-14T01:57:58.533323429Z", "matcher-status": true }, { @@ -23428,27 +23550,27 @@ "extracted-results": [ "\"v=spf1 include:spf.mailjet.com include:spf.tipimail.com include:_spf.alwaysdata.com -all\"" ], - "timestamp": "2024-01-07T01:54:02.729318941Z", + "timestamp": "2024-01-14T01:57:58.692307102Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -23458,17 +23580,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "aidantsconnect.beta.gouv.fr.", - "matched-at": "aidantsconnect.beta.gouv.fr", + "matched-at": "_dmarc.aidantsconnect.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "\"v=DMARC1; p=none\"" ], - "timestamp": "2024-01-07T01:54:02.73851546Z", + "timestamp": "2024-01-14T01:57:58.767961429Z", "matcher-status": true }, { @@ -23499,12 +23621,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "x-frame-options", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.142580781Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.249003708Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23536,12 +23658,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.142632878Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.249057829Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23573,12 +23695,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.142647605Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.249080411Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23614,8 +23736,8 @@ "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.14266088Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.249097874Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23647,12 +23769,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.142676429Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.24911722Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23684,12 +23806,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.142691908Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.249136867Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23721,12 +23843,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.142704631Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.2491599Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23758,12 +23880,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.142717014Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.249175309Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23795,12 +23917,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.142729097Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.249195187Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23832,12 +23954,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.14274149Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.249214092Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23873,8 +23995,8 @@ "type": "http", "host": "https://aidantsconnect.beta.gouv.fr", "matched-at": "https://aidantsconnect.beta.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T01:55:38.142753642Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T01:59:31.249232857Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aidantsconnect.beta.gouv.fr'", "matcher-status": true }, @@ -23904,8 +24026,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T02:02:28.391656218Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T02:06:27.077342382Z", "matcher-status": true }, { @@ -23934,8 +24056,8 @@ "extracted-results": [ "aidantsconnect.beta.gouv.fr" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T02:02:28.391793163Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T02:06:27.077472717Z", "matcher-status": true }, { @@ -23965,8 +24087,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T02:02:30.844477965Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T02:06:29.61635465Z", "matcher-status": true }, { @@ -23996,8 +24118,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T02:02:31.156598416Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T02:06:30.002704574Z", "matcher-status": true } ], @@ -24005,7 +24127,7 @@ { "requestedUrl": "https://aidantsconnect.beta.gouv.fr/", "finalUrl": "https://aidantsconnect.beta.gouv.fr/", - "fetchTime": "2024-01-07T01:45:11.055Z", + "fetchTime": "2024-01-14T01:49:24.087Z", "runWarnings": [], "categories": { "performance": { @@ -24068,53 +24190,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2805, + "numericValue": 2463, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2805, - "firstMeaningfulPaint": 2805, - "largestContentfulPaint": 4149, - "interactive": 2805, - "speedIndex": 2805, + "firstContentfulPaint": 2463, + "firstMeaningfulPaint": 2463, + "largestContentfulPaint": 3803, + "interactive": 2463, + "speedIndex": 2485, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.00873659133911133, "cumulativeLayoutShiftMainFrame": 0.00873659133911133, "totalCumulativeLayoutShift": 0.00873659133911133, "observedTimeOrigin": 0, - "observedTimeOriginTs": 410489455, + "observedTimeOriginTs": 281703746, "observedNavigationStart": 0, - "observedNavigationStartTs": 410489455, - "observedFirstPaint": 720, - "observedFirstPaintTs": 411209215, - "observedFirstContentfulPaint": 720, - "observedFirstContentfulPaintTs": 411209215, - "observedFirstContentfulPaintAllFrames": 720, - "observedFirstContentfulPaintAllFramesTs": 411209215, - "observedFirstMeaningfulPaint": 720, - "observedFirstMeaningfulPaintTs": 411209215, - "observedLargestContentfulPaint": 837, - "observedLargestContentfulPaintTs": 411325978, - "observedLargestContentfulPaintAllFrames": 837, - "observedLargestContentfulPaintAllFramesTs": 411325978, - "observedTraceEnd": 3298, - "observedTraceEndTs": 413787538, - "observedLoad": 972, - "observedLoadTs": 411461326, + "observedNavigationStartTs": 281703746, + "observedFirstPaint": 654, + "observedFirstPaintTs": 282357589, + "observedFirstContentfulPaint": 654, + "observedFirstContentfulPaintTs": 282357589, + "observedFirstContentfulPaintAllFrames": 654, + "observedFirstContentfulPaintAllFramesTs": 282357589, + "observedFirstMeaningfulPaint": 654, + "observedFirstMeaningfulPaintTs": 282357589, + "observedLargestContentfulPaint": 763, + "observedLargestContentfulPaintTs": 282466947, + "observedLargestContentfulPaintAllFrames": 763, + "observedLargestContentfulPaintAllFramesTs": 282466947, + "observedTraceEnd": 3221, + "observedTraceEndTs": 284924579, + "observedLoad": 880, + "observedLoadTs": 282583727, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 410489980, + "observedDomContentLoadedTs": 281704326, "observedCumulativeLayoutShift": 0.00873659133911133, "observedCumulativeLayoutShiftMainFrame": 0.00873659133911133, "observedTotalCumulativeLayoutShift": 0.00873659133911133, - "observedFirstVisualChange": 710, - "observedFirstVisualChangeTs": 411199455, - "observedLastVisualChange": 1044, - "observedLastVisualChangeTs": 411533455, - "observedSpeedIndex": 863, - "observedSpeedIndexTs": 411352545 + "observedFirstVisualChange": 651, + "observedFirstVisualChangeTs": 282354746, + "observedLastVisualChange": 1001, + "observedLastVisualChangeTs": 282704746, + "observedSpeedIndex": 810, + "observedSpeedIndexTs": 282513366 }, { "lcpInvalidated": false @@ -24136,19 +24258,19 @@ "numScripts": 13, "numStylesheets": 7, "numFonts": 4, - "numTasks": 17, + "numTasks": 16, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.656, - "throughput": 5659441.656574634, - "maxRtt": 153.123, - "maxServerLatency": 117.21600000000007, - "totalByteWeight": 550024, - "totalTaskTime": 4.708, - "mainDocumentTransferSize": 8312 + "rtt": 16.717999999999996, + "throughput": 7536422.978738196, + "maxRtt": 152.66299999999998, + "maxServerLatency": 19.49600000000001, + "totalByteWeight": 550191, + "totalTaskTime": 4.981000000000001, + "mainDocumentTransferSize": 8378 } ] } @@ -24243,8 +24365,8 @@ "sonarcloud": null, "summary": { "httpGrade": "C", - "apdex": 0.889, - "apdexGrade": "F", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -24283,27 +24405,27 @@ "http": { "url": "https://aides-territoires.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:14:44 GMT", + "end_time": "Sun, 14 Jan 2024 01:15:13 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-VeQnRAAhR66ow6iZYBxC7Q=='", + "Content-Security-Policy": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; object-src 'none'; form-action 'self'; frame-ancestors *; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-VmY02SdGTu9Tfm9Et6l9VA=='; worker-src blob:; default-src https://*.scw.cloud; base-uri 'self'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; font-src 'self'; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 01:14:41 GMT", + "Date": "Sun, 14 Jan 2024 01:15:10 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie", "X-Content-Type-Options": "nosniff", - "X-Request-ID": "926a3544-935f-49c0-9ae8-de8bf7e3b29b" + "X-Request-ID": "94f5d90e-3814-4e60-9217-da7352bee096" }, - "scan_id": 46226194, + "scan_id": 46434887, "score": 105, - "start_time": "Sun, 07 Jan 2024 01:14:37 GMT", + "start_time": "Sun, 14 Jan 2024 01:15:06 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -24319,8 +24441,8 @@ "'self'" ], "connect-src": [ - "https://stats.data.gouv.fr", "https://in-automate.brevo.com/", + "https://stats.data.gouv.fr", "'self'" ], "default-src": [ @@ -24336,28 +24458,28 @@ "*" ], "frame-src": [ + "'self'", + "https://stats.data.gouv.fr", "https://aides-territoires-metabase.osc-fr1.scalingo.io", - "https://www.dailymotion.com", "https://www.youtube.com", - "'self'", - "https://stats.data.gouv.fr" + "https://www.dailymotion.com" ], "img-src": [ - "'self'", "https://*.forte.tiles.quaidorsay.fr", + "'self'", "https://*.scw.cloud", - "https://stats.data.gouv.fr", - "data:" + "data:", + "https://stats.data.gouv.fr" ], "object-src": [ "'none'" ], "script-src": [ - "'nonce-veqnraahr66ow6izybxc7q=='", - "https://aides-territoires-metabase.osc-fr1.scalingo.io", "'self'", "https://stats.data.gouv.fr", - "https://sibautomation.com" + "https://aides-territoires-metabase.osc-fr1.scalingo.io", + "https://sibautomation.com", + "'nonce-vmy02sdgtu9tfm9et6l9va=='" ], "style-src": [ "https://stats.beta.gouv.fr", @@ -24544,10 +24666,10 @@ "url": "https://aides-territoires.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 99.967, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-04T13:47:07Z", + "up_since": "2024-01-14T02:07:07Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -24559,8 +24681,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T02:20:38Z", - "next_check_at": "2024-01-07T02:25:36Z", + "last_check_at": "2024-01-14T02:07:07Z", + "next_check_at": "2024-01-14T02:12:05Z", "created_at": "2021-04-22T19:49:15Z", "mute_until": null, "favicon_url": "https://aides-territoires.beta.gouv.fr/static/favicons/favicon.12acb9fc12ee.ico", @@ -24568,20 +24690,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T01:50:47Z", + "tested_at": "2024-01-14T01:34:45Z", "expires_at": "2024-03-07T20:18:14Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.732, + "apdex": 0.608, "timings": { "redirect": 0, - "namelookup": 163, - "connection": 127, - "handshake": 133, - "response": 654, - "total": 1077 + "namelookup": 156, + "connection": 111, + "handshake": 119, + "response": 618, + "total": 1003 } }, "uptimeGrade": "A", @@ -24614,77 +24736,77 @@ "testssl": [ { "id": "service", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -24692,7 +24814,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -24700,7 +24822,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -24708,7 +24830,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -24716,7 +24838,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -24724,7 +24846,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -24732,511 +24854,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-08 20:18" }, { "id": "cert_notAfter", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-07 20:18" }, { "id": "cert_extlifeSpan", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704593201" + "finding": "1705197427" }, { "id": "HSTS_time", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-oHBaqqiyWrYSwsfnfONkoQ=='" + "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; object-src 'none'; form-action 'self'; frame-ancestors *; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-H6qHMVh7wtKktsfQ7MBzIw=='; worker-src blob:; default-src https://*.scw.cloud; base-uri 'self'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; font-src 'self'; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/" }, { "id": "Referrer-Policy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -25244,7 +25366,7 @@ }, { "id": "heartbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -25253,7 +25375,7 @@ }, { "id": "CCS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -25262,7 +25384,7 @@ }, { "id": "ticketbleed", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -25271,7 +25393,7 @@ }, { "id": "ROBOT", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -25280,7 +25402,7 @@ }, { "id": "secure_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -25288,7 +25410,7 @@ }, { "id": "secure_client_renego", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -25297,7 +25419,7 @@ }, { "id": "CRIME_TLS", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -25306,7 +25428,7 @@ }, { "id": "BREACH", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -25315,7 +25437,7 @@ }, { "id": "POODLE_SSL", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -25324,14 +25446,14 @@ }, { "id": "fallback_SCSV", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -25340,7 +25462,7 @@ }, { "id": "FREAK", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -25349,7 +25471,7 @@ }, { "id": "DROWN", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -25358,7 +25480,7 @@ }, { "id": "DROWN_hint", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -25367,7 +25489,7 @@ }, { "id": "LOGJAM", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -25376,7 +25498,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -25385,7 +25507,7 @@ }, { "id": "BEAST", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -25394,7 +25516,7 @@ }, { "id": "LUCKY13", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -25403,7 +25525,7 @@ }, { "id": "winshock", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -25412,7 +25534,7 @@ }, { "id": "RC4", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -25421,315 +25543,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", + "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" @@ -26081,7 +26203,7 @@ "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "60 >= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", @@ -26277,14 +26399,14 @@ "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704593269" + "finding": "1705197488" }, { "id": "HSTS_time", @@ -26347,7 +26469,7 @@ "ip": "aides-territoires.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-Up9LsqI+gkWlAOMQWnPQWA=='" + "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; object-src 'none'; form-action 'self'; frame-ancestors *; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-qj9reO9CxcwsAHEC/CjSdA=='; worker-src blob:; default-src https://*.scw.cloud; base-uri 'self'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; font-src 'self'; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/" }, { "id": "Referrer-Policy", @@ -26858,77 +26980,77 @@ }, { "id": "service", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -26936,7 +27058,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -26944,7 +27066,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -26952,7 +27074,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -26960,7 +27082,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -26968,7 +27090,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -26976,511 +27098,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-12-08 20:18" }, { "id": "cert_notAfter", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-03-07 20:18" }, { "id": "cert_extlifeSpan", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704593333" + "finding": "1705197547" }, { "id": "HSTS_time", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-PBzQQIzvw/tN0NPq1/Sjag=='" + "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; object-src 'none'; form-action 'self'; frame-ancestors *; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-lJ8Jpe/TH/u6icE5EwmdfQ=='; worker-src blob:; default-src https://*.scw.cloud; base-uri 'self'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; font-src 'self'; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/" }, { "id": "Referrer-Policy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -27488,7 +27610,7 @@ }, { "id": "heartbleed", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -27497,7 +27619,7 @@ }, { "id": "CCS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -27506,7 +27628,7 @@ }, { "id": "ticketbleed", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -27515,7 +27637,7 @@ }, { "id": "ROBOT", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -27524,7 +27646,7 @@ }, { "id": "secure_renego", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -27532,7 +27654,7 @@ }, { "id": "secure_client_renego", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -27541,7 +27663,7 @@ }, { "id": "CRIME_TLS", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -27550,7 +27672,7 @@ }, { "id": "BREACH", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -27559,7 +27681,7 @@ }, { "id": "POODLE_SSL", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -27568,14 +27690,14 @@ }, { "id": "fallback_SCSV", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -27584,7 +27706,7 @@ }, { "id": "FREAK", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -27593,7 +27715,7 @@ }, { "id": "DROWN", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -27602,7 +27724,7 @@ }, { "id": "DROWN_hint", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -27611,7 +27733,7 @@ }, { "id": "LOGJAM", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -27620,7 +27742,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -27629,7 +27751,7 @@ }, { "id": "BEAST", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -27638,7 +27760,7 @@ }, { "id": "LUCKY13", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -27647,7 +27769,7 @@ }, { "id": "winshock", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -27656,7 +27778,7 @@ }, { "id": "RC4", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -27665,315 +27787,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aides-territoires.beta.gouv.fr/5.104.101.30", + "ip": "aides-territoires.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" @@ -28325,7 +28447,7 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "60 >= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", @@ -28528,7 +28650,7 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704593399" + "finding": "1705197603" }, { "id": "HSTS_time", @@ -28591,7 +28713,7 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-bGQ5u+SeRK9Rx0QSrlSc6A=='" + "finding": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; object-src 'none'; form-action 'self'; frame-ancestors *; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-mLbgvNkE+GQMibC5K2iImw=='; worker-src blob:; default-src https://*.scw.cloud; base-uri 'self'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; font-src 'self'; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/" }, { "id": "Referrer-Policy", @@ -29105,7 +29227,7 @@ "ip": "aides-territoires.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "270" + "finding": "237" } ], "thirdparties": { @@ -29116,7 +29238,7 @@ }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/projects/3f8e-deploiement-de-la-flotte-de-velos-libre-servi_image.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/projects/a027-amenagement-dune-ancienne-aire-de-sports-en-a_image.png" }, { "type": "unknown", @@ -29128,23 +29250,23 @@ }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-de-leau-rhone-mediterranee-corse_logo.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/france-mobilites_logo.png" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/bpi-france_logo.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/banque-des-territoires_logo.png" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-bio_logo.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-de-leau-rhone-mediterranee-corse_logo.png" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/office-francais-pour-la-biodiversite-ofb_logo.png" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-de-leau-seine-normandie_logo.png" }, { "type": "unknown", - "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/agence-de-leau-loire-bretagne_logo.jpeg" + "url": "https://aides-territoires-prod.s3.fr-par.scw.cloud/aides-territoires-prod/backers/office-francais-pour-la-biodiversite-ofb_logo.png" }, { "type": "unknown", @@ -29164,32 +29286,31 @@ }, { "type": "unknown", - "url": "https://in-automate.brevo.com/p?key=bplip3bpikf8s8hgqk0h5u8z&cuid=cf68b4be-e98b-4eb9-8af0-bae2b4ab109e&ma_url=https%3A%2F%2Faides-territoires.beta.gouv.fr%2F&sib_type=page&ma_title=Accueil%20Aides-territoires%20%7C%20Aides%20publiques%20pour%20les%20collectivit%C3%A9s&sib_name=Accueil%20Aides-territoires%20%7C%20Aides%20publiques%20pour%20les%20collectivit%C3%A9s&ma_referrer=&ma_path=%2F" + "url": "https://in-automate.brevo.com/p?key=bplip3bpikf8s8hgqk0h5u8z&cuid=4a638ac2-5cdb-4c41-b9d0-606ebab40a09&ma_url=https%3A%2F%2Faides-territoires.beta.gouv.fr%2F&sib_type=page&ma_title=Accueil%20Aides-territoires%20%7C%20Aides%20publiques%20pour%20les%20collectivit%C3%A9s&sib_name=Accueil%20Aides-territoires%20%7C%20Aides%20publiques%20pour%20les%20collectivit%C3%A9s&ma_referrer=&ma_path=%2F" } ], "cookies": [ { - "name": "_pk_ses.62.6088", - "value": "1", - "domain": "aides-territoires.beta.gouv.fr", + "name": "sib_cuid", + "value": "4a638ac2-5cdb-4c41-b9d0-606ebab40a09", + "domain": ".aides-territoires.beta.gouv.fr", "path": "/", - "expires": 1704594930, - "size": 16, + "expires": 1720918565, + "size": 44, "httpOnly": false, "secure": false, "session": false, - "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 }, { - "name": "_pk_id.62.6088", - "value": "9ff5cb295f40f8a9.1704593131.", + "name": "_pk_ses.62.6088", + "value": "1", "domain": "aides-territoires.beta.gouv.fr", "path": "/", - "expires": 1738548331, - "size": 42, + "expires": 1705199165, + "size": 16, "httpOnly": false, "secure": false, "session": false, @@ -29199,15 +29320,16 @@ "sourcePort": 443 }, { - "name": "sib_cuid", - "value": "cf68b4be-e98b-4eb9-8af0-bae2b4ab109e", - "domain": ".aides-territoires.beta.gouv.fr", + "name": "_pk_id.62.6088", + "value": "eedcd361e56108c9.1705197366.", + "domain": "aides-territoires.beta.gouv.fr", "path": "/", - "expires": 1720310730, - "size": 44, + "expires": 1739152566, + "size": 42, "httpOnly": false, "secure": false, "session": false, + "sameSite": "Lax", "sameParty": false, "sourceScheme": "Secure", "sourcePort": 443 @@ -29215,21 +29337,30 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; form-action 'self'; frame-ancestors *; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/; object-src 'none'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; base-uri 'self'; default-src https://*.scw.cloud; font-src 'self'; worker-src blob:; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-jl02cBkMYYvXIvhyhB/AyQ=='", + "content-security-policy": "style-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr; object-src 'none'; form-action 'self'; frame-ancestors *; script-src 'self' https://stats.data.gouv.fr https://aides-territoires-metabase.osc-fr1.scalingo.io https://sibautomation.com 'nonce-f7tlwmsAakQordNNKYe6eQ=='; worker-src blob:; default-src https://*.scw.cloud; base-uri 'self'; frame-src 'self' https://stats.data.gouv.fr https://www.youtube.com https://www.dailymotion.com https://aides-territoires-metabase.osc-fr1.scalingo.io; font-src 'self'; img-src 'self' data: https://stats.data.gouv.fr https://*.scw.cloud https://*.forte.tiles.quaidorsay.fr; connect-src 'self' https://stats.data.gouv.fr https://in-automate.brevo.com/", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 02:05:30 GMT", + "date": "Sun, 14 Jan 2024 01:56:04 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "Cookie", "x-content-type-options": "nosniff", - "x-request-id": "0eb142ed-a919-42ab-a162-ab41ed388861" + "x-request-id": "4ce4cbee-9d42-42a2-9752-8c725ad63988" }, "endpoints": [ { "hostname": "aides-territoires.beta.gouv.fr", - "ip": "109.232.236.90", + "ip": "5.104.101.30", "geoip": { + "city": { + "geoname_id": 3034797, + "names": { + "de": "Bartenheim", + "en": "Bartenheim", + "fr": "Bartenheim", + "pt-BR": "Bartenheim" + } + }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -29261,10 +29392,13 @@ }, "location": { "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "latitude": 47.6376, + "longitude": 7.4798, "time_zone": "Europe/Paris" }, + "postal": { + "code": "68870" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -29279,12 +29413,33 @@ "ru": "Франция", "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 11071622, + "iso_code": "GES", + "names": { + "en": "Grand Est", + "fr": "Grand Est" + } + }, + { + "geoname_id": 3013663, + "iso_code": "68", + "names": { + "de": "Haut-Rhin", + "en": "Haut-Rhin", + "es": "Alto Rin", + "fr": "Haut-Rhin", + "pt-BR": "Alto Reno" + } + } + ] } }, { "hostname": "aides-territoires-prod.s3.fr-par.scw.cloud", - "ip": "51.159.62.6", + "ip": "51.159.62.7", "geoip": { "city": { "geoname_id": 2988507, @@ -29329,7 +29484,7 @@ } }, "location": { - "accuracy_radius": 500, + "accuracy_radius": 1000, "latitude": 48.8323, "longitude": 2.4075, "time_zone": "Europe/Paris" @@ -29361,7 +29516,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -29385,7 +29542,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -29399,13 +29556,47 @@ }, { "hostname": "in-automate.brevo.com", - "ip": "104.18.38.216", + "ip": "172.64.149.40", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -29562,7 +29753,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 02:04:46", + "@generated": "Sun, 14 Jan 2024 01:55:22", "site": [ { "@name": "https://aides-territoires.beta.gouv.fr", @@ -29626,13 +29817,6 @@ "riskdesc": "Low (Medium)", "desc": "

The Anti-MIME-Sniffing header X-Content-Type-Options was not set to 'nosniff'. This allows older versions of Internet Explorer and Chrome to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the declared content type. Current (early 2014) and legacy versions of Firefox will use the declared content type (if one is set), rather than performing MIME-sniffing.

" }, - { - "name": "Authentication Request Identified", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The given request has been identified as an authentication request. The 'Other Info' field contains a set of key=value lines which identify any relevant fields. If the request is in a context which has an Authentication Method set to \"Auto-Detect\" then this rule will change the authentication to match the request identified.

" - }, { "name": "Base64 Disclosure", "riskcode": "0", @@ -29726,7 +29910,7 @@ { "requestedUrl": "https://aides-territoires.beta.gouv.fr/", "finalUrl": "https://aides-territoires.beta.gouv.fr/", - "fetchTime": "2024-01-07T02:05:00.519Z", + "fetchTime": "2024-01-14T01:55:36.318Z", "runWarnings": [], "categories": { "performance": { @@ -29737,7 +29921,7 @@ "snapshot" ], "id": "performance", - "score": 0 + "score": 0.003798675537109375 }, "accessibility": { "title": "Accessibility", @@ -29789,53 +29973,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2330, + "numericValue": 2642, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2330, - "firstMeaningfulPaint": 2330, - "largestContentfulPaint": 2456, - "interactive": 2330, - "speedIndex": 2330, + "firstContentfulPaint": 2642, + "firstMeaningfulPaint": 2642, + "largestContentfulPaint": 2758, + "interactive": 2642, + "speedIndex": 2642, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.01162374856736925, "cumulativeLayoutShiftMainFrame": 0.01162374856736925, "totalCumulativeLayoutShift": 0.01162374856736925, "observedTimeOrigin": 0, - "observedTimeOriginTs": 253903428, + "observedTimeOriginTs": 335402278, "observedNavigationStart": 0, - "observedNavigationStartTs": 253903428, - "observedFirstPaint": 519, - "observedFirstPaintTs": 254422704, - "observedFirstContentfulPaint": 519, - "observedFirstContentfulPaintTs": 254422704, - "observedFirstContentfulPaintAllFrames": 519, - "observedFirstContentfulPaintAllFramesTs": 254422704, - "observedFirstMeaningfulPaint": 519, - "observedFirstMeaningfulPaintTs": 254422704, - "observedLargestContentfulPaint": 519, - "observedLargestContentfulPaintTs": 254422704, - "observedLargestContentfulPaintAllFrames": 519, - "observedLargestContentfulPaintAllFramesTs": 254422704, - "observedTraceEnd": 4342, - "observedTraceEndTs": 258245695, - "observedLoad": 1874, - "observedLoadTs": 255777765, + "observedNavigationStartTs": 335402278, + "observedFirstPaint": 532, + "observedFirstPaintTs": 335934756, + "observedFirstContentfulPaint": 532, + "observedFirstContentfulPaintTs": 335934756, + "observedFirstContentfulPaintAllFrames": 532, + "observedFirstContentfulPaintAllFramesTs": 335934756, + "observedFirstMeaningfulPaint": 532, + "observedFirstMeaningfulPaintTs": 335934756, + "observedLargestContentfulPaint": 532, + "observedLargestContentfulPaintTs": 335934756, + "observedLargestContentfulPaintAllFrames": 532, + "observedLargestContentfulPaintAllFramesTs": 335934756, + "observedTraceEnd": 3788, + "observedTraceEndTs": 339190356, + "observedLoad": 1481, + "observedLoadTs": 336883354, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 253903960, + "observedDomContentLoadedTs": 335402778, "observedCumulativeLayoutShift": 0.01162374856736925, "observedCumulativeLayoutShiftMainFrame": 0.01162374856736925, "observedTotalCumulativeLayoutShift": 0.01162374856736925, - "observedFirstVisualChange": 503, - "observedFirstVisualChangeTs": 254406428, - "observedLastVisualChange": 1119, - "observedLastVisualChangeTs": 255022428, - "observedSpeedIndex": 517, - "observedSpeedIndexTs": 254419989 + "observedFirstVisualChange": 517, + "observedFirstVisualChangeTs": 335919278, + "observedLastVisualChange": 1134, + "observedLastVisualChangeTs": 336536278, + "observedSpeedIndex": 540, + "observedSpeedIndexTs": 335942395 }, { "lcpInvalidated": false @@ -29857,19 +30041,19 @@ "numScripts": 5, "numStylesheets": 2, "numFonts": 5, - "numTasks": 18, + "numTasks": 17, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.838, - "throughput": 26682783.787194047, - "maxRtt": 104.585, - "maxServerLatency": 500.14, - "totalByteWeight": 3834266, - "totalTaskTime": 1.871, - "mainDocumentTransferSize": 64836 + "rtt": 1.5259999999999998, + "throughput": 21005155.473456256, + "maxRtt": 87.135, + "maxServerLatency": 409.45599999999996, + "totalByteWeight": 3650100, + "totalTaskTime": 1.8479999999999999, + "mainDocumentTransferSize": 64683 } ] } @@ -29955,9 +30139,9 @@ "sonarcloud": null, "summary": { "httpGrade": "A+", - "apdex": 0.732, + "apdex": 0.608, "apdexGrade": "F", - "uptime": 99.967, + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -29969,7 +30153,7 @@ "cookiesCount": 3, "trackersGrade": "F", "trackersCount": 14, - "lighthouse_performance": 0, + "lighthouse_performance": 0.003798675537109375, "lighthouse_performanceGrade": "F", "lighthouse_accessibility": 0.96, "lighthouse_accessibilityGrade": "A", @@ -29998,7 +30182,7 @@ "http": { "url": "https://aplus.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:04:14 GMT", + "end_time": "Sun, 14 Jan 2024 01:58:22 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -30007,18 +30191,18 @@ "Content-Length": "19893", "Content-Security-Policy": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 07 Jan 2024 02:04:12 GMT", + "Date": "Sun, 14 Jan 2024 01:58:18 GMT", "Referrer-Policy": "origin-when-cross-origin, strict-origin-when-cross-origin", - "Set-Cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjEzMDVhNDllMzcyMDNiZGY5ZmI1ZmZlNmEzMWM4YWE4MmQ0YWE2MDctMTcwNDU5MzA1Mjg1Ny1jMzY4ZjhkMjE5NzhmZTY1NDZmYjE2OTIifSwiZXhwIjoxNzA3MTg1MDUyLCJuYmYiOjE3MDQ1OTMwNTIsImlhdCI6MTcwNDU5MzA1Mn0.cRfY9xOi9pxD-CJGCwvn-OM1c8W94kJk_SFvKqvKFMY; Max-Age=2592000; Expires=Tue, 06 Feb 2024 02:04:12 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", + "Set-Cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjQ0OWU4NzRlMWE2YWVjYjkyYTEwZGEwMjllMzA4NDg4OWFlYjFkNDItMTcwNTE5NzQ5ODE4My1mYWZjNGY5N2NjNzI3ZTU4MmM2NWI0MmUifSwiZXhwIjoxNzA3Nzg5NDk4LCJuYmYiOjE3MDUxOTc0OTgsImlhdCI6MTcwNTE5NzQ5OH0.sZOUoNABzOD14WZDnG9eNYv0MkXxoMluL5t9s2_LrgM; Max-Age=2592000; Expires=Tue, 13 Feb 2024 01:58:18 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", "X-Permitted-Cross-Domain-Policies": "master-only", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46226676, + "scan_id": 46435350, "score": 115, - "start_time": "Sun, 07 Jan 2024 02:04:09 GMT", + "start_time": "Sun, 14 Jan 2024 01:58:14 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -30034,8 +30218,8 @@ "'none'" ], "connect-src": [ - "https://stats.data.gouv.fr", - "'self'" + "'self'", + "https://stats.data.gouv.fr" ], "default-src": [ "'none'" @@ -30050,27 +30234,27 @@ "'self'" ], "frame-src": [ - "https://www.dailymotion.com", - "*.aplus.beta.gouv.fr", + "'self'", "blob:", - "'self'" + "https://www.dailymotion.com", + "*.aplus.beta.gouv.fr" ], "img-src": [ + "'self'", "data:", - "stats.data.gouv.fr", - "'self'" + "stats.data.gouv.fr" ], "object-src": [ "'none'" ], "script-src": [ - "stats.data.gouv.fr", - "'self'" + "'self'", + "stats.data.gouv.fr" ], "style-src": [ - "stats.data.gouv.fr", + "'self'", "'unsafe-inline'", - "'self'" + "stats.data.gouv.fr" ] }, "http": true, @@ -30113,7 +30297,7 @@ "data": { "PLAY_SESSION": { "domain": "aplus.beta.gouv.fr", - "expires": 1707185052, + "expires": 1707789498, "httponly": true, "max-age": null, "path": "/", @@ -30258,7 +30442,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-03T20:40:59Z", + "up_since": "2024-01-11T04:18:21Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -30272,8 +30456,8 @@ "slack_compatible:3773906685", "telegram:3339950730" ], - "last_check_at": "2024-01-07T02:10:09Z", - "next_check_at": "2024-01-07T02:15:08Z", + "last_check_at": "2024-01-14T02:09:57Z", + "next_check_at": "2024-01-14T02:14:56Z", "created_at": "2021-04-22T19:49:24Z", "mute_until": null, "favicon_url": "https://aplus.beta.gouv.fr/assets/images/bb24f2cd5ff2ee1dbcb59efcd02c83a8-favicon.png", @@ -30281,7 +30465,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T01:35:22Z", + "tested_at": "2024-01-14T01:55:01Z", "expires_at": "2024-03-24T14:05:53Z", "valid": true, "error": null @@ -30290,11 +30474,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 240, - "connection": 198, - "handshake": 208, - "response": 209, - "total": 855 + "namelookup": 187, + "connection": 144, + "handshake": 157, + "response": 152, + "total": 639 } }, "uptimeGrade": "A", @@ -30328,23 +30512,23 @@ "vulnerabilities": [ { "owner": "superuser", - "port": "111", - "addr": "0.0.0.0" + "addr": "0.0.0.0", + "port": "111" }, { "owner": "superuser", - "port": "111", - "addr": "0.0.0.0" + "addr": "::", + "port": "111" }, { "owner": "superuser", - "port": "111", - "addr": "::" + "addr": "0.0.0.0", + "port": "111" }, { "owner": "superuser", - "port": "111", - "addr": "::" + "addr": "::", + "port": "111" } ] } @@ -30365,77 +30549,77 @@ "testssl": [ { "id": "service", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30443,7 +30627,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30451,7 +30635,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30459,7 +30643,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -30467,7 +30651,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -30475,7 +30659,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -30483,539 +30667,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "04300BE7C3B493CC4B96CA57FCC8373F69D7" }, { "id": "cert_serialNumberLen", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "31D253089CE90D9F3441FC40D2D36EFB7C592896" }, { "id": "cert_fingerprintSHA256", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "062A94CB34B6E881BD5393D7DD4D1A739BFBDA52854711D1073246156A873162" }, { "id": "cert", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "Kubernetes Ingress Controller Fake Certificate" }, { "id": "cert_subjectAltName", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "2023-12-25 14:05" }, { "id": "cert_notAfter", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "2024-03-24 14:05" }, { "id": "cert_extlifeSpan", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", - "finding": "1704593136" + "finding": "1705197605" }, { "id": "HSTS_time", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "182 days (=15724800 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'" }, { "id": "X-XSS-Protection", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "origin-when-cross-origin, strict-origin-when-cross-origin" }, { "id": "banner_reverseproxy", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -31023,7 +31207,7 @@ }, { "id": "heartbleed", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -31032,7 +31216,7 @@ }, { "id": "CCS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -31041,7 +31225,7 @@ }, { "id": "ticketbleed", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -31050,7 +31234,7 @@ }, { "id": "ROBOT", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -31059,7 +31243,7 @@ }, { "id": "secure_renego", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -31067,7 +31251,7 @@ }, { "id": "secure_client_renego", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -31076,7 +31260,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -31085,7 +31269,7 @@ }, { "id": "BREACH", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -31094,7 +31278,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -31103,14 +31287,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -31119,7 +31303,7 @@ }, { "id": "FREAK", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -31128,7 +31312,7 @@ }, { "id": "DROWN", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -31137,7 +31321,7 @@ }, { "id": "DROWN_hint", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -31146,7 +31330,7 @@ }, { "id": "LOGJAM", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -31155,7 +31339,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -31164,7 +31348,7 @@ }, { "id": "BEAST", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -31173,7 +31357,7 @@ }, { "id": "LUCKY13", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -31182,7 +31366,7 @@ }, { "id": "winshock", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -31191,7 +31375,7 @@ }, { "id": "RC4", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -31200,392 +31384,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplus.beta.gouv.fr/141.94.167.220", + "ip": "aplus.beta.gouv.fr/141.94.164.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31593,7 +31777,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31601,7 +31785,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31609,7 +31793,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -31617,7 +31801,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -31625,7 +31809,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -31633,539 +31817,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "04300BE7C3B493CC4B96CA57FCC8373F69D7" }, { "id": "cert_serialNumberLen", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "31D253089CE90D9F3441FC40D2D36EFB7C592896" }, { "id": "cert_fingerprintSHA256", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "062A94CB34B6E881BD5393D7DD4D1A739BFBDA52854711D1073246156A873162" }, { "id": "cert", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE8zCCA9ugAwIBAgISBDAL58O0k8xLlspX/Mg3P2nXMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzEyMjUxNDA1NTRaFw0yNDAzMjQxNDA1NTNaMB0xGzAZBgNVBAMTEmFwbHVzLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALA1jvWg6t/Xna8Upi3cCuE4ANGLCnCD0vycoyvkSaJ3G9BA6RIO9uIikao9ujKxjeGjKzPafEnCFDfbRiJz3qg/rPr/iQ4purqIndn1AqGaKCXatj8gHATsSjsRzWFfAI2kizQr2BkTAM47aMBvl04MdBa3yocYNln6fh48Sc0oMrDL1x8FV/UcBNKgRWIIxokExhC62lSLMj3/IwGBymFWJL5dxf1+C87Anhvk4zEvPOKcRiUbCoepMu1ZeedQy0qbvdcKlGzT+d/hN/6FhUr/SQq6x+LkBhDpqOSvthUsVgKGyq6ezqsjyT8QVY9vdG3hIdSgqK6GzGwLs676K9UCAwEAAaOCAhYwggISMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUO3e3ZZ0KnMFtgYwqhHm4jaP+ZD4wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHQYDVR0RBBYwFIISYXBsdXMuYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcAouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGMoYLU6gAABAMASDBGAiEAj12OK4hXo+5k8+OhUUosKL5OgsRpFvWxy91pS3JX6b0CIQCTXLTPqI1ayIsvVaNpWOnTYKwyCACmT4wowozAh4LUqgB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjKGC1U4AAAQDAEgwRgIhAJqxCdzXQJ+2762r1k6431hiSqLIOgxQ9ksmlX1MsHA6AiEArut6C3TJidXdIZBW/7sYMpzP1bVjeYyPk/dBfWqLkDcwDQYJKoZIhvcNAQELBQADggEBAF8M6Cy9rKqN+6YVXl5L1rmjL4YzAsqQVHzFxfFRziRBZ/flRO8xS1BSQ9W4snRISQ3bLEJqOondrltD4WYSZr1yv+AjLPOBaNoYUpI/Gwo/0mH4syfpO0Js/H7tVQBrKlBK2me5/gSOu5JJeiF6hwEBc2OvWUUUZvJAzLx3V09wF73s5fa4yGl02AdK3x5YOaPDbox80+uvc6Lf0SIHgFidKLaeCKsOnD10kA0Cv2YYL1ZSy6lJg+lCFamiw5sVs/zHoaSJ8X53jE1/eG5Mdp57UaC8TuAtyYDQuIAabyieoz1RYPC8VN2s6kUzebHJ6pe/9RgCw6h0V3DEA0hhe34=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "Kubernetes Ingress Controller Fake Certificate" }, { "id": "cert_subjectAltName", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "2023-12-25 14:05" }, { "id": "cert_notAfter", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "2024-03-24 14:05" }, { "id": "cert_extlifeSpan", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", - "finding": "1704593216" + "finding": "1705197735" }, { "id": "HSTS_time", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "182 days (=15724800 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'" }, { "id": "X-XSS-Protection", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "origin-when-cross-origin, strict-origin-when-cross-origin" }, { "id": "banner_reverseproxy", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -32173,7 +32357,7 @@ }, { "id": "heartbleed", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -32182,7 +32366,7 @@ }, { "id": "CCS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -32191,7 +32375,7 @@ }, { "id": "ticketbleed", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -32200,7 +32384,7 @@ }, { "id": "ROBOT", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -32209,7 +32393,7 @@ }, { "id": "secure_renego", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -32217,7 +32401,7 @@ }, { "id": "secure_client_renego", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -32226,7 +32410,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -32235,7 +32419,7 @@ }, { "id": "BREACH", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -32244,7 +32428,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -32253,14 +32437,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -32269,7 +32453,7 @@ }, { "id": "FREAK", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -32278,7 +32462,7 @@ }, { "id": "DROWN", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -32287,7 +32471,7 @@ }, { "id": "DROWN_hint", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -32296,7 +32480,7 @@ }, { "id": "LOGJAM", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -32305,7 +32489,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -32314,7 +32498,7 @@ }, { "id": "BEAST", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -32323,7 +32507,7 @@ }, { "id": "LUCKY13", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -32332,7 +32516,7 @@ }, { "id": "winshock", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -32341,7 +32525,7 @@ }, { "id": "RC4", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -32350,392 +32534,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplus.beta.gouv.fr/141.94.164.120", + "ip": "aplus.beta.gouv.fr/141.94.166.107", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -32743,7 +32927,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -32751,7 +32935,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -32759,7 +32943,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -32767,7 +32951,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -32775,7 +32959,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -32783,539 +32967,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "04300BE7C3B493CC4B96CA57FCC8373F69D7" }, { "id": "cert_serialNumberLen", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "31D253089CE90D9F3441FC40D2D36EFB7C592896" }, { "id": "cert_fingerprintSHA256", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "062A94CB34B6E881BD5393D7DD4D1A739BFBDA52854711D1073246156A873162" }, { "id": "cert", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE8zCCA9ugAwIBAgISBDAL58O0k8xLlspX/Mg3P2nXMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzEyMjUxNDA1NTRaFw0yNDAzMjQxNDA1NTNaMB0xGzAZBgNVBAMTEmFwbHVzLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALA1jvWg6t/Xna8Upi3cCuE4ANGLCnCD0vycoyvkSaJ3G9BA6RIO9uIikao9ujKxjeGjKzPafEnCFDfbRiJz3qg/rPr/iQ4purqIndn1AqGaKCXatj8gHATsSjsRzWFfAI2kizQr2BkTAM47aMBvl04MdBa3yocYNln6fh48Sc0oMrDL1x8FV/UcBNKgRWIIxokExhC62lSLMj3/IwGBymFWJL5dxf1+C87Anhvk4zEvPOKcRiUbCoepMu1ZeedQy0qbvdcKlGzT+d/hN/6FhUr/SQq6x+LkBhDpqOSvthUsVgKGyq6ezqsjyT8QVY9vdG3hIdSgqK6GzGwLs676K9UCAwEAAaOCAhYwggISMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUO3e3ZZ0KnMFtgYwqhHm4jaP+ZD4wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHQYDVR0RBBYwFIISYXBsdXMuYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADyAHcAouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGMoYLU6gAABAMASDBGAiEAj12OK4hXo+5k8+OhUUosKL5OgsRpFvWxy91pS3JX6b0CIQCTXLTPqI1ayIsvVaNpWOnTYKwyCACmT4wowozAh4LUqgB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjKGC1U4AAAQDAEgwRgIhAJqxCdzXQJ+2762r1k6431hiSqLIOgxQ9ksmlX1MsHA6AiEArut6C3TJidXdIZBW/7sYMpzP1bVjeYyPk/dBfWqLkDcwDQYJKoZIhvcNAQELBQADggEBAF8M6Cy9rKqN+6YVXl5L1rmjL4YzAsqQVHzFxfFRziRBZ/flRO8xS1BSQ9W4snRISQ3bLEJqOondrltD4WYSZr1yv+AjLPOBaNoYUpI/Gwo/0mH4syfpO0Js/H7tVQBrKlBK2me5/gSOu5JJeiF6hwEBc2OvWUUUZvJAzLx3V09wF73s5fa4yGl02AdK3x5YOaPDbox80+uvc6Lf0SIHgFidKLaeCKsOnD10kA0Cv2YYL1ZSy6lJg+lCFamiw5sVs/zHoaSJ8X53jE1/eG5Mdp57UaC8TuAtyYDQuIAabyieoz1RYPC8VN2s6kUzebHJ6pe/9RgCw6h0V3DEA0hhe34=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "Kubernetes Ingress Controller Fake Certificate" }, { "id": "cert_subjectAltName", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "aplus.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "2023-12-25 14:05" }, { "id": "cert_notAfter", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "2024-03-24 14:05" }, { "id": "cert_extlifeSpan", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", - "finding": "1704593292" + "finding": "1705197864" }, { "id": "HSTS_time", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "182 days (=15724800 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'" }, { "id": "X-XSS-Protection", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "origin-when-cross-origin, strict-origin-when-cross-origin" }, { "id": "banner_reverseproxy", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -33323,7 +33507,7 @@ }, { "id": "heartbleed", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -33332,7 +33516,7 @@ }, { "id": "CCS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -33341,7 +33525,7 @@ }, { "id": "ticketbleed", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -33350,7 +33534,7 @@ }, { "id": "ROBOT", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -33359,7 +33543,7 @@ }, { "id": "secure_renego", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -33367,7 +33551,7 @@ }, { "id": "secure_client_renego", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -33376,7 +33560,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -33385,7 +33569,7 @@ }, { "id": "BREACH", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -33394,7 +33578,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -33403,14 +33587,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -33419,7 +33603,7 @@ }, { "id": "FREAK", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -33428,7 +33612,7 @@ }, { "id": "DROWN", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -33437,7 +33621,7 @@ }, { "id": "DROWN_hint", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -33446,7 +33630,7 @@ }, { "id": "LOGJAM", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -33455,7 +33639,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -33464,7 +33648,7 @@ }, { "id": "BEAST", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -33473,7 +33657,7 @@ }, { "id": "LUCKY13", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -33482,7 +33666,7 @@ }, { "id": "winshock", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -33491,7 +33675,7 @@ }, { "id": "RC4", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -33500,325 +33684,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "aplus.beta.gouv.fr/141.94.166.107", + "ip": "aplus.beta.gouv.fr/141.94.167.220", "port": "443", "severity": "INFO", - "finding": "235" + "finding": "391" } ], "thirdparties": { @@ -33829,7 +34013,7 @@ "value": "1", "domain": "aplus.beta.gouv.fr", "path": "/", - "expires": 1704594887, + "expires": 1705199330, "size": 16, "httpOnly": false, "secure": false, @@ -33841,10 +34025,10 @@ }, { "name": "_pk_id.42.2a46", - "value": "2c409198d54375d3.1704593087.", + "value": "4d4149bc51a2dba0.1705197530.", "domain": "aplus.beta.gouv.fr", "path": "/", - "expires": 1738548287, + "expires": 1739152730, "size": 42, "httpOnly": false, "secure": false, @@ -33856,10 +34040,10 @@ }, { "name": "PLAY_SESSION", - "value": "eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjcwNjA5MmJiM2RkMTRjOTc0MTYwNTc3MzFiYjhmMTA1MDZmNGU2MTMtMTcwNDU5MzA4NjIzMS1kN2EzMzgyMzcyYzU4NmIzNTM4N2E2YzEifSwiZXhwIjoxNzA3MTg1MDg2LCJuYmYiOjE3MDQ1OTMwODYsImlhdCI6MTcwNDU5MzA4Nn0.ilVVw89bL7CdotrhMph10BMs3EQkhaDUWqIhUnh1iwQ", + "value": "eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6ImMwMWQ0NmNjYzFhMmVjOTk2Y2M5ZGIxNDQ0OTUwZjQ2ZGYxOGRkYWYtMTcwNTE5NzUyODgwNC1lNzU1NDkxZDg1Nzk5YTljZTNkYTU0MGIifSwiZXhwIjoxNzA3Nzg5NTI4LCJuYmYiOjE3MDUxOTc1MjgsImlhdCI6MTcwNTE5NzUyOH0.NabB5cGHEEbtmooMxwn4MsQ8jtdV62bKri-y8kpdrdw", "domain": "aplus.beta.gouv.fr", "path": "/", - "expires": 1707185086.284115, + "expires": 1707789528.879778, "size": 284, "httpOnly": true, "secure": true, @@ -33874,9 +34058,9 @@ "content-length": "19893", "content-security-policy": "img-src 'self' data: stats.data.gouv.fr; connect-src 'self' https://stats.data.gouv.fr; frame-src 'self' blob: *.aplus.beta.gouv.fr https://www.dailymotion.com; form-action 'self'; style-src 'self' 'unsafe-inline' stats.data.gouv.fr; object-src 'none'; default-src 'none'; base-uri 'none'; script-src 'self' stats.data.gouv.fr; font-src 'self'; frame-ancestors 'self'", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 02:04:46 GMT", + "date": "Sun, 14 Jan 2024 01:58:48 GMT", "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin", - "set-cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6IjcwNjA5MmJiM2RkMTRjOTc0MTYwNTc3MzFiYjhmMTA1MDZmNGU2MTMtMTcwNDU5MzA4NjIzMS1kN2EzMzgyMzcyYzU4NmIzNTM4N2E2YzEifSwiZXhwIjoxNzA3MTg1MDg2LCJuYmYiOjE3MDQ1OTMwODYsImlhdCI6MTcwNDU5MzA4Nn0.ilVVw89bL7CdotrhMph10BMs3EQkhaDUWqIhUnh1iwQ; Max-Age=2592000; Expires=Tue, 06 Feb 2024 02:04:46 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", + "set-cookie": "PLAY_SESSION=eyJhbGciOiJIUzI1NiJ9.eyJkYXRhIjp7ImNzcmZUb2tlbiI6ImMwMWQ0NmNjYzFhMmVjOTk2Y2M5ZGIxNDQ0OTUwZjQ2ZGYxOGRkYWYtMTcwNTE5NzUyODgwNC1lNzU1NDkxZDg1Nzk5YTljZTNkYTU0MGIifSwiZXhwIjoxNzA3Nzg5NTI4LCJuYmYiOjE3MDUxOTc1MjgsImlhdCI6MTcwNTE5NzUyOH0.NabB5cGHEEbtmooMxwn4MsQ8jtdV62bKri-y8kpdrdw; Max-Age=2592000; Expires=Tue, 13 Feb 2024 01:58:48 GMT; SameSite=Lax; Path=/; Secure; HTTPOnly", "strict-transport-security": "max-age=15724800; includeSubDomains", "x-content-type-options": "nosniff", "x-frame-options": "DENY", @@ -33886,7 +34070,7 @@ "endpoints": [ { "hostname": "aplus.beta.gouv.fr", - "ip": "141.94.167.220", + "ip": "141.94.164.120", "geoip": { "continent": { "code": "EU", @@ -34025,7 +34209,7 @@ "name": "core-js", "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", "confidence": 100, - "version": "3.34.0", + "version": "3.35.0", "icon": "core-js.png", "website": "https://github.com/zloirock/core-js", "cpe": null, @@ -34084,7 +34268,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 02:03:44", + "@generated": "Sun, 14 Jan 2024 01:57:49", "site": [ { "@name": "https://aplus.beta.gouv.fr", @@ -34189,23 +34373,22 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -34221,11 +34404,43 @@ "type": "dns", "host": "aplus.beta.gouv.fr.", "matched-at": "aplus.beta.gouv.fr", + "timestamp": "2024-01-14T02:06:27.876349807Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "aplus.beta.gouv.fr.", + "matched-at": "aplus.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T02:09:41.853720654Z", + "timestamp": "2024-01-14T02:06:28.0324336Z", "matcher-status": true }, { @@ -34265,7 +34480,7 @@ "extracted-results": [ "\"v=DMARC1; p=none; pct=100; rua=mailto:re+ypyaqgmnvdz@dmarc.postmarkapp.com; sp=none; aspf=r;\"" ], - "timestamp": "2024-01-07T02:09:41.888898123Z", + "timestamp": "2024-01-14T02:06:28.036939655Z", "matcher-status": true }, { @@ -34301,62 +34516,31 @@ "host": "aplus.beta.gouv.fr.", "matched-at": "aplus.beta.gouv.fr", "extracted-results": [ - "\"sendinblue-code:c24c9950139318527a15eecce3c91ca3\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"" + "\"v=spf1 include:spf.sendinblue.com mx ~all\"", + "\"sendinblue-code:c24c9950139318527a15eecce3c91ca3\"" ], - "timestamp": "2024-01-07T02:09:41.933048215Z", + "timestamp": "2024-01-14T02:06:28.039125352Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "aplus.beta.gouv.fr.", - "matched-at": "aplus.beta.gouv.fr", - "timestamp": "2024-01-07T02:09:41.961217059Z", - "matcher-status": true - }, - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -34372,10 +34556,10 @@ "host": "aplus.beta.gouv.fr.", "matched-at": "aplus.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T02:09:41.966356534Z", + "timestamp": "2024-01-14T02:06:28.157277634Z", "matcher-status": true }, { @@ -34412,8 +34596,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:09:57.20083063Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:06:48.170010363Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34453,8 +34637,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:09:57.218433505Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:06:48.186549103Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34480,8 +34664,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:10:25.209060223Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:07:27.231979327Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34517,8 +34701,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:10:35.404468004Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:07:41.847040829Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34554,8 +34738,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:10:35.404534769Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:07:41.847093117Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34591,8 +34775,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:10:35.404559174Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:07:41.84711087Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34628,8 +34812,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:10:35.40457796Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:07:41.84713247Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34665,8 +34849,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr", - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:10:35.404676413Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:07:41.847150564Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr'", "matcher-status": true }, @@ -34705,8 +34889,8 @@ "type": "http", "host": "https://aplus.beta.gouv.fr", "matched-at": "https://aplus.beta.gouv.fr/", - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:11:02.097986558Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:08:20.260539563Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: aplus.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplus.beta.gouv.fr/'", "matcher-status": true }, @@ -34747,8 +34931,8 @@ "type": "tcp", "host": "aplus.beta.gouv.fr:111", "matched-at": "aplus.beta.gouv.fr:111", - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:11:27.496292189Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:08:55.31739177Z", "matcher-status": true }, { @@ -34777,8 +34961,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:11:34.889509896Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:09:03.156230213Z", "matcher-status": true }, { @@ -34807,8 +34991,8 @@ "extracted-results": [ "aplus.beta.gouv.fr" ], - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:11:34.889642393Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:09:03.15634131Z", "matcher-status": true }, { @@ -34838,8 +35022,8 @@ "extracted-results": [ "tls12" ], - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:11:36.654493254Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:09:06.035821324Z", "matcher-status": true }, { @@ -34869,8 +35053,8 @@ "extracted-results": [ "tls13" ], - "ip": "141.94.167.220", - "timestamp": "2024-01-07T02:11:37.427833605Z", + "ip": "141.94.164.120", + "timestamp": "2024-01-14T02:09:06.353919722Z", "matcher-status": true } ], @@ -34878,7 +35062,7 @@ { "requestedUrl": "https://aplus.beta.gouv.fr/", "finalUrl": "https://aplus.beta.gouv.fr/", - "fetchTime": "2024-01-07T02:03:58.654Z", + "fetchTime": "2024-01-14T01:58:03.619Z", "runWarnings": [], "categories": { "performance": { @@ -34889,7 +35073,7 @@ "snapshot" ], "id": "performance", - "score": 0.8794427871704101 + "score": 0.8987482070922852 }, "accessibility": { "title": "Accessibility", @@ -34941,53 +35125,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5533, + "numericValue": 5236, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2051, - "firstMeaningfulPaint": 3753, - "largestContentfulPaint": 2361, - "interactive": 5533, - "speedIndex": 2299, - "totalBlockingTime": 107, - "maxPotentialFID": 155, - "cumulativeLayoutShift": 0.00013031768798828125, - "cumulativeLayoutShiftMainFrame": 0.00013031768798828125, - "totalCumulativeLayoutShift": 0.00013031768798828125, + "firstContentfulPaint": 2091, + "firstMeaningfulPaint": 3441, + "largestContentfulPaint": 2541, + "interactive": 5236, + "speedIndex": 2809, + "totalBlockingTime": 135, + "maxPotentialFID": 145, + "cumulativeLayoutShift": 0.007087946150037977, + "cumulativeLayoutShiftMainFrame": 0.007087946150037977, + "totalCumulativeLayoutShift": 0.007087946150037977, "observedTimeOrigin": 0, - "observedTimeOriginTs": 190343455, + "observedTimeOriginTs": 245592367, "observedNavigationStart": 0, - "observedNavigationStartTs": 190343455, - "observedFirstPaint": 778, - "observedFirstPaintTs": 191121377, - "observedFirstContentfulPaint": 778, - "observedFirstContentfulPaintTs": 191121377, - "observedFirstContentfulPaintAllFrames": 778, - "observedFirstContentfulPaintAllFramesTs": 191121377, - "observedFirstMeaningfulPaint": 1043, - "observedFirstMeaningfulPaintTs": 191386065, - "observedLargestContentfulPaint": 778, - "observedLargestContentfulPaintTs": 191121377, - "observedLargestContentfulPaintAllFrames": 778, - "observedLargestContentfulPaintAllFramesTs": 191121377, - "observedTraceEnd": 3732, - "observedTraceEndTs": 194075276, - "observedLoad": 1421, - "observedLoadTs": 191764431, - "observedDomContentLoaded": 1038, - "observedDomContentLoadedTs": 191381759, - "observedCumulativeLayoutShift": 0.00013031768798828125, - "observedCumulativeLayoutShiftMainFrame": 0.00013031768798828125, - "observedTotalCumulativeLayoutShift": 0.00013031768798828125, - "observedFirstVisualChange": 782, - "observedFirstVisualChangeTs": 191125455, - "observedLastVisualChange": 1398, - "observedLastVisualChangeTs": 191741455, - "observedSpeedIndex": 868, - "observedSpeedIndexTs": 191211518 + "observedNavigationStartTs": 245592367, + "observedFirstPaint": 1072, + "observedFirstPaintTs": 246663960, + "observedFirstContentfulPaint": 1072, + "observedFirstContentfulPaintTs": 246663960, + "observedFirstContentfulPaintAllFrames": 1072, + "observedFirstContentfulPaintAllFramesTs": 246663960, + "observedFirstMeaningfulPaint": 1441, + "observedFirstMeaningfulPaintTs": 247033545, + "observedLargestContentfulPaint": 1084, + "observedLargestContentfulPaintTs": 246676571, + "observedLargestContentfulPaintAllFrames": 1084, + "observedLargestContentfulPaintAllFramesTs": 246676571, + "observedTraceEnd": 4032, + "observedTraceEndTs": 249624521, + "observedLoad": 1722, + "observedLoadTs": 247314643, + "observedDomContentLoaded": 1437, + "observedDomContentLoadedTs": 247029466, + "observedCumulativeLayoutShift": 0.007087946150037977, + "observedCumulativeLayoutShiftMainFrame": 0.007087946150037977, + "observedTotalCumulativeLayoutShift": 0.007087946150037977, + "observedFirstVisualChange": 1081, + "observedFirstVisualChangeTs": 246673367, + "observedLastVisualChange": 1697, + "observedLastVisualChangeTs": 247289367, + "observedSpeedIndex": 1214, + "observedSpeedIndexTs": 246806461 }, { "lcpInvalidated": false @@ -35009,19 +35193,19 @@ "numScripts": 4, "numStylesheets": 7, "numFonts": 3, - "numTasks": 538, - "numTasksOver10ms": 5, + "numTasks": 562, + "numTasksOver10ms": 4, "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 99.247, - "throughput": 18322003.2023992, - "maxRtt": 103.946, - "maxServerLatency": 204.49500000000003, - "totalByteWeight": 1680643, - "totalTaskTime": 182.2209999999996, - "mainDocumentTransferSize": 20837 + "rtt": 146.238, + "throughput": 12194487.713263802, + "maxRtt": 150.446, + "maxServerLatency": 291.347, + "totalByteWeight": 1579427, + "totalTaskTime": 190.22899999999922, + "mainDocumentTransferSize": 20834 } ] } @@ -35123,7 +35307,7 @@ "cookiesCount": 3, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.8794427871704101, + "lighthouse_performance": 0.8987482070922852, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.77, "lighthouse_accessibilityGrade": "B", @@ -35149,7 +35333,7 @@ "http": { "url": "https://app.pix.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:16:18 GMT", + "end_time": "Sun, 14 Jan 2024 02:18:33 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -35158,7 +35342,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 02:16:17 GMT", + "Date": "Sun, 14 Jan 2024 02:18:32 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -35166,9 +35350,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46226951, + "scan_id": 46435768, "score": 75, - "start_time": "Sun, 07 Jan 2024 02:16:14 GMT", + "start_time": "Sun, 14 Jan 2024 02:18:29 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -35354,8 +35538,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T02:21:55Z", - "next_check_at": "2024-01-07T02:26:52Z", + "last_check_at": "2024-01-14T02:27:30Z", + "next_check_at": "2024-01-14T02:32:28Z", "created_at": "2021-04-22T19:50:09Z", "mute_until": null, "favicon_url": "https://app.pix.fr/favicon.ico", @@ -35363,7 +35547,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T01:42:08Z", + "tested_at": "2024-01-14T02:07:35Z", "expires_at": "2024-11-12T22:59:59Z", "valid": true, "error": null @@ -35372,11 +35556,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 92, - "connection": 141, - "handshake": 152, - "response": 143, - "total": 528 + "namelookup": 97, + "connection": 167, + "handshake": 174, + "response": 165, + "total": 603 } }, "uptimeGrade": "A", @@ -35409,77 +35593,77 @@ "testssl": [ { "id": "service", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -35487,7 +35671,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -35495,7 +35679,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -35503,7 +35687,7 @@ }, { "id": "cipherlist_LOW", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -35511,7 +35695,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -35519,7 +35703,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -35527,483 +35711,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "RSA 3072 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication" }, { "id": "cert_serialNumber", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "D6C4CF7B646884F48C50C40A7343E934" }, { "id": "cert_serialNumberLen", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "BA2504CE03693B399822253691FE39DA0CDA2FBB" }, { "id": "cert_fingerprintSHA256", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "F6854FC6D6738BD8AA9D77E61C5E2814E921F772BB4D9391FEC1EB52A04A3FB3" }, { "id": "cert", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "admin.pix.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "admin.pix.fr" }, { "id": "cert_subjectAltName", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "certif.pix.fr app.pix.org admin.pix.fr orga.pix.org app.pix.fr pix.fr admin.pix.org certif.pix.org orga.pix.fr pix.org" }, { "id": "cert_trust", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "Ok via SAN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", - "finding": "310 >= 60 days" + "finding": "303 >= 60 days" }, { "id": "cert_notBefore", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "2023-11-13 23:00" }, { "id": "cert_notAfter", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "2024-11-12 22:59" }, { "id": "cert_extlifeSpan", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "iodef=mailto:security@pix.fr, issue=amazontrust.com, issue=certigna.fr, issue=letsencrypt.org, issue=sectigo.com, issuewild=letsencrypt.org" }, { "id": "certificate_transparency", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", - "finding": "1704593856" + "finding": "1705198826" }, { "id": "HSTS_time", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -36011,7 +36195,7 @@ }, { "id": "heartbleed", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -36020,7 +36204,7 @@ }, { "id": "CCS", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -36029,7 +36213,7 @@ }, { "id": "ticketbleed", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -36038,7 +36222,7 @@ }, { "id": "ROBOT", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -36047,7 +36231,7 @@ }, { "id": "secure_renego", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -36055,7 +36239,7 @@ }, { "id": "secure_client_renego", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -36064,7 +36248,7 @@ }, { "id": "CRIME_TLS", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -36073,7 +36257,7 @@ }, { "id": "BREACH", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -36082,7 +36266,7 @@ }, { "id": "POODLE_SSL", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -36091,14 +36275,14 @@ }, { "id": "fallback_SCSV", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -36107,7 +36291,7 @@ }, { "id": "FREAK", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -36116,7 +36300,7 @@ }, { "id": "DROWN", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -36125,7 +36309,7 @@ }, { "id": "DROWN_hint", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -36134,7 +36318,7 @@ }, { "id": "LOGJAM", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -36143,7 +36327,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -36152,7 +36336,7 @@ }, { "id": "BEAST", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -36161,7 +36345,7 @@ }, { "id": "LUCKY13", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -36170,7 +36354,7 @@ }, { "id": "winshock", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -36179,7 +36363,7 @@ }, { "id": "RC4", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -36188,325 +36372,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "app.pix.fr/185.231.167.158", + "ip": "app.pix.fr/185.179.149.158", "port": "443", "severity": "INFO", - "finding": "60" + "finding": "102" } ], "thirdparties": { @@ -36525,7 +36709,7 @@ }, { "type": "unknown", - "url": "https://analytics.pix.fr/piwik.php?action_name=%2Fconnexion&idsite=3&rec=1&r=159756&h=2&m=16&s=52&url=https%3A%2F%2Fapp.pix.fr%2Fconnexion&_id=5212dbb3c34fe9a3&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=Pgo2Kv&pf_net=0&pf_srv=115&pf_tfr=1&pf_dm1=711&pf_dm2=562&pf_onl=1" + "url": "https://analytics.pix.fr/piwik.php?action_name=%2Fconnexion&idsite=3&rec=1&r=599240&h=2&m=19&s=7&url=https%3A%2F%2Fapp.pix.fr%2Fconnexion&_id=cafbb31d4604c8a2&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=FIjoZH&pf_net=0&pf_srv=158&pf_tfr=0&pf_dm1=998&pf_dm2=816&pf_onl=1" } ], "cookies": [ @@ -36534,7 +36718,7 @@ "value": "fr-FR", "domain": ".pix.fr", "path": "/", - "expires": 1736129811.272875, + "expires": 1736734746.082525, "size": 11, "httpOnly": false, "secure": false, @@ -36546,10 +36730,10 @@ }, { "name": "visit_baleen_ACM-655d43", - "value": "dUwsydpORq5W1kgJerSoiOpHBB9aWu0-ZJGCj_QA56CGOb7xoHjx5Sg84an7n5BQbKJzVPpUY2Tgk9p7kTCJcWcAXq4H-Ok6kzzp1ZFeOZLZ4pDVjvNh9nISerKZ9QuIngMU5tctWmUZ_AAHyIoFPFWFOdVyLdEP1UaRnDGhhAwHWzrAr-yUvdWAJe25BAOYziykvIPRLTOXuKMx1xwe260JfnVx7v8bOJUCJRgmn2vXInGwxH9dFyanVVS7FqWvLgHFQFM6pqUuLY4AWLYXxQ", + "value": "AsLidXB66hF2gSJuUagGX4MWWQlxqob5m3lD2fyB5yGWxLWzgJfia6z7cyduaD6dnhoIXTuM1lJtJYn0iT5wZoQB0Aa-K39OtgyuWHk6m67x1lhWEuVCSPUMKIZ_bcnbKc-8OQ_9wAWc2P-54oW-_84NyiOemrvjwU6MNnzmpM404U7a7kVedXsIDTCyXFKsIXsfTr8fX_c5XcLBO_tGEfBEetUOYWLY1qNdzRxRUjEHJ_xaVZ92roPjMCqaUH_5u7VKSktmQC0t0DiOqm-mqQ", "domain": ".pix.fr", "path": "/", - "expires": 1704594710.116083, + "expires": 1705199644.497254, "size": 301, "httpOnly": false, "secure": false, @@ -36566,25 +36750,25 @@ "content-encoding": "gzip", "content-security-policy-report-only": "style-src 'self' 'unsafe-inline'; img-src 'self' https: data:; font-src 'self'; frame-src *.pix.fr data:; connect-src 'self' analytics.pix.fr; script-src 'self' analytics.pix.fr 'sha256-zzl6AXEYNbODqut4N1s48ebXWb9C1EcejDmXsYvw5uQ='; report-uri https://pix-report-csp-production.osc-secnum-fr1.scalingo.io", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 02:16:50 GMT", - "etag": "W/\"65943895-106d\"", - "expires": "Sun, 07 Jan 2024 02:16:49 GMT", - "last-modified": "Tue, 02 Jan 2024 16:23:49 GMT", + "date": "Sun, 14 Jan 2024 02:19:04 GMT", + "etag": "W/\"65a10478-106d\"", + "expires": "Sun, 14 Jan 2024 02:19:03 GMT", + "last-modified": "Fri, 12 Jan 2024 09:20:56 GMT", "referrer-policy": "origin-when-cross-origin", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "via": "1.1 varnish (Varnish/6.0)", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", - "x-request-id": "c03bfe7a0412f02a52dc9b7daa4f8e33", + "x-request-id": "d3b4eb810f002347744da609b360d640", "x-robots-tag": "noindex", - "x-varnish": "145729688", + "x-varnish": "417062026", "x-xss-protection": "1" }, "endpoints": [ { "hostname": "app.pix.fr", - "ip": "185.231.167.158", + "ip": "185.179.149.158", "geoip": { "continent": { "code": "EU", @@ -36640,7 +36824,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.253.115.95", + "ip": "142.251.214.138", "geoip": { "continent": { "code": "NA", @@ -36660,7 +36844,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -36680,7 +36864,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -36748,7 +36932,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -36849,7 +37033,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 02:15:49", + "@generated": "Sun, 14 Jan 2024 02:18:03", "site": [ { "@name": "https://app.pix.fr", @@ -36947,73 +37131,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "app.pix.fr.", "matched-at": "app.pix.fr", - "timestamp": "2024-01-07T02:18:59.939765141Z", + "extracted-results": [ + "pix-app.baleen.cshield.net." + ], + "timestamp": "2024-01-14T02:22:13.111987049Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "app.pix.fr.", "matched-at": "app.pix.fr", - "extracted-results": [ - "pix-app.baleen.cshield.net." - ], - "timestamp": "2024-01-07T02:19:00.012969228Z", + "timestamp": "2024-01-14T02:22:13.985822793Z", "matcher-status": true }, { @@ -37052,8 +37236,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:19:11.367279091Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:22:32.560773012Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37079,8 +37263,8 @@ "type": "http", "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:19:34.478569555Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:23:10.339730083Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37112,12 +37296,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:19:42.79718457Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:23:25.440437946Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37149,12 +37333,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:19:42.797236767Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:23:25.440504389Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37186,12 +37370,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:19:42.797252767Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:23:25.440523815Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37223,12 +37407,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:19:42.79726531Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:23:25.440539394Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37260,12 +37444,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:19:42.797280198Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:23:25.440554592Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37297,12 +37481,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:19:42.79729742Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:23:25.440572465Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, @@ -37334,60 +37518,61 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://app.pix.fr", "matched-at": "https://app.pix.fr", - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:19:42.797311947Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:23:25.440625653Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.pix.fr'", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "TLS Version - Detect", "author": [ - "lingtren" + "pdteam", + "pussycat0x" ], "tags": [ "ssl", "tls" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "app.pix.fr", "matched-at": "app.pix.fr:443", "extracted-results": [ - "DHIMYOTIS" + "tls12" ], - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:21:46.502942216Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:26:01.900536978Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "SSL DNS Names", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam" + "lingtren" ], "tags": [ "ssl", "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { "max-request": 1 @@ -37397,50 +37582,49 @@ "host": "app.pix.fr", "matched-at": "app.pix.fr:443", "extracted-results": [ - "pix.org", - "admin.pix.org", - "certif.pix.org", - "orga.pix.fr", - "orga.pix.org", - "app.pix.fr", - "pix.fr", - "certif.pix.fr", - "app.pix.org", - "admin.pix.fr" + "DHIMYOTIS" ], - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:21:46.503071356Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:26:02.178892334Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "app.pix.fr", "matched-at": "app.pix.fr:443", "extracted-results": [ - "tls12" + "pix.fr", + "orga.pix.fr", + "certif.pix.fr", + "admin.pix.fr", + "orga.pix.org", + "certif.pix.org", + "pix.org", + "app.pix.org", + "app.pix.fr", + "admin.pix.org" ], - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:21:46.560497644Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:26:02.179004923Z", "matcher-status": true }, { @@ -37470,8 +37654,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.179.149.158", - "timestamp": "2024-01-07T02:21:47.436459292Z", + "ip": "185.231.167.158", + "timestamp": "2024-01-14T02:26:03.458221137Z", "matcher-status": true } ], @@ -37479,7 +37663,7 @@ { "requestedUrl": "https://app.pix.fr/", "finalUrl": "https://app.pix.fr/", - "fetchTime": "2024-01-07T02:16:03.215Z", + "fetchTime": "2024-01-14T02:18:17.813Z", "runWarnings": [], "categories": { "performance": { @@ -37490,7 +37674,7 @@ "snapshot" ], "id": "performance", - "score": 0.9024335861206054 + "score": 0.8967033386230469 }, "accessibility": { "title": "Accessibility", @@ -37542,53 +37726,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9091, + "numericValue": 9571, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2166, - "firstMeaningfulPaint": 5179, - "largestContentfulPaint": 2166, - "interactive": 9091, - "speedIndex": 2892, - "totalBlockingTime": 1014, - "maxPotentialFID": 593, - "cumulativeLayoutShift": 0.058054334852430556, - "cumulativeLayoutShiftMainFrame": 0.058054334852430556, - "totalCumulativeLayoutShift": 0.058054334852430556, + "firstContentfulPaint": 2416, + "firstMeaningfulPaint": 3014, + "largestContentfulPaint": 2416, + "interactive": 9571, + "speedIndex": 3681, + "totalBlockingTime": 586, + "maxPotentialFID": 233, + "cumulativeLayoutShift": 0.04042886013454861, + "cumulativeLayoutShiftMainFrame": 0.04042886013454861, + "totalCumulativeLayoutShift": 0.04042886013454861, "observedTimeOrigin": 0, - "observedTimeOriginTs": 232445731, + "observedTimeOriginTs": 243655564, "observedNavigationStart": 0, - "observedNavigationStartTs": 232445731, - "observedFirstPaint": 421, - "observedFirstPaintTs": 232866964, - "observedFirstContentfulPaint": 421, - "observedFirstContentfulPaintTs": 232866964, - "observedFirstContentfulPaintAllFrames": 421, - "observedFirstContentfulPaintAllFramesTs": 232866964, - "observedFirstMeaningfulPaint": 1321, - "observedFirstMeaningfulPaintTs": 233767011, - "observedLargestContentfulPaint": 421, - "observedLargestContentfulPaintTs": 232866964, - "observedLargestContentfulPaintAllFrames": 421, - "observedLargestContentfulPaintAllFramesTs": 232866964, - "observedTraceEnd": 3743, - "observedTraceEndTs": 236188460, - "observedLoad": 1320, - "observedLoadTs": 233765383, - "observedDomContentLoaded": 883, - "observedDomContentLoadedTs": 233328435, - "observedCumulativeLayoutShift": 0.058054334852430556, - "observedCumulativeLayoutShiftMainFrame": 0.058054334852430556, - "observedTotalCumulativeLayoutShift": 0.058054334852430556, - "observedFirstVisualChange": 428, - "observedFirstVisualChangeTs": 232873731, - "observedLastVisualChange": 1344, - "observedLastVisualChangeTs": 233789731, - "observedSpeedIndex": 1238, - "observedSpeedIndexTs": 233684152 + "observedNavigationStartTs": 243655564, + "observedFirstPaint": 678, + "observedFirstPaintTs": 244333658, + "observedFirstContentfulPaint": 678, + "observedFirstContentfulPaintTs": 244333658, + "observedFirstContentfulPaintAllFrames": 678, + "observedFirstContentfulPaintAllFramesTs": 244333658, + "observedFirstMeaningfulPaint": 1685, + "observedFirstMeaningfulPaintTs": 245340282, + "observedLargestContentfulPaint": 678, + "observedLargestContentfulPaintTs": 244333658, + "observedLargestContentfulPaintAllFrames": 678, + "observedLargestContentfulPaintAllFramesTs": 244333658, + "observedTraceEnd": 4340, + "observedTraceEndTs": 247995125, + "observedLoad": 1976, + "observedLoadTs": 245632061, + "observedDomContentLoaded": 1259, + "observedDomContentLoadedTs": 244914339, + "observedCumulativeLayoutShift": 0.04042886013454861, + "observedCumulativeLayoutShiftMainFrame": 0.04042886013454861, + "observedTotalCumulativeLayoutShift": 0.04042886013454861, + "observedFirstVisualChange": 684, + "observedFirstVisualChangeTs": 244339564, + "observedLastVisualChange": 1867, + "observedLastVisualChangeTs": 245522564, + "observedSpeedIndex": 1686, + "observedSpeedIndexTs": 245341853 }, { "lcpInvalidated": false @@ -37610,19 +37794,19 @@ "numScripts": 4, "numStylesheets": 4, "numFonts": 4, - "numTasks": 454, + "numTasks": 458, "numTasksOver10ms": 7, - "numTasksOver25ms": 7, + "numTasksOver25ms": 5, "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 6.303, - "throughput": 17693731.906967785, - "maxRtt": 88.047, - "maxServerLatency": 19.304000000000002, - "totalByteWeight": 1560105, - "totalTaskTime": 508.3789999999994, - "mainDocumentTransferSize": 2085 + "rtt": 1.7399999999999998, + "throughput": 11898353.372523533, + "maxRtt": 151.126, + "maxServerLatency": 20.00199999999998, + "totalByteWeight": 1590148, + "totalTaskTime": 350.1419999999995, + "mainDocumentTransferSize": 2088 } ] } @@ -37730,7 +37914,7 @@ "cookiesCount": 2, "trackersGrade": "C", "trackersCount": 3, - "lighthouse_performance": 0.9024335861206054, + "lighthouse_performance": 0.8967033386230469, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -37755,7 +37939,7 @@ "http": { "url": "https://audioconf.numerique.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:37:22 GMT", + "end_time": "Sun, 14 Jan 2024 01:39:51 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -37763,17 +37947,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 01:37:21 GMT", - "ETag": "W/\"6f6d-nBwZuynwJyK+LK/y6n6nx0YMs5s\"", - "Set-Cookie": "connect.sid=s%3A43C8jRzx9XaeRCAzqnPBWw-DgP8VajYz.TXyEFoWTgVLLrV5URTNLGFg%2FtE71dS8pfZkrPmPYt%2F8; Path=/; Expires=Sun, 07 Jan 2024 01:42:21 GMT; HttpOnly; SameSite=Lax, sc-sticky-session=28dVKxDPjoRY6mBKzPgBhn95ZlYviUBYGadyt43oeGq7EIGpNNSSCF7KoZRISvl4IWtbH1qLGdhsWWUNnYFGjw==; Expires=Mon, 08-Jan-24 01:37:21 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "Date": "Sun, 14 Jan 2024 01:39:50 GMT", + "ETag": "W/\"6f69-6frl1VP8hMjRWxZw7+aa+5V7BW4\"", + "Set-Cookie": "connect.sid=s%3A72MSgDUN8-p_a-BeBqkaGTuzxFR37K_t.p2O4PbmAFN6RZXbCG2PmC6Q05u4MYHHJFQNyxytd8fs; Path=/; Expires=Sun, 14 Jan 2024 01:44:50 GMT; HttpOnly; SameSite=Lax, sc-sticky-session=zaEWGMU93dBF7UPpMyEp9liExFaN2bp2k3eys4cEdRQejw+YGpt8dd+ZjGS/WI+nT67gt4kUGkFmzzYtfnZ7Tg==; Expires=Mon, 15-Jan-24 01:39:50 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-Powered-By": "Express", - "X-Request-ID": "6de4ef40-e25f-4bea-8b1c-e31c2fe835be" + "X-Request-ID": "82c3ebb6-4576-4f2f-aed1-ef51851739b8" }, - "scan_id": 46226435, + "scan_id": 46435118, "score": 35, - "start_time": "Sun, 07 Jan 2024 01:37:18 GMT", + "start_time": "Sun, 14 Jan 2024 01:38:43 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -37813,7 +37997,7 @@ "data": { "connect.sid": { "domain": "audioconf.numerique.gouv.fr", - "expires": 1704591741, + "expires": 1705196690, "httponly": true, "max-age": null, "path": "/", @@ -37823,7 +38007,7 @@ }, "sc-sticky-session": { "domain": "audioconf.numerique.gouv.fr", - "expires": 1704677842, + "expires": 1705282791, "httponly": true, "max-age": null, "path": "/", @@ -37968,7 +38152,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-02T07:48:02Z", + "up_since": "2024-01-13T01:10:32Z", "error": null, "period": 120, "apdex_t": 0.5, @@ -37981,8 +38165,8 @@ "slack_compatible:4124784183", "slack_compatible:3529617075" ], - "last_check_at": "2024-01-07T02:40:29Z", - "next_check_at": "2024-01-07T02:42:28Z", + "last_check_at": "2024-01-14T02:37:12Z", + "next_check_at": "2024-01-14T02:39:11Z", "created_at": "2021-04-15T08:59:36Z", "mute_until": null, "favicon_url": "https://audioconf.numerique.gouv.fr/static/images/favicon/favicon-32x32.png", @@ -37990,7 +38174,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T02:26:33Z", + "tested_at": "2024-01-14T02:29:15Z", "expires_at": "2024-03-13T13:33:17Z", "valid": true, "error": null @@ -37999,11 +38183,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 128, - "connection": 135, - "handshake": 142, - "response": 153, - "total": 559 + "namelookup": 125, + "connection": 127, + "handshake": 134, + "response": 144, + "total": 531 } }, "uptimeGrade": "A", @@ -38036,77 +38220,77 @@ "testssl": [ { "id": "service", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38114,7 +38298,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38122,7 +38306,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38130,7 +38314,7 @@ }, { "id": "cipherlist_LOW", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -38138,7 +38322,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -38146,7 +38330,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -38154,511 +38338,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-14 13:33" }, { "id": "cert_notAfter", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-13 13:33" }, { "id": "cert_extlifeSpan", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704594384" + "finding": "1705199010" }, { "id": "HSTS_time", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1/2 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "security_headers", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -38666,7 +38850,7 @@ }, { "id": "heartbleed", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -38675,7 +38859,7 @@ }, { "id": "CCS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -38684,7 +38868,7 @@ }, { "id": "ticketbleed", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -38693,7 +38877,7 @@ }, { "id": "ROBOT", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -38702,7 +38886,7 @@ }, { "id": "secure_renego", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -38710,7 +38894,7 @@ }, { "id": "secure_client_renego", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -38719,7 +38903,7 @@ }, { "id": "CRIME_TLS", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -38728,7 +38912,7 @@ }, { "id": "BREACH", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -38737,7 +38921,7 @@ }, { "id": "POODLE_SSL", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -38746,14 +38930,14 @@ }, { "id": "fallback_SCSV", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -38762,7 +38946,7 @@ }, { "id": "FREAK", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -38771,7 +38955,7 @@ }, { "id": "DROWN", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -38780,7 +38964,7 @@ }, { "id": "DROWN_hint", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -38789,7 +38973,7 @@ }, { "id": "LOGJAM", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -38798,7 +38982,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -38807,7 +38991,7 @@ }, { "id": "BEAST", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -38816,7 +39000,7 @@ }, { "id": "LUCKY13", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -38825,7 +39009,7 @@ }, { "id": "winshock", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -38834,7 +39018,7 @@ }, { "id": "RC4", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -38843,392 +39027,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "audioconf.numerique.gouv.fr/80.247.13.145", + "ip": "audioconf.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -39236,7 +39420,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -39244,7 +39428,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -39252,7 +39436,7 @@ }, { "id": "cipherlist_LOW", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -39260,7 +39444,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -39268,7 +39452,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -39276,511 +39460,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-14 13:33" }, { "id": "cert_notAfter", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-13 13:33" }, { "id": "cert_extlifeSpan", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704594483" + "finding": "1705199106" }, { "id": "HSTS_time", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1/2 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "security_headers", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -39788,7 +39972,7 @@ }, { "id": "heartbleed", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -39797,7 +39981,7 @@ }, { "id": "CCS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -39806,7 +39990,7 @@ }, { "id": "ticketbleed", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -39815,7 +39999,7 @@ }, { "id": "ROBOT", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -39824,7 +40008,7 @@ }, { "id": "secure_renego", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -39832,7 +40016,7 @@ }, { "id": "secure_client_renego", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -39841,7 +40025,7 @@ }, { "id": "CRIME_TLS", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -39850,7 +40034,7 @@ }, { "id": "BREACH", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -39859,7 +40043,7 @@ }, { "id": "POODLE_SSL", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -39868,14 +40052,14 @@ }, { "id": "fallback_SCSV", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -39884,7 +40068,7 @@ }, { "id": "FREAK", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -39893,7 +40077,7 @@ }, { "id": "DROWN", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -39902,7 +40086,7 @@ }, { "id": "DROWN_hint", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -39911,7 +40095,7 @@ }, { "id": "LOGJAM", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -39920,7 +40104,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -39929,7 +40113,7 @@ }, { "id": "BEAST", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -39938,7 +40122,7 @@ }, { "id": "LUCKY13", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -39947,7 +40131,7 @@ }, { "id": "winshock", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -39956,7 +40140,7 @@ }, { "id": "RC4", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -39965,392 +40149,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "audioconf.numerique.gouv.fr/185.21.194.105", + "ip": "audioconf.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40358,7 +40542,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40366,7 +40550,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40374,7 +40558,7 @@ }, { "id": "cipherlist_LOW", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -40382,7 +40566,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -40390,7 +40574,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -40398,511 +40582,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-14 13:33" }, { "id": "cert_notAfter", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-13 13:33" }, { "id": "cert_extlifeSpan", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704594582" + "finding": "1705199203" }, { "id": "HSTS_time", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1/2 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "security_headers", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -40910,7 +41094,7 @@ }, { "id": "heartbleed", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -40919,7 +41103,7 @@ }, { "id": "CCS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -40928,7 +41112,7 @@ }, { "id": "ticketbleed", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -40937,7 +41121,7 @@ }, { "id": "ROBOT", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -40946,7 +41130,7 @@ }, { "id": "secure_renego", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -40954,7 +41138,7 @@ }, { "id": "secure_client_renego", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -40963,7 +41147,7 @@ }, { "id": "CRIME_TLS", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -40972,7 +41156,7 @@ }, { "id": "BREACH", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -40981,7 +41165,7 @@ }, { "id": "POODLE_SSL", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -40990,14 +41174,14 @@ }, { "id": "fallback_SCSV", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -41006,7 +41190,7 @@ }, { "id": "FREAK", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -41015,7 +41199,7 @@ }, { "id": "DROWN", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -41024,7 +41208,7 @@ }, { "id": "DROWN_hint", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -41033,7 +41217,7 @@ }, { "id": "LOGJAM", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -41042,7 +41226,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -41051,7 +41235,7 @@ }, { "id": "BEAST", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -41060,7 +41244,7 @@ }, { "id": "LUCKY13", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -41069,7 +41253,7 @@ }, { "id": "winshock", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -41078,7 +41262,7 @@ }, { "id": "RC4", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -41087,392 +41271,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "audioconf.numerique.gouv.fr/148.253.96.193", + "ip": "audioconf.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -41480,7 +41664,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -41488,7 +41672,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -41496,7 +41680,7 @@ }, { "id": "cipherlist_LOW", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -41504,7 +41688,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -41512,7 +41696,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -41520,511 +41704,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-14 13:33" }, { "id": "cert_notAfter", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-13 13:33" }, { "id": "cert_extlifeSpan", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704594682" + "finding": "1705199300" }, { "id": "HSTS_time", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1/2 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "security_headers", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -42032,7 +42216,7 @@ }, { "id": "heartbleed", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -42041,7 +42225,7 @@ }, { "id": "CCS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -42050,7 +42234,7 @@ }, { "id": "ticketbleed", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -42059,7 +42243,7 @@ }, { "id": "ROBOT", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -42068,7 +42252,7 @@ }, { "id": "secure_renego", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -42076,7 +42260,7 @@ }, { "id": "secure_client_renego", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -42085,7 +42269,7 @@ }, { "id": "CRIME_TLS", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -42094,7 +42278,7 @@ }, { "id": "BREACH", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -42103,7 +42287,7 @@ }, { "id": "POODLE_SSL", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -42112,14 +42296,14 @@ }, { "id": "fallback_SCSV", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -42128,7 +42312,7 @@ }, { "id": "FREAK", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -42137,7 +42321,7 @@ }, { "id": "DROWN", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -42146,7 +42330,7 @@ }, { "id": "DROWN_hint", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -42155,7 +42339,7 @@ }, { "id": "LOGJAM", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -42164,7 +42348,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -42173,7 +42357,7 @@ }, { "id": "BEAST", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -42182,7 +42366,7 @@ }, { "id": "LUCKY13", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -42191,7 +42375,7 @@ }, { "id": "winshock", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -42200,7 +42384,7 @@ }, { "id": "RC4", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -42209,325 +42393,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "audioconf.numerique.gouv.fr/80.247.12.255", + "ip": "audioconf.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "403" + "finding": "391" } ], "thirdparties": { @@ -42535,10 +42719,10 @@ "cookies": [ { "name": "sc-sticky-session", - "value": "PyoFq6Y/xPw0NQNIe+JpaGLpdmizgt6wuW3FhYXa0hSxrCW9czvY2Eh0XH4SYLWgFKBGw1stjIC+0HWwW+cthA==", + "value": "HUAlH1s30f6KN9LSKQGvOt1D4+RCdoFOPLZzCT/NFB7Zk0Bo08yG6AXv7nKTRa6wct1pf9FZhPHSKmq+2tHDoA==", "domain": "audioconf.numerique.gouv.fr", "path": "/", - "expires": 1704680691.399056, + "expires": 1705285319.635887, "size": 105, "httpOnly": true, "secure": true, @@ -42550,11 +42734,11 @@ }, { "name": "connect.sid", - "value": "s%3ASOsSAZZ73L59P4ynAk5GW0F0QQnsbf6t.z23IyBUvpulnWRxB1fcUjcgzqYsrgg%2F3yQ9LoRI9QT8", + "value": "s%3AP-K1RVLAJip3VSMogUBYVzW3nbgQ0o7g.b4PHLVnpueHIM4RPdeZ%2FER439oIrOGZ7XDEQnA%2BE4T4", "domain": "audioconf.numerique.gouv.fr", "path": "/", - "expires": 1704594590.701169, - "size": 93, + "expires": 1705199219.1399, + "size": 95, "httpOnly": true, "secure": false, "session": false, @@ -42567,12 +42751,12 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 02:24:50 GMT", - "etag": "W/\"6f6d-nBwZuynwJyK+LK/y6n6nx0YMs5s\"", - "set-cookie": "connect.sid=s%3ASOsSAZZ73L59P4ynAk5GW0F0QQnsbf6t.z23IyBUvpulnWRxB1fcUjcgzqYsrgg%2F3yQ9LoRI9QT8; Path=/; Expires=Sun, 07 Jan 2024 02:29:50 GMT; HttpOnly; SameSite=Lax\nsc-sticky-session=PyoFq6Y/xPw0NQNIe+JpaGLpdmizgt6wuW3FhYXa0hSxrCW9czvY2Eh0XH4SYLWgFKBGw1stjIC+0HWwW+cthA==; Expires=Mon, 08-Jan-24 02:24:50 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "date": "Sun, 14 Jan 2024 02:21:59 GMT", + "etag": "W/\"6f69-6frl1VP8hMjRWxZw7+aa+5V7BW4\"", + "set-cookie": "connect.sid=s%3AP-K1RVLAJip3VSMogUBYVzW3nbgQ0o7g.b4PHLVnpueHIM4RPdeZ%2FER439oIrOGZ7XDEQnA%2BE4T4; Path=/; Expires=Sun, 14 Jan 2024 02:26:59 GMT; HttpOnly; SameSite=Lax\nsc-sticky-session=HUAlH1s30f6KN9LSKQGvOt1D4+RCdoFOPLZzCT/NFB7Zk0Bo08yG6AXv7nKTRa6wct1pf9FZhPHSKmq+2tHDoA==; Expires=Mon, 15-Jan-24 02:21:59 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "strict-transport-security": "max-age=31536000", "x-powered-by": "Express", - "x-request-id": "c3db7ec3-a05c-49dd-acf7-367bcfd0a2c3" + "x-request-id": "d41c1ef8-8ec0-4a0a-a386-76a4d30812ff" }, "endpoints": [ { @@ -42744,7 +42928,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 02:24:10", + "@generated": "Sun, 14 Jan 2024 02:21:19", "site": [ { "@name": "https://audioconf.numerique.gouv.fr", @@ -42898,24 +43082,20 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -42924,34 +43104,38 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "audioconf.numerique.gouv.fr.", - "matched-at": "_dmarc.audioconf.numerique.gouv.fr", + "matched-at": "audioconf.numerique.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T02:33:13.884680917Z", + "timestamp": "2024-01-14T02:30:07.023081575Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "ns" + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -42960,37 +43144,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "audioconf.numerique.gouv.fr.", - "matched-at": "audioconf.numerique.gouv.fr", + "matched-at": "_dmarc.audioconf.numerique.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T02:33:14.021389132Z", + "timestamp": "2024-01-14T02:30:07.174412618Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -43007,10 +43190,11 @@ "host": "audioconf.numerique.gouv.fr.", "matched-at": "audioconf.numerique.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "\"brevo-code:a81f60a1d1446c0fcefcca0c1371196f\"", + "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com include:spf.sendinblue.com ~all\"", + "\"google-site-verification=sN9DZBskBX8uJrv-EdTEv4isrRfVLmoHavHB9vaM95Q\"" ], - "timestamp": "2024-01-07T02:33:14.022197908Z", + "timestamp": "2024-01-14T02:30:07.315180297Z", "matcher-status": true }, { @@ -43045,26 +43229,27 @@ "type": "dns", "host": "audioconf.numerique.gouv.fr.", "matched-at": "audioconf.numerique.gouv.fr", - "timestamp": "2024-01-07T02:33:14.025785495Z", + "timestamp": "2024-01-14T02:30:07.401309172Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -43081,11 +43266,10 @@ "host": "audioconf.numerique.gouv.fr.", "matched-at": "audioconf.numerique.gouv.fr", "extracted-results": [ - "\"brevo-code:a81f60a1d1446c0fcefcca0c1371196f\"", - "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com include:spf.sendinblue.com ~all\"", - "\"google-site-verification=sN9DZBskBX8uJrv-EdTEv4isrRfVLmoHavHB9vaM95Q\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T02:33:15.110150232Z", + "timestamp": "2024-01-14T02:30:08.013750139Z", "matcher-status": true }, { @@ -43113,8 +43297,8 @@ "extracted-results": [ "GET,HEAD" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:33:25.228649658Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:30:17.433306945Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43152,8 +43336,8 @@ "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:33:33.22381979Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:30:24.620718494Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43179,8 +43363,8 @@ "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:12.045486223Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:30:59.832602896Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43212,12 +43396,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.003438005Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.56741735Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43249,12 +43433,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.00349466Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.567456613Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43286,12 +43470,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.003519556Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.567474847Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43323,12 +43507,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.003537951Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.567490486Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43360,12 +43544,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.00355358Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.567503551Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43397,12 +43581,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.003701696Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.567515483Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43434,12 +43618,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.003727794Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.567670643Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43471,12 +43655,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.003747971Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.56768542Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43508,12 +43692,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.003767428Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.567697363Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43545,12 +43729,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:34:26.003803234Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:12.567709134Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr'", "matcher-status": true }, @@ -43589,8 +43773,8 @@ "type": "http", "host": "https://audioconf.numerique.gouv.fr", "matched-at": "https://audioconf.numerique.gouv.fr/", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:35:04.752956267Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:31:47.518904986Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: audioconf.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://audioconf.numerique.gouv.fr/'", "matcher-status": true }, @@ -43620,8 +43804,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:40:57.001694826Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:37:37.161225911Z", "matcher-status": true }, { @@ -43650,8 +43834,8 @@ "extracted-results": [ "audioconf.numerique.gouv.fr" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:40:57.001807025Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:37:37.161338611Z", "matcher-status": true }, { @@ -43681,8 +43865,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:40:59.582314627Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:37:39.406644258Z", "matcher-status": true }, { @@ -43712,8 +43896,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T02:40:59.893943714Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T02:37:39.809159414Z", "matcher-status": true } ], @@ -43721,7 +43905,7 @@ { "requestedUrl": "https://audioconf.numerique.gouv.fr/", "finalUrl": "https://audioconf.numerique.gouv.fr/", - "fetchTime": "2024-01-07T02:24:24.727Z", + "fetchTime": "2024-01-14T02:21:33.841Z", "runWarnings": [], "categories": { "performance": { @@ -43784,53 +43968,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1950, + "numericValue": 1816, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1500, - "firstMeaningfulPaint": 1950, - "largestContentfulPaint": 1800, - "interactive": 1950, - "speedIndex": 2291, + "firstContentfulPaint": 1366, + "firstMeaningfulPaint": 1816, + "largestContentfulPaint": 1666, + "interactive": 1816, + "speedIndex": 1809, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 254047835, + "observedTimeOriginTs": 237437537, "observedNavigationStart": 0, - "observedNavigationStartTs": 254047835, - "observedFirstPaint": 1021, - "observedFirstPaintTs": 255069208, - "observedFirstContentfulPaint": 1021, - "observedFirstContentfulPaintTs": 255069208, - "observedFirstContentfulPaintAllFrames": 1021, - "observedFirstContentfulPaintAllFramesTs": 255069208, - "observedFirstMeaningfulPaint": 1330, - "observedFirstMeaningfulPaintTs": 255378116, - "observedLargestContentfulPaint": 1183, - "observedLargestContentfulPaintTs": 255231172, - "observedLargestContentfulPaintAllFrames": 1183, - "observedLargestContentfulPaintAllFramesTs": 255231172, - "observedTraceEnd": 3629, - "observedTraceEndTs": 257676742, - "observedLoad": 1315, - "observedLoadTs": 255363113, - "observedDomContentLoaded": 1019, - "observedDomContentLoadedTs": 255066370, + "observedNavigationStartTs": 237437537, + "observedFirstPaint": 748, + "observedFirstPaintTs": 238185341, + "observedFirstContentfulPaint": 748, + "observedFirstContentfulPaintTs": 238185341, + "observedFirstContentfulPaintAllFrames": 748, + "observedFirstContentfulPaintAllFramesTs": 238185341, + "observedFirstMeaningfulPaint": 1025, + "observedFirstMeaningfulPaintTs": 238462102, + "observedLargestContentfulPaint": 894, + "observedLargestContentfulPaintTs": 238331370, + "observedLargestContentfulPaintAllFrames": 894, + "observedLargestContentfulPaintAllFramesTs": 238331370, + "observedTraceEnd": 3320, + "observedTraceEndTs": 240757924, + "observedLoad": 1013, + "observedLoadTs": 238450540, + "observedDomContentLoaded": 753, + "observedDomContentLoadedTs": 238190643, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 1025, - "observedFirstVisualChangeTs": 255072835, - "observedLastVisualChange": 1341, - "observedLastVisualChangeTs": 255388835, - "observedSpeedIndex": 1118, - "observedSpeedIndexTs": 255166126 + "observedFirstVisualChange": 752, + "observedFirstVisualChangeTs": 238189537, + "observedLastVisualChange": 1036, + "observedLastVisualChangeTs": 238473537, + "observedSpeedIndex": 836, + "observedSpeedIndexTs": 238273802 }, { "lcpInvalidated": false @@ -43852,19 +44036,19 @@ "numScripts": 1, "numStylesheets": 3, "numFonts": 3, - "numTasks": 434, - "numTasksOver10ms": 3, - "numTasksOver25ms": 1, + "numTasks": 437, + "numTasksOver10ms": 1, + "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 155.00400000000002, - "throughput": 2863282.6184322303, - "maxRtt": 155.00400000000002, - "maxServerLatency": 0.16199999999997772, - "totalByteWeight": 167716, - "totalTaskTime": 133.66300000000004, - "mainDocumentTransferSize": 5282 + "rtt": 132.17399999999998, + "throughput": 4813030.190086043, + "maxRtt": 132.17399999999998, + "maxServerLatency": 15.947000000000003, + "totalByteWeight": 167709, + "totalTaskTime": 101.02800000000006, + "mainDocumentTransferSize": 5299 } ] } @@ -43958,7 +44142,7 @@ "http": { "url": "https://beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 00:40:42 GMT", + "end_time": "Sun, 14 Jan 2024 00:50:23 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -43966,16 +44150,16 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 00:40:40 GMT", - "ETag": "W/\"65999f82-99d9\"", - "Last-Modified": "Sat, 06 Jan 2024 18:44:18 GMT", + "Date": "Sun, 14 Jan 2024 00:50:22 GMT", + "ETag": "W/\"65a31075-99d9\"", + "Last-Modified": "Sat, 13 Jan 2024 22:36:37 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "7d90ebd9-bfbb-4964-8a0b-702c8209de9d" + "X-Request-ID": "2bf4cf50-bc8c-4845-bdc0-8242fa847cf5" }, - "scan_id": 46225122, + "scan_id": 46434112, "score": 40, - "start_time": "Sun, 07 Jan 2024 00:40:38 GMT", + "start_time": "Sun, 14 Jan 2024 00:50:19 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -44149,7 +44333,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-01T10:13:39Z", + "up_since": "2024-01-07T14:01:58Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -44161,8 +44345,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T02:40:09Z", - "next_check_at": "2024-01-07T02:45:09Z", + "last_check_at": "2024-01-14T02:39:14Z", + "next_check_at": "2024-01-14T02:44:13Z", "created_at": "2021-01-11T11:57:59Z", "mute_until": null, "favicon_url": "https://beta.gouv.fr/assets/images/favicons/favicon.ico", @@ -44170,7 +44354,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T02:05:19Z", + "tested_at": "2024-01-14T02:24:24Z", "expires_at": "2024-02-18T07:27:11Z", "valid": true, "error": null @@ -44179,11 +44363,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 133, - "connection": 126, - "handshake": 133, - "response": 130, - "total": 523 + "namelookup": 99, + "connection": 101, + "handshake": 106, + "response": 104, + "total": 411 } }, "uptimeGrade": "A", @@ -44216,77 +44400,77 @@ "testssl": [ { "id": "service", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -44294,7 +44478,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -44302,7 +44486,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -44310,7 +44494,7 @@ }, { "id": "cipherlist_LOW", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -44318,7 +44502,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -44326,7 +44510,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -44334,497 +44518,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-20 07:27" }, { "id": "cert_notAfter", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-18 07:27" }, { "id": "cert_extlifeSpan", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704595006" + "finding": "1705199441" }, { "id": "HSTS_time", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -44832,7 +45016,7 @@ }, { "id": "heartbleed", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -44841,7 +45025,7 @@ }, { "id": "CCS", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -44850,7 +45034,7 @@ }, { "id": "ticketbleed", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -44859,7 +45043,7 @@ }, { "id": "ROBOT", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -44868,7 +45052,7 @@ }, { "id": "secure_renego", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -44876,7 +45060,7 @@ }, { "id": "secure_client_renego", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -44885,7 +45069,7 @@ }, { "id": "CRIME_TLS", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -44894,7 +45078,7 @@ }, { "id": "BREACH", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -44903,7 +45087,7 @@ }, { "id": "POODLE_SSL", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -44912,14 +45096,14 @@ }, { "id": "fallback_SCSV", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -44928,7 +45112,7 @@ }, { "id": "FREAK", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -44937,7 +45121,7 @@ }, { "id": "DROWN", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -44946,7 +45130,7 @@ }, { "id": "DROWN_hint", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -44955,7 +45139,7 @@ }, { "id": "LOGJAM", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -44964,7 +45148,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -44973,7 +45157,7 @@ }, { "id": "BEAST", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -44982,7 +45166,7 @@ }, { "id": "LUCKY13", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -44991,7 +45175,7 @@ }, { "id": "winshock", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -45000,7 +45184,7 @@ }, { "id": "RC4", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -45009,392 +45193,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "beta.gouv.fr/5.104.101.30", + "ip": "beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -45402,7 +45586,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -45410,7 +45594,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -45418,7 +45602,7 @@ }, { "id": "cipherlist_LOW", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -45426,7 +45610,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -45434,7 +45618,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -45442,497 +45626,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-11-20 07:27" }, { "id": "cert_notAfter", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-02-18 07:27" }, { "id": "cert_extlifeSpan", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704595060" + "finding": "1705199540" }, { "id": "HSTS_time", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -45940,7 +46124,7 @@ }, { "id": "heartbleed", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -45949,7 +46133,7 @@ }, { "id": "CCS", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -45958,7 +46142,7 @@ }, { "id": "ticketbleed", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -45967,7 +46151,7 @@ }, { "id": "ROBOT", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -45976,7 +46160,7 @@ }, { "id": "secure_renego", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -45984,7 +46168,7 @@ }, { "id": "secure_client_renego", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -45993,7 +46177,7 @@ }, { "id": "CRIME_TLS", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -46002,7 +46186,7 @@ }, { "id": "BREACH", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -46011,7 +46195,7 @@ }, { "id": "POODLE_SSL", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -46020,14 +46204,14 @@ }, { "id": "fallback_SCSV", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -46036,7 +46220,7 @@ }, { "id": "FREAK", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -46045,7 +46229,7 @@ }, { "id": "DROWN", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -46054,7 +46238,7 @@ }, { "id": "DROWN_hint", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -46063,7 +46247,7 @@ }, { "id": "LOGJAM", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -46072,7 +46256,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -46081,7 +46265,7 @@ }, { "id": "BEAST", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -46090,7 +46274,7 @@ }, { "id": "LUCKY13", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -46099,7 +46283,7 @@ }, { "id": "winshock", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -46108,7 +46292,7 @@ }, { "id": "RC4", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -46117,325 +46301,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "beta.gouv.fr/109.232.236.90", + "ip": "beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "110" + "finding": "203" } ], "thirdparties": { @@ -46443,10 +46627,10 @@ "cookies": [ { "name": "_pk_id.1.968e", - "value": "c421c0036c28095e.1704594950.", + "value": "9ca20cf7a6275044.1705199347.", "domain": "beta.gouv.fr", "path": "/", - "expires": 1738550150, + "expires": 1739154547, "size": 41, "httpOnly": false, "secure": false, @@ -46461,7 +46645,7 @@ "value": "1", "domain": "beta.gouv.fr", "path": "/", - "expires": 1704596749, + "expires": 1705201147, "size": 15, "httpOnly": false, "secure": false, @@ -46476,7 +46660,7 @@ "value": "1", "domain": "beta.gouv.fr", "path": "/", - "expires": 1704596749, + "expires": 1705201147, "size": 16, "httpOnly": false, "secure": false, @@ -46488,10 +46672,10 @@ }, { "name": "_pk_id.21.968e", - "value": "3eb5ca01174413bd.1704594950.", + "value": "eacb6817a1389d4a.1705199347.", "domain": "beta.gouv.fr", "path": "/", - "expires": 1738550150, + "expires": 1739154547, "size": 42, "httpOnly": false, "secure": false, @@ -46505,11 +46689,11 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 02:35:49 GMT", - "etag": "W/\"65999f82-99d9\"", - "last-modified": "Sat, 06 Jan 2024 18:44:18 GMT", + "date": "Sun, 14 Jan 2024 02:29:05 GMT", + "etag": "W/\"65a31075-99d9\"", + "last-modified": "Sat, 13 Jan 2024 22:36:37 GMT", "strict-transport-security": "max-age=31536000", - "x-request-id": "ebf456f6-849f-4b59-a630-e79426dc7b4b" + "x-request-id": "ac758210-4fc0-4e19-afa5-441dad287af9" }, "endpoints": [ { @@ -46792,7 +46976,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 02:35:07", + "@generated": "Sun, 14 Jan 2024 02:28:25", "site": [ { "@name": "https://beta-gouv-fr-budget.netlify.app", @@ -46961,23 +47145,22 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "CAA Record", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "caa" ], - "description": "DNS DMARC information was detected.\n", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -46987,37 +47170,32 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "beta.gouv.fr.", - "matched-at": "_dmarc.beta.gouv.fr", - "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" - ], - "timestamp": "2024-01-07T02:39:04.099117492Z", + "matched-at": "beta.gouv.fr", + "timestamp": "2024-01-14T02:34:12.980845031Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -47034,30 +47212,37 @@ "host": "beta.gouv.fr.", "matched-at": "beta.gouv.fr", "extracted-results": [ - "5 mx2.ovh.net.", - "1 mx1.ovh.net.", - "100 mxb.ovh.net." + "\"Sendinblue-code:1e9473206dde93a169d3acf07bec0adf\"", + "\"Sendinblue-code:8929780161d193b814fa4fa4958461f3\"", + "\"google-site-verification=Mo4Mbev37H1GkeCJtasIGj320ipsKn0mKUl4KyrvFBM\"", + "\"MS=4A732B260FFD4F901CAE36FB0D99DED7FB8CDC12\"", + "\"google-site-verification=lfIzZXA-NeXZJYKhXJEpi89tvcAk4VsX2vOciP0ougo\"", + "\"v=spf1 include:spf.sendinblue.com include:mx.ovh.com include:sendgrid.net include:spf.mailjet.com include:spf.tipimail.com include:servers.mcsv.net ~all\"", + "\"sendinblue-code:de106244f818fc1674ecb675e73f2d50\"", + "\"google-site-verification=ejIpUG1rg69LP1NhluAU5YoR4HrV2avM5FvNuIwLSRY\"", + "\"Sendinblue-code:98107153cf48b6ee7f14ab7d0a1ab7b5\"" ], - "timestamp": "2024-01-07T02:39:04.104392986Z", + "timestamp": "2024-01-14T02:34:12.981170031Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -47067,32 +47252,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "beta.gouv.fr.", - "matched-at": "beta.gouv.fr", - "timestamp": "2024-01-07T02:39:04.106142421Z", + "matched-at": "_dmarc.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + ], + "timestamp": "2024-01-14T02:34:13.001739468Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -47109,17 +47299,11 @@ "host": "beta.gouv.fr.", "matched-at": "beta.gouv.fr", "extracted-results": [ - "\"google-site-verification=ejIpUG1rg69LP1NhluAU5YoR4HrV2avM5FvNuIwLSRY\"", - "\"sendinblue-code:de106244f818fc1674ecb675e73f2d50\"", - "\"google-site-verification=Mo4Mbev37H1GkeCJtasIGj320ipsKn0mKUl4KyrvFBM\"", - "\"MS=4A732B260FFD4F901CAE36FB0D99DED7FB8CDC12\"", - "\"google-site-verification=lfIzZXA-NeXZJYKhXJEpi89tvcAk4VsX2vOciP0ougo\"", - "\"Sendinblue-code:98107153cf48b6ee7f14ab7d0a1ab7b5\"", - "\"Sendinblue-code:8929780161d193b814fa4fa4958461f3\"", - "\"v=spf1 include:spf.sendinblue.com include:mx.ovh.com include:sendgrid.net include:spf.mailjet.com include:spf.tipimail.com include:servers.mcsv.net ~all\"", - "\"Sendinblue-code:1e9473206dde93a169d3acf07bec0adf\"" + "100 mxb.ovh.net.", + "1 mx1.ovh.net.", + "5 mx2.ovh.net." ], - "timestamp": "2024-01-07T02:39:05.102557807Z", + "timestamp": "2024-01-14T02:34:13.838734976Z", "matcher-status": true }, { @@ -47155,7 +47339,7 @@ "dns18.ovh.net.", "ns18.ovh.net." ], - "timestamp": "2024-01-07T02:39:05.187713155Z", + "timestamp": "2024-01-14T02:34:13.999665976Z", "matcher-status": true }, { @@ -47193,8 +47377,8 @@ "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:15.243807089Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:34:32.514237441Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47228,8 +47412,8 @@ "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr/admin/index.html", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:43.234869579Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:20.233946004Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr/admin/index.html'", "matcher-status": true }, @@ -47265,8 +47449,8 @@ "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.54252272Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.060213201Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47298,12 +47482,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.542568586Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.060268694Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47335,12 +47519,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.542586008Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.060292338Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47376,8 +47560,8 @@ "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.542600065Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.06030981Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47409,12 +47593,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.542613951Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.060326952Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47446,12 +47630,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.542627847Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.060344445Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47483,12 +47667,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.542640921Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.060360584Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47520,12 +47704,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.542652773Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.060377927Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47557,12 +47741,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "content-security-policy", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.542667531Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.060406129Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47594,12 +47778,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:46.54267751Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:26.060424403Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr'", "matcher-status": true }, @@ -47641,8 +47825,8 @@ "extracted-results": [ "69e439be-1350-422a-baa9-ff64796a83cd" ], - "ip": "40.126.62.129", - "timestamp": "2024-01-07T02:39:47.89052768Z", + "ip": "20.190.190.132", + "timestamp": "2024-01-14T02:35:28.035838275Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: login.microsoftonline.com' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://login.microsoftonline.com:443/beta.gouv.fr/v2.0/.well-known/openid-configuration'", "matcher-status": true }, @@ -47684,11 +47868,107 @@ "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr/Guardfile", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:39:48.828329766Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:35:30.256327375Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr/Guardfile'", "matcher-status": true }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantAddress", + "type": "http", + "host": "https://beta.gouv.fr", + "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", + "extracted-results": [ + "FR", + "39 quai Andre Citroen", + "Paris", + "75015" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T02:35:43.816897035Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "nameServers", + "type": "http", + "host": "https://beta.gouv.fr", + "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", + "extracted-results": [ + "ns18.ovh.net", + "dns18.ovh.net" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T02:35:43.816947398Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", + "matcher-status": true + }, { "template": "http/miscellaneous/rdap-whois.yaml", "template-url": "https://templates.nuclei.sh/public/rdap-whois", @@ -47731,7 +48011,7 @@ "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338035846Z", + "timestamp": "2024-01-14T02:35:43.816964019Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -47769,15 +48049,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "expirationDate", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "2023-10-19T13:36:32.326787Z" + "2024-02-24T18:10:37Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338074679Z", + "timestamp": "2024-01-14T02:35:43.816979177Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -47823,7 +48103,7 @@ "DINSIC ISN" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338086121Z", + "timestamp": "2024-01-14T02:35:43.816996078Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -47869,7 +48149,7 @@ "DINSIC ISN" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338099676Z", + "timestamp": "2024-01-14T02:35:43.817010325Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -47907,15 +48187,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "registrantEmail", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "FR" + "swscdmldpsaea7q26su0@y.o-w-o.info" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338483272Z", + "timestamp": "2024-01-14T02:35:43.817025964Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -47953,16 +48233,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantPhone", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "ns18.ovh.net", - "dns18.ovh.net" + "+33.681349243" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338519539Z", + "timestamp": "2024-01-14T02:35:43.817040801Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48000,64 +48279,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "status", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "39 quai Andre Citroen", - "Paris", - "75015", - "FR" + "active" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338535519Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "status", - "type": "http", - "host": "https://beta.gouv.fr", - "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", - "extracted-results": [ - "active" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338555176Z", + "timestamp": "2024-01-14T02:35:43.817053765Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48103,53 +48333,7 @@ "2016-02-24T18:10:37Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338576336Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "expirationDate", - "type": "http", - "host": "https://beta.gouv.fr", - "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", - "extracted-results": [ - "2024-02-24T18:10:37Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338593608Z", + "timestamp": "2024-01-14T02:35:43.817067561Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48187,15 +48371,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "swscdmldpsaea7q26su0@y.o-w-o.info" + "2023-10-19T13:36:32.326787Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338610459Z", + "timestamp": "2024-01-14T02:35:43.817080635Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48233,15 +48417,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "registrantCountry", "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://rdap.nic.fr/domain/beta.gouv.fr", "extracted-results": [ - "+33.681349243" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T02:39:56.338628353Z", + "timestamp": "2024-01-14T02:35:43.817093208Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/beta.gouv.fr'", "matcher-status": true }, @@ -48280,8 +48464,8 @@ "type": "http", "host": "https://beta.gouv.fr", "matched-at": "https://beta.gouv.fr/", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:40:08.28787828Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:36:04.838191215Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://beta.gouv.fr/'", "matcher-status": true }, @@ -48311,8 +48495,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:43:07.608547086Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:39:17.75082205Z", "matcher-status": true }, { @@ -48341,8 +48525,8 @@ "extracted-results": [ "beta.gouv.fr" ], - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:43:07.608648726Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:39:17.750941271Z", "matcher-status": true }, { @@ -48372,8 +48556,8 @@ "extracted-results": [ "tls12" ], - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:43:08.929812697Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:39:20.419444528Z", "matcher-status": true }, { @@ -48403,8 +48587,8 @@ "extracted-results": [ "tls13" ], - "ip": "5.104.101.30", - "timestamp": "2024-01-07T02:43:09.117790344Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:39:20.729346945Z", "matcher-status": true } ], @@ -48412,7 +48596,7 @@ { "requestedUrl": "https://beta.gouv.fr/", "finalUrl": "https://beta.gouv.fr/", - "fetchTime": "2024-01-07T02:35:21.712Z", + "fetchTime": "2024-01-14T02:28:39.984Z", "runWarnings": [], "categories": { "performance": { @@ -48475,53 +48659,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1925, + "numericValue": 1932, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1657, - "firstMeaningfulPaint": 1657, - "largestContentfulPaint": 1957, - "interactive": 1925, - "speedIndex": 2031, - "totalBlockingTime": 43, - "maxPotentialFID": 136, + "firstContentfulPaint": 1530, + "firstMeaningfulPaint": 1530, + "largestContentfulPaint": 1834, + "interactive": 1932, + "speedIndex": 2383, + "totalBlockingTime": 53, + "maxPotentialFID": 155, "cumulativeLayoutShift": 0.0035968424479166663, "cumulativeLayoutShiftMainFrame": 0.0035968424479166663, "totalCumulativeLayoutShift": 0.0035968424479166663, "observedTimeOrigin": 0, - "observedTimeOriginTs": 517627854, + "observedTimeOriginTs": 450291371, "observedNavigationStart": 0, - "observedNavigationStartTs": 517627854, - "observedFirstPaint": 713, - "observedFirstPaintTs": 518340689, - "observedFirstContentfulPaint": 713, - "observedFirstContentfulPaintTs": 518340689, - "observedFirstContentfulPaintAllFrames": 713, - "observedFirstContentfulPaintAllFramesTs": 518340689, - "observedFirstMeaningfulPaint": 713, - "observedFirstMeaningfulPaintTs": 518340689, - "observedLargestContentfulPaint": 713, - "observedLargestContentfulPaintTs": 518340689, - "observedLargestContentfulPaintAllFrames": 713, - "observedLargestContentfulPaintAllFramesTs": 518340689, - "observedTraceEnd": 3359, - "observedTraceEndTs": 520987208, - "observedLoad": 1051, - "observedLoadTs": 518678994, - "observedDomContentLoaded": 735, - "observedDomContentLoadedTs": 518362691, + "observedNavigationStartTs": 450291371, + "observedFirstPaint": 1145, + "observedFirstPaintTs": 451436385, + "observedFirstContentfulPaint": 1145, + "observedFirstContentfulPaintTs": 451436385, + "observedFirstContentfulPaintAllFrames": 1145, + "observedFirstContentfulPaintAllFramesTs": 451436385, + "observedFirstMeaningfulPaint": 1145, + "observedFirstMeaningfulPaintTs": 451436385, + "observedLargestContentfulPaint": 1145, + "observedLargestContentfulPaintTs": 451436385, + "observedLargestContentfulPaintAllFrames": 1145, + "observedLargestContentfulPaintAllFramesTs": 451436385, + "observedTraceEnd": 4073, + "observedTraceEndTs": 454364167, + "observedLoad": 1766, + "observedLoadTs": 452057070, + "observedDomContentLoaded": 1252, + "observedDomContentLoadedTs": 451543034, "observedCumulativeLayoutShift": 0.0035968424479166663, "observedCumulativeLayoutShiftMainFrame": 0.0035968424479166663, "observedTotalCumulativeLayoutShift": 0.0035968424479166663, - "observedFirstVisualChange": 701, - "observedFirstVisualChangeTs": 518328854, - "observedLastVisualChange": 1034, - "observedLastVisualChangeTs": 518661854, - "observedSpeedIndex": 715, - "observedSpeedIndexTs": 518342599 + "observedFirstVisualChange": 1157, + "observedFirstVisualChangeTs": 451448371, + "observedLastVisualChange": 1490, + "observedLastVisualChangeTs": 451781371, + "observedSpeedIndex": 1171, + "observedSpeedIndexTs": 451461941 }, { "lcpInvalidated": false @@ -48543,19 +48727,19 @@ "numScripts": 3, "numStylesheets": 4, "numFonts": 4, - "numTasks": 1191, - "numTasksOver10ms": 5, - "numTasksOver25ms": 3, - "numTasksOver50ms": 1, + "numTasks": 1208, + "numTasksOver10ms": 2, + "numTasksOver25ms": 2, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.862, - "throughput": 13374836.973129312, - "maxRtt": 88.937, - "maxServerLatency": 112.34900000000005, - "totalByteWeight": 482383, - "totalTaskTime": 288.07099999999775, - "mainDocumentTransferSize": 8105 + "rtt": 147.22500000000002, + "throughput": 6179041.20810056, + "maxRtt": 154.42600000000002, + "maxServerLatency": 43.370000000000005, + "totalByteWeight": 485061, + "totalTaskTime": 211.43999999999977, + "mainDocumentTransferSize": 8135 } ] } @@ -48654,7 +48838,7 @@ "http": { "url": "https://blog.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:33:25 GMT", + "end_time": "Sun, 14 Jan 2024 02:45:43 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -48662,16 +48846,16 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 02:33:24 GMT", - "ETag": "W/\"659819e0-669b\"", - "Last-Modified": "Fri, 05 Jan 2024 15:01:52 GMT", + "Date": "Sun, 14 Jan 2024 02:45:42 GMT", + "ETag": "W/\"65a2e389-669b\"", + "Last-Modified": "Sat, 13 Jan 2024 19:24:57 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "5f20f015-acb6-4cf9-b23e-012243ff14d5" + "X-Request-ID": "d6e764d6-9583-4281-9cf4-686fa15b14cb" }, - "scan_id": 46227255, + "scan_id": 46436233, "score": 40, - "start_time": "Sun, 07 Jan 2024 02:33:22 GMT", + "start_time": "Sun, 14 Jan 2024 02:45:38 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -48842,10 +49026,10 @@ "url": "https://blog.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 99.944, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-01T21:00:28Z", + "up_since": "2024-01-13T20:38:48Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -48857,8 +49041,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T02:47:14Z", - "next_check_at": "2024-01-07T02:52:11Z", + "last_check_at": "2024-01-14T02:57:17Z", + "next_check_at": "2024-01-14T03:02:16Z", "created_at": "2021-04-22T19:50:22Z", "mute_until": null, "favicon_url": "https://blog.beta.gouv.fr/assets/images/favicons/favicon.ico", @@ -48866,7 +49050,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T02:32:18Z", + "tested_at": "2024-01-14T02:52:20Z", "expires_at": "2024-02-18T07:36:08Z", "valid": true, "error": null @@ -48875,11 +49059,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 180, - "connection": 145, - "handshake": 149, - "response": 151, - "total": 625 + "namelookup": 50, + "connection": 53, + "handshake": 58, + "response": 56, + "total": 218 } }, "uptimeGrade": "A", @@ -48912,77 +49096,77 @@ "testssl": [ { "id": "service", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -48990,7 +49174,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -48998,7 +49182,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -49006,7 +49190,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -49014,7 +49198,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -49022,7 +49206,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -49030,497 +49214,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-11-20 07:36" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-02-18 07:36" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704594913" + "finding": "1705200424" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -49528,7 +49712,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -49537,7 +49721,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -49546,7 +49730,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -49555,7 +49739,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -49564,7 +49748,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -49572,7 +49756,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -49581,7 +49765,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -49590,7 +49774,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -49599,7 +49783,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -49608,14 +49792,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -49624,7 +49808,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -49633,7 +49817,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -49642,7 +49826,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -49651,7 +49835,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -49660,7 +49844,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -49669,7 +49853,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -49678,7 +49862,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -49687,7 +49871,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -49696,7 +49880,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -49705,392 +49889,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/148.253.75.120", + "ip": "blog.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -50098,7 +50282,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -50106,7 +50290,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -50114,7 +50298,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -50122,7 +50306,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -50130,7 +50314,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -50138,497 +50322,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-11-20 07:36" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-02-18 07:36" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704595010" + "finding": "1705200485" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -50636,7 +50820,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -50645,7 +50829,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -50654,7 +50838,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -50663,7 +50847,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -50672,7 +50856,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -50680,7 +50864,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -50689,7 +50873,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -50698,7 +50882,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -50707,7 +50891,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -50716,14 +50900,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -50732,7 +50916,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -50741,7 +50925,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -50750,7 +50934,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -50759,7 +50943,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -50768,7 +50952,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -50777,7 +50961,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -50786,7 +50970,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -50795,7 +50979,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -50804,7 +50988,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -50813,392 +50997,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/109.232.236.90", + "ip": "blog.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51206,7 +51390,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51214,7 +51398,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51222,7 +51406,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -51230,7 +51414,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -51238,7 +51422,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -51246,497 +51430,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-11-20 07:36" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-02-18 07:36" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704595107" + "finding": "1705200542" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -51744,7 +51928,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -51753,7 +51937,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -51762,7 +51946,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -51771,7 +51955,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -51780,7 +51964,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -51788,7 +51972,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -51797,7 +51981,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -51806,7 +51990,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -51815,7 +51999,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -51824,14 +52008,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -51840,7 +52024,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -51849,7 +52033,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -51858,7 +52042,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -51867,7 +52051,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -51876,7 +52060,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -51885,7 +52069,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -51894,7 +52078,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -51903,7 +52087,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -51912,7 +52096,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -51921,392 +52105,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/109.232.233.130", + "ip": "blog.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52314,7 +52498,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52322,7 +52506,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52330,7 +52514,7 @@ }, { "id": "cipherlist_LOW", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -52338,7 +52522,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -52346,7 +52530,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -52354,497 +52538,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-20 07:36" }, { "id": "cert_notAfter", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-18 07:36" }, { "id": "cert_extlifeSpan", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704595203" + "finding": "1705200601" }, { "id": "HSTS_time", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -52852,7 +53036,7 @@ }, { "id": "heartbleed", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -52861,7 +53045,7 @@ }, { "id": "CCS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -52870,7 +53054,7 @@ }, { "id": "ticketbleed", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -52879,7 +53063,7 @@ }, { "id": "ROBOT", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -52888,7 +53072,7 @@ }, { "id": "secure_renego", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -52896,7 +53080,7 @@ }, { "id": "secure_client_renego", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -52905,7 +53089,7 @@ }, { "id": "CRIME_TLS", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -52914,7 +53098,7 @@ }, { "id": "BREACH", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -52923,7 +53107,7 @@ }, { "id": "POODLE_SSL", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -52932,14 +53116,14 @@ }, { "id": "fallback_SCSV", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -52948,7 +53132,7 @@ }, { "id": "FREAK", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -52957,7 +53141,7 @@ }, { "id": "DROWN", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -52966,7 +53150,7 @@ }, { "id": "DROWN_hint", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -52975,7 +53159,7 @@ }, { "id": "LOGJAM", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -52984,7 +53168,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -52993,7 +53177,7 @@ }, { "id": "BEAST", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -53002,7 +53186,7 @@ }, { "id": "LUCKY13", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -53011,7 +53195,7 @@ }, { "id": "winshock", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -53020,7 +53204,7 @@ }, { "id": "RC4", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -53029,325 +53213,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "blog.beta.gouv.fr/5.104.101.30", + "ip": "blog.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "392" + "finding": "242" } ], "thirdparties": { @@ -53375,7 +53559,7 @@ "value": "1", "domain": "blog.beta.gouv.fr", "path": "/", - "expires": 1704596638, + "expires": 1705202177, "size": 16, "httpOnly": false, "secure": false, @@ -53387,10 +53571,10 @@ }, { "name": "_pk_id.69.9a49", - "value": "cac913c45e7e43d3.1704594838.", + "value": "ed4e7e539e104f02.1705200377.", "domain": "blog.beta.gouv.fr", "path": "/", - "expires": 1738550038, + "expires": 1739155577, "size": 42, "httpOnly": false, "secure": false, @@ -53404,11 +53588,11 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 02:33:57 GMT", - "etag": "W/\"659819e0-669b\"", - "last-modified": "Fri, 05 Jan 2024 15:01:52 GMT", + "date": "Sun, 14 Jan 2024 02:46:16 GMT", + "etag": "W/\"65a2e389-669b\"", + "last-modified": "Sat, 13 Jan 2024 19:24:57 GMT", "strict-transport-security": "max-age=31536000", - "x-request-id": "0671842f-2815-49c4-93e5-88139df06c79" + "x-request-id": "a022665a-1518-4bb2-a5b6-ebc5e9dbf4b3" }, "endpoints": [ { @@ -53469,7 +53653,7 @@ }, { "hostname": "avatars3.githubusercontent.com", - "ip": "185.199.108.133", + "ip": "185.199.110.133", "geoip": { "continent": { "code": "NA", @@ -53489,7 +53673,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -53509,7 +53693,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -53664,7 +53848,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 02:32:56", + "@generated": "Sun, 14 Jan 2024 02:45:13", "site": [ { "@name": "https://blog.beta.gouv.fr", @@ -53804,73 +53988,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "blog.beta.gouv.fr.", "matched-at": "blog.beta.gouv.fr", - "extracted-results": [ - "betagouv-blog.osc-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T02:41:51.885992787Z", + "timestamp": "2024-01-14T02:51:31.313345946Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "blog.beta.gouv.fr.", "matched-at": "blog.beta.gouv.fr", - "timestamp": "2024-01-07T02:41:51.89158808Z", + "extracted-results": [ + "betagouv-blog.osc-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T02:51:31.47889579Z", "matcher-status": true }, { @@ -53908,8 +54092,8 @@ "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:09.245620617Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:51:44.900292372Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -53943,8 +54127,8 @@ "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr/admin/index.html", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:51.040942558Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:17.528019969Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr/admin/index.html'", "matcher-status": true }, @@ -53976,12 +54160,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.071219197Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.551981627Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54017,8 +54201,8 @@ "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.071267988Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.552025689Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54050,12 +54234,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.071285821Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.55204202Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54091,8 +54275,8 @@ "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.071298104Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.552054583Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54124,12 +54308,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.07131193Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.552067898Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54161,12 +54345,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.071425122Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.552082686Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54198,12 +54382,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.071438697Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.552102092Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54235,12 +54419,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.07145085Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.552118223Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54272,12 +54456,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.071464385Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.552137909Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54309,12 +54493,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:42:56.071480084Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:21.552152547Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr'", "matcher-status": true }, @@ -54353,8 +54537,8 @@ "type": "http", "host": "https://blog.beta.gouv.fr", "matched-at": "https://blog.beta.gouv.fr/", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:43:30.786236433Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:52:48.415809978Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: blog.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://blog.beta.gouv.fr/'", "matcher-status": true }, @@ -54384,8 +54568,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:49:20.009208678Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:58:31.638538117Z", "matcher-status": true }, { @@ -54414,8 +54598,8 @@ "extracted-results": [ "blog.beta.gouv.fr" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:49:20.009319194Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:58:31.638661858Z", "matcher-status": true }, { @@ -54445,8 +54629,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:49:22.098844277Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:58:33.166365824Z", "matcher-status": true }, { @@ -54476,8 +54660,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T02:49:22.482418061Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T02:58:33.425739694Z", "matcher-status": true } ], @@ -54485,7 +54669,7 @@ { "requestedUrl": "https://blog.beta.gouv.fr/", "finalUrl": "https://blog.beta.gouv.fr/", - "fetchTime": "2024-01-07T02:33:11.035Z", + "fetchTime": "2024-01-14T02:45:27.717Z", "runWarnings": [], "categories": { "performance": { @@ -54496,7 +54680,7 @@ "snapshot" ], "id": "performance", - "score": 0.7317461013793946 + "score": 0.7318508148193359 }, "accessibility": { "title": "Accessibility", @@ -54548,53 +54732,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5224, + "numericValue": 4994, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1663, - "firstMeaningfulPaint": 5224, - "largestContentfulPaint": 7962, - "interactive": 5224, - "speedIndex": 2138, - "totalBlockingTime": 65, - "maxPotentialFID": 115, - "cumulativeLayoutShift": 0.020573331197102866, - "cumulativeLayoutShiftMainFrame": 0.020573331197102866, - "totalCumulativeLayoutShift": 0.020573331197102866, + "firstContentfulPaint": 1499, + "firstMeaningfulPaint": 4994, + "largestContentfulPaint": 5494, + "interactive": 4994, + "speedIndex": 1624, + "totalBlockingTime": 35, + "maxPotentialFID": 85, + "cumulativeLayoutShift": 0.024787554846869578, + "cumulativeLayoutShiftMainFrame": 0.024787554846869578, + "totalCumulativeLayoutShift": 0.024787554846869578, "observedTimeOrigin": 0, - "observedTimeOriginTs": 259946093, + "observedTimeOriginTs": 354499318, "observedNavigationStart": 0, - "observedNavigationStartTs": 259946093, - "observedFirstPaint": 748, - "observedFirstPaintTs": 260693601, - "observedFirstContentfulPaint": 748, - "observedFirstContentfulPaintTs": 260693601, - "observedFirstContentfulPaintAllFrames": 748, - "observedFirstContentfulPaintAllFramesTs": 260693601, - "observedFirstMeaningfulPaint": 1413, - "observedFirstMeaningfulPaintTs": 261359323, - "observedLargestContentfulPaint": 1399, - "observedLargestContentfulPaintTs": 261345159, - "observedLargestContentfulPaintAllFrames": 1399, - "observedLargestContentfulPaintAllFramesTs": 261345159, - "observedTraceEnd": 3754, - "observedTraceEndTs": 263700064, - "observedLoad": 1395, - "observedLoadTs": 261341270, - "observedDomContentLoaded": 1115, - "observedDomContentLoadedTs": 261060602, - "observedCumulativeLayoutShift": 0.020573331197102866, - "observedCumulativeLayoutShiftMainFrame": 0.020573331197102866, - "observedTotalCumulativeLayoutShift": 0.020573331197102866, - "observedFirstVisualChange": 743, - "observedFirstVisualChangeTs": 260689093, - "observedLastVisualChange": 1493, - "observedLastVisualChangeTs": 261439093, - "observedSpeedIndex": 934, - "observedSpeedIndexTs": 260879731 + "observedNavigationStartTs": 354499318, + "observedFirstPaint": 503, + "observedFirstPaintTs": 355002118, + "observedFirstContentfulPaint": 503, + "observedFirstContentfulPaintTs": 355002118, + "observedFirstContentfulPaintAllFrames": 503, + "observedFirstContentfulPaintAllFramesTs": 355002118, + "observedFirstMeaningfulPaint": 1082, + "observedFirstMeaningfulPaintTs": 355580989, + "observedLargestContentfulPaint": 981, + "observedLargestContentfulPaintTs": 355480525, + "observedLargestContentfulPaintAllFrames": 981, + "observedLargestContentfulPaintAllFramesTs": 355480525, + "observedTraceEnd": 3380, + "observedTraceEndTs": 357879804, + "observedLoad": 1072, + "observedLoadTs": 355571813, + "observedDomContentLoaded": 754, + "observedDomContentLoadedTs": 355252955, + "observedCumulativeLayoutShift": 0.024787554846869578, + "observedCumulativeLayoutShiftMainFrame": 0.024787554846869578, + "observedTotalCumulativeLayoutShift": 0.024787554846869578, + "observedFirstVisualChange": 486, + "observedFirstVisualChangeTs": 354985318, + "observedLastVisualChange": 1119, + "observedLastVisualChangeTs": 355618318, + "observedSpeedIndex": 642, + "observedSpeedIndexTs": 355141794 }, { "lcpInvalidated": false @@ -54616,19 +54800,19 @@ "numScripts": 2, "numStylesheets": 2, "numFonts": 4, - "numTasks": 384, + "numTasks": 398, "numTasksOver10ms": 3, - "numTasksOver25ms": 2, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 8.828, - "throughput": 27783975.26037072, - "maxRtt": 153.519, - "maxServerLatency": 267.30400000000003, - "totalByteWeight": 2454999, - "totalTaskTime": 157.368, - "mainDocumentTransferSize": 7724 + "rtt": 1.6380000000000001, + "throughput": 37199768.11243812, + "maxRtt": 105.141, + "maxServerLatency": 200.46300000000005, + "totalByteWeight": 2454450, + "totalTaskTime": 131.04899999999995, + "mainDocumentTransferSize": 7752 } ] } @@ -54680,7 +54864,7 @@ "httpGrade": "D+", "apdex": 1, "apdexGrade": "A", - "uptime": 99.944, + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -54692,7 +54876,7 @@ "cookiesCount": 2, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.7317461013793946, + "lighthouse_performance": 0.7318508148193359, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.77, "lighthouse_accessibilityGrade": "B", @@ -54718,7 +54902,7 @@ "http": { "url": "https://camino.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:48:30 GMT", + "end_time": "Sun, 14 Jan 2024 01:41:20 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -54729,9 +54913,9 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'none'; script-src 'self' https://stats.data.gouv.fr 'sha256-quOgp+M4pH4TUco5DwHuTMyTY9AY+DOk4jkIMuGgSJs='; style-src 'self'; font-src 'self'; object-src 'self'; frame-src 'self'; connect-src 'self' sentry.incubateur.net https://stats.data.gouv.fr; img-src data: 'self' tile.openstreetmap.org a.tile.openstreetmap.org b.tile.openstreetmap.org c.tile.openstreetmap.org tile.openstreetmap.fr a.tile.openstreetmap.fr b.tile.openstreetmap.fr c.tile.openstreetmap.fr geoservices.brgm.fr wxs.ign.fr datacarto.geoguyane.fr gisdata.cerema.fr services.data.shom.fr; base-uri 'none'; form-action 'self'; frame-ancestors 'none';", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 01:48:29 GMT", + "Date": "Sun, 14 Jan 2024 01:41:19 GMT", "Etag": "W/\"65689627-550\"", - "Expires": "Sun, 07 Jan 2024 01:48:29 GMT", + "Expires": "Sun, 14 Jan 2024 01:41:19 GMT", "Last-Modified": "Thu, 30 Nov 2023 14:03:19 GMT", "Referrer-Policy": "same-origin", "Server": "nginx/1.23.4", @@ -54741,9 +54925,9 @@ "X-Frame-Options": "DENY", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 46226497, + "scan_id": 46435147, "score": 120, - "start_time": "Sun, 07 Jan 2024 01:44:12 GMT", + "start_time": "Sun, 14 Jan 2024 01:41:16 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -54760,8 +54944,8 @@ ], "connect-src": [ "https://stats.data.gouv.fr", - "sentry.incubateur.net", - "'self'" + "'self'", + "sentry.incubateur.net" ], "default-src": [ "'none'" @@ -54779,29 +54963,29 @@ "'self'" ], "img-src": [ + "b.tile.openstreetmap.org", + "'self'", + "a.tile.openstreetmap.fr", + "b.tile.openstreetmap.fr", + "datacarto.geoguyane.fr", + "data:", "gisdata.cerema.fr", "tile.openstreetmap.org", - "tile.openstreetmap.fr", - "a.tile.openstreetmap.fr", - "geoservices.brgm.fr", - "'self'", - "c.tile.openstreetmap.fr", - "c.tile.openstreetmap.org", "a.tile.openstreetmap.org", "wxs.ign.fr", + "c.tile.openstreetmap.org", + "geoservices.brgm.fr", "services.data.shom.fr", - "b.tile.openstreetmap.fr", - "b.tile.openstreetmap.org", - "data:", - "datacarto.geoguyane.fr" + "c.tile.openstreetmap.fr", + "tile.openstreetmap.fr" ], "object-src": [ "'self'" ], "script-src": [ "https://stats.data.gouv.fr", - "'sha256-quogp+m4ph4tuco5dwhutmyty9ay+dok4jkimuggsjs='", - "'self'" + "'self'", + "'sha256-quogp+m4ph4tuco5dwhutmyty9ay+dok4jkimuggsjs='" ], "style-src": [ "'self'" @@ -54993,8 +55177,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T02:59:27Z", - "next_check_at": "2024-01-07T03:04:27Z", + "last_check_at": "2024-01-14T02:58:37Z", + "next_check_at": "2024-01-14T03:03:36Z", "created_at": "2021-04-22T19:50:28Z", "mute_until": null, "favicon_url": "https://camino.beta.gouv.fr/favicon.ico", @@ -55002,7 +55186,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T02:44:36Z", + "tested_at": "2024-01-14T02:19:00Z", "expires_at": "2024-04-05T06:54:33Z", "valid": true, "error": null @@ -55011,11 +55195,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 171, - "connection": 125, - "handshake": 145, - "response": 130, - "total": 572 + "namelookup": 118, + "connection": 132, + "handshake": 155, + "response": 139, + "total": 544 } }, "uptimeGrade": "A", @@ -55034,46 +55218,46 @@ "version": "9.2p1 Debian 2+deb12u2", "vulnerabilities": [ { + "type": "seebug", "cvss": "7.5", "id": "SSV:92579", - "is_exploit": "true", - "type": "seebug" + "is_exploit": "true" }, { + "type": "prion", "cvss": "7.5", "id": "PRION:CVE-2023-38408", - "is_exploit": "false", - "type": "prion" + "is_exploit": "false" }, { + "type": "prion", "cvss": "7.5", "id": "PRION:CVE-2023-28531", - "is_exploit": "false", - "type": "prion" + "is_exploit": "false" }, { + "type": "githubexploit", "cvss": "7.5", "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", - "is_exploit": "true", - "type": "githubexploit" + "is_exploit": "true" }, { + "type": "githubexploit", "cvss": "7.5", "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", - "is_exploit": "true", - "type": "githubexploit" + "is_exploit": "true" }, { + "type": "zdt", "cvss": "7.5", "id": "1337DAY-ID-26576", - "is_exploit": "true", - "type": "zdt" + "is_exploit": "true" }, { + "type": "packetstorm", "cvss": "0.0", "id": "PACKETSTORM:140261", - "is_exploit": "true", - "type": "packetstorm" + "is_exploit": "true" } ] } @@ -55482,7 +55666,7 @@ "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "OK", - "finding": "89 >= 30 days" + "finding": "82 >= 30 days" }, { "id": "cert_notBefore", @@ -55685,14 +55869,14 @@ "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "INFO", - "finding": "1704596164" + "finding": "1705200691" }, { "id": "HSTS_time", @@ -56304,7 +56488,7 @@ "ip": "camino.beta.gouv.fr/91.134.91.128", "port": "443", "severity": "INFO", - "finding": "105" + "finding": "104" } ], "thirdparties": { @@ -56365,9 +56549,9 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'none'; script-src 'self' https://stats.data.gouv.fr 'sha256-quOgp+M4pH4TUco5DwHuTMyTY9AY+DOk4jkIMuGgSJs='; style-src 'self'; font-src 'self'; object-src 'self'; frame-src 'self'; connect-src 'self' sentry.incubateur.net https://stats.data.gouv.fr; img-src data: 'self' tile.openstreetmap.org a.tile.openstreetmap.org b.tile.openstreetmap.org c.tile.openstreetmap.org tile.openstreetmap.fr a.tile.openstreetmap.fr b.tile.openstreetmap.fr c.tile.openstreetmap.fr geoservices.brgm.fr wxs.ign.fr datacarto.geoguyane.fr gisdata.cerema.fr services.data.shom.fr; base-uri 'none'; form-action 'self'; frame-ancestors 'none';", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 02:54:28 GMT", + "date": "Sun, 14 Jan 2024 02:49:56 GMT", "etag": "W/\"65689627-550\"", - "expires": "Sun, 07 Jan 2024 02:54:28 GMT", + "expires": "Sun, 14 Jan 2024 02:49:56 GMT", "last-modified": "Thu, 30 Nov 2023 14:03:19 GMT", "referrer-policy": "same-origin", "server": "nginx/1.23.4", @@ -56745,7 +56929,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 02:53:45", + "@generated": "Sun, 14 Jan 2024 02:49:14", "site": [ { "@name": "https://camino.beta.gouv.fr", @@ -56864,24 +57048,20 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -56897,10 +57077,10 @@ "host": "camino.beta.gouv.fr.", "matched-at": "camino.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2024-01-07T02:57:30.855748933Z", + "timestamp": "2024-01-14T02:52:58.960800712Z", "matcher-status": true }, { @@ -56939,26 +57119,27 @@ "\"v=spf1 include:_spf.mailjet.com include:_spf.alwaysdata.com ?all\"", "\"google-site-verification=FOPR91m7L5qsKnQmfVh7JgGByfygT-tYvzY7ZDPtSSg\"" ], - "timestamp": "2024-01-07T02:57:30.921256532Z", + "timestamp": "2024-01-14T02:52:58.987178698Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -56974,24 +57155,31 @@ "type": "dns", "host": "camino.beta.gouv.fr.", "matched-at": "camino.beta.gouv.fr", - "timestamp": "2024-01-07T02:57:31.860305481Z", + "extracted-results": [ + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2024-01-14T02:52:59.128777956Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -57006,11 +57194,7 @@ "type": "dns", "host": "camino.beta.gouv.fr.", "matched-at": "camino.beta.gouv.fr", - "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." - ], - "timestamp": "2024-01-07T02:57:32.026998014Z", + "timestamp": "2024-01-14T02:52:59.960742556Z", "matcher-status": true }, { @@ -57050,7 +57234,7 @@ "1; mode=block" ], "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:57:50.799365957Z", + "timestamp": "2024-01-14T02:53:18.878541906Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57082,7 +57266,7 @@ "nginx/1.23.4" ], "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:57:50.802657297Z", + "timestamp": "2024-01-14T02:53:18.881546107Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57109,7 +57293,7 @@ "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:58:28.467284351Z", + "timestamp": "2024-01-14T02:53:56.713106922Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57141,12 +57325,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:58:43.694803079Z", + "timestamp": "2024-01-14T02:54:11.933090711Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57178,12 +57362,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:58:43.694858032Z", + "timestamp": "2024-01-14T02:54:11.933135334Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57215,12 +57399,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:58:43.694878059Z", + "timestamp": "2024-01-14T02:54:11.933148418Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57252,12 +57436,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:58:43.694892897Z", + "timestamp": "2024-01-14T02:54:11.933164278Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57289,12 +57473,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:58:43.694907845Z", + "timestamp": "2024-01-14T02:54:11.933180548Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57326,12 +57510,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr", "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:58:43.694920698Z", + "timestamp": "2024-01-14T02:54:11.933194935Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr'", "matcher-status": true }, @@ -57359,7 +57543,7 @@ "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr/robots.txt", "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:59:00.594109783Z", + "timestamp": "2024-01-14T02:54:28.97041143Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -57399,7 +57583,7 @@ "host": "https://camino.beta.gouv.fr", "matched-at": "https://camino.beta.gouv.fr/", "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:59:22.837905326Z", + "timestamp": "2024-01-14T02:54:51.135106775Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: camino.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://camino.beta.gouv.fr/'", "matcher-status": true }, @@ -57449,7 +57633,7 @@ "SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u2" ], "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:59:56.399136463Z", + "timestamp": "2024-01-14T02:55:24.664169099Z", "matcher-status": true }, { @@ -57479,7 +57663,7 @@ "Let's Encrypt" ], "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:59:59.22142349Z", + "timestamp": "2024-01-14T02:55:27.572502714Z", "matcher-status": true }, { @@ -57509,7 +57693,7 @@ "camino.beta.gouv.fr" ], "ip": "91.134.91.128", - "timestamp": "2024-01-07T02:59:59.221552449Z", + "timestamp": "2024-01-14T02:55:27.572611607Z", "matcher-status": true }, { @@ -57540,7 +57724,7 @@ "tls12" ], "ip": "91.134.91.128", - "timestamp": "2024-01-07T03:00:01.842850919Z", + "timestamp": "2024-01-14T02:55:30.161184811Z", "matcher-status": true }, { @@ -57571,7 +57755,7 @@ "tls13" ], "ip": "91.134.91.128", - "timestamp": "2024-01-07T03:00:02.169094611Z", + "timestamp": "2024-01-14T02:55:30.622711696Z", "matcher-status": true } ], @@ -57579,7 +57763,7 @@ { "requestedUrl": "https://camino.beta.gouv.fr/", "finalUrl": "https://camino.beta.gouv.fr/", - "fetchTime": "2024-01-07T02:53:59.845Z", + "fetchTime": "2024-01-14T02:49:28.371Z", "runWarnings": [], "categories": { "performance": { @@ -57590,7 +57774,7 @@ "snapshot" ], "id": "performance", - "score": 0.9386659622192383 + "score": 0.938540267944336 }, "accessibility": { "title": "Accessibility", @@ -57642,53 +57826,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8296, + "numericValue": 8349, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4108, - "firstMeaningfulPaint": 4185, - "largestContentfulPaint": 5097, - "interactive": 8296, - "speedIndex": 7798, - "totalBlockingTime": 1015, - "maxPotentialFID": 1359, + "firstContentfulPaint": 4080, + "firstMeaningfulPaint": 4252, + "largestContentfulPaint": 7941, + "interactive": 8349, + "speedIndex": 7607, + "totalBlockingTime": 949, + "maxPotentialFID": 1336, "cumulativeLayoutShift": 0.6182582270304362, "cumulativeLayoutShiftMainFrame": 0.6182582270304362, "totalCumulativeLayoutShift": 0.6660446853637696, "observedTimeOrigin": 0, - "observedTimeOriginTs": 393632771, + "observedTimeOriginTs": 289896256, "observedNavigationStart": 0, - "observedNavigationStartTs": 393632771, - "observedFirstPaint": 816, - "observedFirstPaintTs": 394448427, - "observedFirstContentfulPaint": 2209, - "observedFirstContentfulPaintTs": 395841432, - "observedFirstContentfulPaintAllFrames": 2209, - "observedFirstContentfulPaintAllFramesTs": 395841432, - "observedFirstMeaningfulPaint": 2209, - "observedFirstMeaningfulPaintTs": 395841432, - "observedLargestContentfulPaint": 2432, - "observedLargestContentfulPaintTs": 396065084, - "observedLargestContentfulPaintAllFrames": 2432, - "observedLargestContentfulPaintAllFramesTs": 396065084, - "observedTraceEnd": 6263, - "observedTraceEndTs": 399895624, - "observedLoad": 3951, - "observedLoadTs": 397583535, - "observedDomContentLoaded": 1358, - "observedDomContentLoadedTs": 394990737, + "observedNavigationStartTs": 289896256, + "observedFirstPaint": 970, + "observedFirstPaintTs": 290865787, + "observedFirstContentfulPaint": 2206, + "observedFirstContentfulPaintTs": 292101809, + "observedFirstContentfulPaintAllFrames": 2206, + "observedFirstContentfulPaintAllFramesTs": 292101809, + "observedFirstMeaningfulPaint": 2206, + "observedFirstMeaningfulPaintTs": 292101809, + "observedLargestContentfulPaint": 3245, + "observedLargestContentfulPaintTs": 293141631, + "observedLargestContentfulPaintAllFrames": 3245, + "observedLargestContentfulPaintAllFramesTs": 293141631, + "observedTraceEnd": 5729, + "observedTraceEndTs": 295625698, + "observedLoad": 1532, + "observedLoadTs": 291428384, + "observedDomContentLoaded": 1353, + "observedDomContentLoadedTs": 291249464, "observedCumulativeLayoutShift": 0.6182582270304362, "observedCumulativeLayoutShiftMainFrame": 0.6182582270304362, "observedTotalCumulativeLayoutShift": 0.6660446853637696, - "observedFirstVisualChange": 2218, - "observedFirstVisualChangeTs": 395850771, - "observedLastVisualChange": 4034, - "observedLastVisualChangeTs": 397666771, - "observedSpeedIndex": 3084, - "observedSpeedIndexTs": 396716631 + "observedFirstVisualChange": 2208, + "observedFirstVisualChangeTs": 292104256, + "observedLastVisualChange": 3941, + "observedLastVisualChangeTs": 293837256, + "observedSpeedIndex": 2948, + "observedSpeedIndexTs": 292843786 }, { "lcpInvalidated": false @@ -57710,18 +57894,18 @@ "numScripts": 4, "numStylesheets": 2, "numFonts": 4, - "numTasks": 1105, + "numTasks": 1075, "numTasksOver10ms": 11, "numTasksOver25ms": 6, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 149.941, - "throughput": 9355713.204661991, - "maxRtt": 153.03799999999998, - "maxServerLatency": 150.59300000000005, - "totalByteWeight": 1370143, - "totalTaskTime": 869.3039999999975, + "rtt": 130.562, + "throughput": 8873303.526463257, + "maxRtt": 152.138, + "maxServerLatency": 12.120000000000005, + "totalByteWeight": 1370802, + "totalTaskTime": 814.6829999999976, "mainDocumentTransferSize": 1585 } ] @@ -57831,7 +58015,7 @@ "cookiesCount": 0, "trackersGrade": "F", "trackersCount": 12, - "lighthouse_performance": 0.9386659622192383, + "lighthouse_performance": 0.938540267944336, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -57857,7 +58041,7 @@ "http": { "url": "https://carbure.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:58:22 GMT", + "end_time": "Sun, 14 Jan 2024 01:56:00 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -57865,23 +58049,23 @@ "Cache-Control": "max-age=60, public", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "397", + "Content-Length": "398", "Content-Security-Policy": "default-src 'self' stats.beta.gouv.fr metabase.carbure.beta.gouv.fr", "Content-Type": "text/html; charset=\"utf-8\"", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 01:58:21 GMT", - "ETag": "\"6583f853-2bb\"", - "Last-Modified": "Thu, 21 Dec 2023 09:33:23 GMT", + "Date": "Sun, 14 Jan 2024 01:55:59 GMT", + "ETag": "\"659d1137-2bb\"", + "Last-Modified": "Tue, 09 Jan 2024 10:26:15 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "979107f4-a40c-4abd-8888-cc8f03a171ce" + "X-Request-ID": "6db3c69d-516e-43d7-aaf2-12fd3e342a5c" }, - "scan_id": 46226602, + "scan_id": 46435333, "score": 110, - "start_time": "Sun, 07 Jan 2024 01:58:18 GMT", + "start_time": "Sun, 14 Jan 2024 01:55:56 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -58070,10 +58254,10 @@ "url": "https://carbure.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 98.73, + "uptime": 99.19, "down": false, "down_since": null, - "up_since": "2023-12-31T12:10:04Z", + "up_since": "2024-01-10T13:53:29Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -58085,8 +58269,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T03:02:11Z", - "next_check_at": "2024-01-07T03:07:08Z", + "last_check_at": "2024-01-14T03:10:38Z", + "next_check_at": "2024-01-14T03:15:36Z", "created_at": "2021-04-22T19:50:37Z", "mute_until": null, "favicon_url": "https://carbure.beta.gouv.fr/favicon.ico", @@ -58094,8 +58278,8 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T02:42:18Z", - "expires_at": "2024-02-09T12:21:09Z", + "tested_at": "2024-01-14T03:05:41Z", + "expires_at": "2024-04-09T12:24:11Z", "valid": true, "error": null }, @@ -58103,14 +58287,14 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 135, - "connection": 109, - "handshake": 113, - "response": 114, - "total": 471 + "namelookup": 149, + "connection": 136, + "handshake": 140, + "response": 143, + "total": 567 } }, - "uptimeGrade": "B", + "uptimeGrade": "A", "apdexGrade": "A" }, "nmap": { @@ -58408,7 +58592,7 @@ "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "039767D0D54EDFF8C3239943CCDFC4600C2F" + "finding": "0461D339B90A7D305EEBB6FC88D2F226BC3A" }, { "id": "cert_serialNumberLen", @@ -58422,21 +58606,21 @@ "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "510D879FC553304CD7D61C4175707483880FB8F7" + "finding": "9EB6E97B39F04913B5F129734C7997ECD3F9D086" }, { "id": "cert_fingerprintSHA256", "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "F0BA52FDBABFF1C117310E36E0E1C22D420145283C21BEBE1444DBF8F1634D44" + "finding": "D9793AE3B81B873A0E95C9CBBDA5348C69ED0E4D3BD88239E4008CDA593E4696" }, { "id": "cert", "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIE9DCCA9ygAwIBAgISBGHTObkKfTBe67b8iNLyJrw6MA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yNDAxMTAxMjI0MTJaFw0yNDA0MDkxMjI0MTFaMB8xHTAbBgNVBAMTFGNhcmJ1cmUuYmV0YS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzoLf0BCbnN40lobThhbV4K5uTfKBHI1bJbS76jmnXMw7Rx3dfUul8bJwmyYI2ysewG91E49/vTL2zsHIgoi58Stsvy9r3DE8MQid9/ImJ90HirUa1SWtfYNI1aVTDDqX8enhIft6evxN0TIGq0QLtcUxDdqcmT00kskjAKQcFHUwC6VT9dW5wB7KJ4Q8UCAevQ8M9YTefuaRBmEMtTej2q0TH+IGViCnE0kH4RykR4104OXaC6wZr9Vi6Llzh/qyaw1TRutshMsAm9o4PD1pgD7UKH3nSCv2KJs9M9QDnUlAyb/IIfdRVPXrpanFKqVyVSICMfrmRVGYT3LIEWzsQIDAQABo4ICFTCCAhEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRHlhrVnwn9D33iyYKX6fdW0Q2SwTAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAfBgNVHREEGDAWghRjYXJidXJlLmJldGEuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjPOLd+EAAAQDAEYwRAIgJfASw/SIq4CREp22+9DRT3XRwdIWqDenILnbveCBlscCIGtfoEDB6ADalArjewui/8wwSJMczY9SPov/tqEJiX9eAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGM84t35AAABAMARzBFAiEA1icUX+Ybc9ymYcdJ9UeZMKTNwvlBWjuk6cB/Sc+NdG4CIFmgGA9xXkWWLQwXw0PD+BncUlWvTlUE1Ddr/11INYqlMA0GCSqGSIb3DQEBCwUAA4IBAQCR4k3NhX+P81O6b9FgwXADHxoZ6MJAbZ7Bxmvz/h2H3m5qv0ZnZhesShOLeSBFxBgmWYTFLwWIdoJaJM4G+rF7CpOI5NvT5iSMV9esrikzUxy7W7iWRqQ8ot+BKSCPfE9L9txfVQmYwE6IUS12HySmYH3p96cnEF3Lic99xQDUJmVTHwhKqEahP/8EzT3+SrJy6NvdTWCzKfFRD8ESFD/IzJzWERjxbk/9UTfhLZdLcTTTDIx4JTd7vhLIRQhk8jL60DtbAUTylJrx/lTj9BB4EX1irHj650JCnVMn76RnZ7+qY64S1zKEN5ygfC1tdDEqznuCaYLcqcj4rq0RpD/g\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -58485,21 +58669,21 @@ "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "33 >= 30 days" + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2023-11-11 12:21" + "finding": "2024-01-10 12:24" }, { "id": "cert_notAfter", "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2024-02-09 12:21" + "finding": "2024-04-09 12:24" }, { "id": "cert_extlifeSpan", @@ -58562,7 +58746,7 @@ "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", @@ -58620,6 +58804,48 @@ "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, + { + "id": "intermediate_cert <#2>", + "ip": "carbure.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "carbure.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "carbure.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "carbure.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "carbure.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "carbure.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, { "id": "intermediate_cert_badOCSP", "ip": "carbure.beta.gouv.fr/109.232.236.90", @@ -58646,7 +58872,7 @@ "ip": "carbure.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704596116" + "finding": "1705201456" }, { "id": "HSTS_time", @@ -58861,7 +59087,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F0BA52FDBABFF1C117310E36E0E1C22D420145283C21BEBE1444DBF8F1634D44" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D9793AE3B81B873A0E95C9CBBDA5348C69ED0E4D3BD88239E4008CDA593E4696" }, { "id": "LOGJAM", @@ -59439,7 +59665,7 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -59502,7 +59728,7 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "039767D0D54EDFF8C3239943CCDFC4600C2F" + "finding": "0461D339B90A7D305EEBB6FC88D2F226BC3A" }, { "id": "cert_serialNumberLen", @@ -59516,21 +59742,21 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "510D879FC553304CD7D61C4175707483880FB8F7" + "finding": "9EB6E97B39F04913B5F129734C7997ECD3F9D086" }, { "id": "cert_fingerprintSHA256", "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "F0BA52FDBABFF1C117310E36E0E1C22D420145283C21BEBE1444DBF8F1634D44" + "finding": "D9793AE3B81B873A0E95C9CBBDA5348C69ED0E4D3BD88239E4008CDA593E4696" }, { "id": "cert", "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -59579,21 +59805,21 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "33 >= 30 days" + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2023-11-11 12:21" + "finding": "2024-01-10 12:24" }, { "id": "cert_notAfter", "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2024-02-09 12:21" + "finding": "2024-04-09 12:24" }, { "id": "cert_extlifeSpan", @@ -59656,7 +59882,7 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", @@ -59714,6 +59940,48 @@ "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, + { + "id": "intermediate_cert <#2>", + "ip": "carbure.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "carbure.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "carbure.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "carbure.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "carbure.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "carbure.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, { "id": "intermediate_cert_badOCSP", "ip": "carbure.beta.gouv.fr/5.104.101.30", @@ -59740,7 +60008,7 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704596171" + "finding": "1705201553" }, { "id": "HSTS_time", @@ -59955,7 +60223,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=F0BA52FDBABFF1C117310E36E0E1C22D420145283C21BEBE1444DBF8F1634D44" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D9793AE3B81B873A0E95C9CBBDA5348C69ED0E4D3BD88239E4008CDA593E4696" }, { "id": "LOGJAM", @@ -60331,7 +60599,7 @@ "ip": "carbure.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "110" + "finding": "196" } ], "thirdparties": { @@ -60339,10 +60607,10 @@ "cookies": [ { "name": "csrftoken", - "value": "jBwKS29zupMmbLRv99ynAt5pabvItxB8", + "value": "SDinI4IKVCVPPEtidzQFpW5ey1y47iIn", "domain": "carbure.beta.gouv.fr", "path": "/", - "expires": 1736045656.214767, + "expires": 1736650963.209054, "size": 41, "httpOnly": false, "secure": true, @@ -60356,25 +60624,34 @@ "headers": { "cache-control": "max-age=60, public", "content-encoding": "gzip", - "content-length": "397", + "content-length": "398", "content-security-policy": "default-src 'self' stats.beta.gouv.fr metabase.carbure.beta.gouv.fr", "content-type": "text/html; charset=\"utf-8\"", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 02:54:15 GMT", - "etag": "\"6583f853-2bb\"", - "last-modified": "Thu, 21 Dec 2023 09:33:23 GMT", + "date": "Sun, 14 Jan 2024 03:02:41 GMT", + "etag": "\"659d1137-2bb\"", + "last-modified": "Tue, 09 Jan 2024 10:26:15 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "0554c1de-bfb9-4916-9ac4-fe6d60f7297d" + "x-request-id": "6954f765-2ca3-414b-9449-2c85f4cd95c9" }, "endpoints": [ { "hostname": "carbure.beta.gouv.fr", - "ip": "109.232.236.90", + "ip": "5.104.101.30", "geoip": { + "city": { + "geoname_id": 3034797, + "names": { + "de": "Bartenheim", + "en": "Bartenheim", + "fr": "Bartenheim", + "pt-BR": "Bartenheim" + } + }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -60406,10 +60683,13 @@ }, "location": { "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "latitude": 47.6376, + "longitude": 7.4798, "time_zone": "Europe/Paris" }, + "postal": { + "code": "68870" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -60424,7 +60704,28 @@ "ru": "Франция", "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 11071622, + "iso_code": "GES", + "names": { + "en": "Grand Est", + "fr": "Grand Est" + } + }, + { + "geoname_id": 3013663, + "iso_code": "68", + "names": { + "de": "Haut-Rhin", + "en": "Haut-Rhin", + "es": "Alto Rin", + "fr": "Haut-Rhin", + "pt-BR": "Alto Reno" + } + } + ] } } ] @@ -60571,7 +60872,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 02:53:33", + "@generated": "Sun, 14 Jan 2024 03:02:01", "site": [ { "@name": "https://carbure.beta.gouv.fr", @@ -60697,47 +60998,7 @@ "\"v=spf1 include:spf.sendinblue.com mx ~all\"", "\"Sendinblue-code:07db1fc27102305f5a6e93cc26fc4775\"" ], - "timestamp": "2024-01-07T02:57:34.356248074Z", - "matcher-status": true - }, - { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", - "info": { - "name": "DNS DMARC - Detect", - "author": [ - "juliosmelo" - ], - "tags": [ - "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "dns", - "host": "carbure.beta.gouv.fr.", - "matched-at": "_dmarc.carbure.beta.gouv.fr", - "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" - ], - "timestamp": "2024-01-07T02:57:34.361067548Z", + "timestamp": "2024-01-14T03:07:40.130754874Z", "matcher-status": true }, { @@ -60772,7 +61033,7 @@ "type": "dns", "host": "carbure.beta.gouv.fr.", "matched-at": "carbure.beta.gouv.fr", - "timestamp": "2024-01-07T02:57:34.512246945Z", + "timestamp": "2024-01-14T03:07:40.13586407Z", "matcher-status": true }, { @@ -60809,10 +61070,10 @@ "host": "carbure.beta.gouv.fr.", "matched-at": "carbure.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T02:57:34.663246865Z", + "timestamp": "2024-01-14T03:07:40.136929643Z", "matcher-status": true }, { @@ -60848,7 +61109,47 @@ "dns1.alwaysdata.com.", "dns2.alwaysdata.com." ], - "timestamp": "2024-01-07T02:57:35.511864775Z", + "timestamp": "2024-01-14T03:07:40.137062613Z", + "matcher-status": true + }, + { + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "info": { + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "carbure.beta.gouv.fr.", + "matched-at": "_dmarc.carbure.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + ], + "timestamp": "2024-01-14T03:07:40.25970796Z", "matcher-status": true }, { @@ -60876,8 +61177,8 @@ "extracted-results": [ "GET, HEAD" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T02:57:41.247078426Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:07:50.509394325Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -60903,8 +61204,8 @@ "type": "http", "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T02:58:08.087018172Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:08:31.55357406Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -60940,8 +61241,8 @@ "type": "http", "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T02:58:16.876148438Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:08:45.402633581Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -60977,8 +61278,8 @@ "type": "http", "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T02:58:16.876189886Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:08:45.402683634Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61014,8 +61315,8 @@ "type": "http", "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T02:58:16.876202459Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:08:45.402706016Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61051,8 +61352,8 @@ "type": "http", "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T02:58:16.876211687Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:08:45.402723669Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61088,8 +61389,8 @@ "type": "http", "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T02:58:16.876221145Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:08:45.40274034Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr'", "matcher-status": true }, @@ -61116,8 +61417,8 @@ "type": "http", "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr/robots.txt", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T02:58:26.244623052Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:09:00.456278884Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -61156,8 +61457,8 @@ "type": "http", "host": "https://carbure.beta.gouv.fr", "matched-at": "https://carbure.beta.gouv.fr/", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T02:58:38.984424177Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:09:20.598710387Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: carbure.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://carbure.beta.gouv.fr/'", "matcher-status": true }, @@ -61187,8 +61488,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T03:01:38.063370362Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:12:30.606099562Z", "matcher-status": true }, { @@ -61217,8 +61518,8 @@ "extracted-results": [ "carbure.beta.gouv.fr" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T03:01:38.063490086Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:12:30.606227651Z", "matcher-status": true }, { @@ -61248,8 +61549,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T03:01:39.628420306Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:12:32.782369957Z", "matcher-status": true }, { @@ -61279,8 +61580,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T03:01:39.821395455Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:12:33.195307853Z", "matcher-status": true } ], @@ -61288,7 +61589,7 @@ { "requestedUrl": "https://carbure.beta.gouv.fr/", "finalUrl": "https://carbure.beta.gouv.fr/", - "fetchTime": "2024-01-07T02:53:47.311Z", + "fetchTime": "2024-01-14T03:02:15.267Z", "runWarnings": [], "categories": { "performance": { @@ -61351,53 +61652,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1518, + "numericValue": 1510, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 768, - "firstMeaningfulPaint": 1518, - "largestContentfulPaint": 2718, - "interactive": 1518, - "speedIndex": 1256, + "firstContentfulPaint": 760, + "firstMeaningfulPaint": 1510, + "largestContentfulPaint": 3460, + "interactive": 1510, + "speedIndex": 1908, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.10860371843973796, "cumulativeLayoutShiftMainFrame": 0.10860371843973796, "totalCumulativeLayoutShift": 0.10860371843973796, "observedTimeOrigin": 0, - "observedTimeOriginTs": 340201474, + "observedTimeOriginTs": 476742355, "observedNavigationStart": 0, - "observedNavigationStartTs": 340201474, - "observedFirstPaint": 355, - "observedFirstPaintTs": 340556467, - "observedFirstContentfulPaint": 411, - "observedFirstContentfulPaintTs": 340612419, - "observedFirstContentfulPaintAllFrames": 411, - "observedFirstContentfulPaintAllFramesTs": 340612419, - "observedFirstMeaningfulPaint": 712, - "observedFirstMeaningfulPaintTs": 340913904, - "observedLargestContentfulPaint": 632, - "observedLargestContentfulPaintTs": 340833842, - "observedLargestContentfulPaintAllFrames": 632, - "observedLargestContentfulPaintAllFramesTs": 340833842, - "observedTraceEnd": 3099, - "observedTraceEndTs": 343300030, - "observedLoad": 791, - "observedLoadTs": 340992458, + "observedNavigationStartTs": 476742355, + "observedFirstPaint": 155, + "observedFirstPaintTs": 476897700, + "observedFirstContentfulPaint": 751, + "observedFirstContentfulPaintTs": 477493501, + "observedFirstContentfulPaintAllFrames": 751, + "observedFirstContentfulPaintAllFramesTs": 477493501, + "observedFirstMeaningfulPaint": 1196, + "observedFirstMeaningfulPaintTs": 477938121, + "observedLargestContentfulPaint": 1080, + "observedLargestContentfulPaintTs": 477822725, + "observedLargestContentfulPaintAllFrames": 1080, + "observedLargestContentfulPaintAllFramesTs": 477822725, + "observedTraceEnd": 3540, + "observedTraceEndTs": 480282626, + "observedLoad": 1184, + "observedLoadTs": 477926828, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 340202169, + "observedDomContentLoadedTs": 476742883, "observedCumulativeLayoutShift": 0.10860371843973796, "observedCumulativeLayoutShiftMainFrame": 0.10860371843973796, "observedTotalCumulativeLayoutShift": 0.10860371843973796, - "observedFirstVisualChange": 584, - "observedFirstVisualChangeTs": 340785474, - "observedLastVisualChange": 784, - "observedLastVisualChangeTs": 340985474, - "observedSpeedIndex": 719, - "observedSpeedIndexTs": 340920696 + "observedFirstVisualChange": 988, + "observedFirstVisualChangeTs": 477730355, + "observedLastVisualChange": 1271, + "observedLastVisualChangeTs": 478013355, + "observedSpeedIndex": 1189, + "observedSpeedIndexTs": 477931215 }, { "lcpInvalidated": false @@ -61419,18 +61720,18 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 3, - "numTasks": 14, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.813, - "throughput": 14837585.168749114, - "maxRtt": 84.99300000000001, - "maxServerLatency": 17.513000000000005, - "totalByteWeight": 796727, - "totalTaskTime": 2.7810000000000006, + "rtt": 136.524, + "throughput": 10121627.434828289, + "maxRtt": 146.944, + "maxServerLatency": 10.009000000000015, + "totalByteWeight": 797834, + "totalTaskTime": 1.366, "mainDocumentTransferSize": 821 } ] @@ -61456,7 +61757,8 @@ "uri": "" }, "declaration-a11y": { - "mention": "Accessibilité : non conforme" + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://carbure.beta.gouv.fr/accessibility" }, "declaration-rgpd": [ { @@ -61521,13 +61823,13 @@ "httpGrade": "A+", "apdex": 1, "apdexGrade": "A", - "uptime": 98.73, - "uptimeGrade": "B", + "uptime": 99.19, + "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-02-09T12:21:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-04-09T12:24:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 1, @@ -61546,7 +61848,7 @@ "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "D", + "declaration-a11y": "C", "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "D" } @@ -61566,30 +61868,30 @@ "http": { "url": "https://cartobio.agencebio.org", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 03:01:30 GMT", + "end_time": "Sun, 14 Jan 2024 03:09:31 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "8418f4d42d0767f4-SJC", + "CF-RAY": "8452ae334a6822f6-SJC", "Cache-Control": "no-cache", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 03:01:28 GMT", + "Date": "Sun, 14 Jan 2024 03:09:29 GMT", "NEL": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", - "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=5U%2B1WssCpU8l2VHjvA8nR9Ev9anAYZQvUrCRILxj3nf5vUlrf1z%2ByyZk%2BpRh3DzrACL%2F5l%2BGX0%2BRZ7mkf9Q26%2FgLAeY%2B%2FEFcSJLQ55h2Hfyzf4vAkhnCg9wnsENPWtgpsZeArhCmA1Yfgw0IWp8AZ9mWb7Uy\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=K8yF3la1bdDql9QxVDMEthVLo6AG1b4D9J%2F6nZ2qC%2Fj3Yc5ucZHjHfOHgHyXgKb60GNLio5Djd7klkM2t%2FlXF%2BVOpu6fOYPEG9QJfTj%2BiLddiHu23Q9UFbNDqxNBMl1v4lMJ5VXhF%2BNst3BvxqUJlwj7arbg\"}],\"group\":\"cf-nel\",\"max_age\":604800}", "Server": "cloudflare", "Transfer-Encoding": "chunked", "alt-svc": "h3=\":443\"; ma=86400", "expires": "Thu, 01 Jan 1970 00:00:01 GMT", - "last-modified": "Fri, 29 Dec 2023 11:00:05 GMT", + "last-modified": "Tue, 09 Jan 2024 15:49:27 GMT", "vary": "Accept-Encoding" }, - "scan_id": 46227606, + "scan_id": 46436448, "score": 20, - "start_time": "Sun, 07 Jan 2024 03:01:26 GMT", + "start_time": "Sun, 14 Jan 2024 03:09:27 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -62034,7 +62336,7 @@ "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -62097,7 +62399,7 @@ "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "C2C00C023B7719650D11E6DE2D073976" + "finding": "1BD28369CE43AD980E650107383EFDDA" }, { "id": "cert_serialNumberLen", @@ -62111,21 +62413,21 @@ "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "5ABDD1EB2DA2A3D93063D13E18DFEE68B137D38E" + "finding": "0FDA5EBA7978C256714E3A330E5DA214095B629D" }, { "id": "cert_fingerprintSHA256", "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "A0ADF3DFE8E10171B86E761EA00DA3E5EC794BA65A8D4E6CD22E0CBD0E12A50B" + "finding": "9C68E3826E17AE9AEB6959894DC3890C294606134881D1AA1EC3EF4EE947D335" }, { "id": "cert", "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -62180,22 +62482,22 @@ "id": "cert_expirationStatus", "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (34)" + "severity": "OK", + "finding": "86 >= 60 days" }, { "id": "cert_notBefore", "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "2023-11-12 05:17" + "finding": "2024-01-10 09:08" }, { "id": "cert_notAfter", "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-10 05:17" + "severity": "OK", + "finding": "2024-04-09 09:08" }, { "id": "cert_extlifeSpan", @@ -62216,14 +62518,14 @@ "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "http://crls.pki.goog/gts1p5/II4xTF4ajug.crl" + "finding": "http://crls.pki.goog/gts1p5/utJpWfRYius.crl" }, { "id": "cert_ocspURL", "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "http://ocsp.pki.goog/s/gts1p5/bKhfCMmveNY" + "finding": "http://ocsp.pki.goog/s/gts1p5/tVk2adR5HDw" }, { "id": "OCSP_stapling", @@ -62391,7 +62693,7 @@ "ip": "cartobio.agencebio.org/104.21.16.54", "port": "443", "severity": "INFO", - "finding": "1704596576" + "finding": "1705201858" }, { "id": "HSTS", @@ -62564,7 +62866,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A0ADF3DFE8E10171B86E761EA00DA3E5EC794BA65A8D4E6CD22E0CBD0E12A50B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9C68E3826E17AE9AEB6959894DC3890C294606134881D1AA1EC3EF4EE947D335" }, { "id": "LOGJAM", @@ -63263,7 +63565,7 @@ "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "C2C00C023B7719650D11E6DE2D073976" + "finding": "1BD28369CE43AD980E650107383EFDDA" }, { "id": "cert_serialNumberLen", @@ -63277,21 +63579,21 @@ "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "5ABDD1EB2DA2A3D93063D13E18DFEE68B137D38E" + "finding": "0FDA5EBA7978C256714E3A330E5DA214095B629D" }, { "id": "cert_fingerprintSHA256", "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "A0ADF3DFE8E10171B86E761EA00DA3E5EC794BA65A8D4E6CD22E0CBD0E12A50B" + "finding": "9C68E3826E17AE9AEB6959894DC3890C294606134881D1AA1EC3EF4EE947D335" }, { "id": "cert", "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -63346,22 +63648,22 @@ "id": "cert_expirationStatus", "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (34)" + "severity": "OK", + "finding": "86 >= 60 days" }, { "id": "cert_notBefore", "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "2023-11-12 05:17" + "finding": "2024-01-10 09:08" }, { "id": "cert_notAfter", "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-10 05:17" + "severity": "OK", + "finding": "2024-04-09 09:08" }, { "id": "cert_extlifeSpan", @@ -63382,14 +63684,14 @@ "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "http://crls.pki.goog/gts1p5/II4xTF4ajug.crl" + "finding": "http://crls.pki.goog/gts1p5/utJpWfRYius.crl" }, { "id": "cert_ocspURL", "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "http://ocsp.pki.goog/s/gts1p5/bKhfCMmveNY" + "finding": "http://ocsp.pki.goog/s/gts1p5/tVk2adR5HDw" }, { "id": "OCSP_stapling", @@ -63557,7 +63859,7 @@ "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "1704596638" + "finding": "1705201921" }, { "id": "HSTS", @@ -63730,7 +64032,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A0ADF3DFE8E10171B86E761EA00DA3E5EC794BA65A8D4E6CD22E0CBD0E12A50B" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9C68E3826E17AE9AEB6959894DC3890C294606134881D1AA1EC3EF4EE947D335" }, { "id": "LOGJAM", @@ -64136,7 +64438,7 @@ "ip": "cartobio.agencebio.org/172.67.210.31", "port": "443", "severity": "INFO", - "finding": "124" + "finding": "127" } ], "thirdparties": { @@ -64152,7 +64454,7 @@ "value": "1", "domain": "cartobio.agencebio.org", "path": "/", - "expires": 1704598322, + "expires": 1705203603, "size": 16, "httpOnly": false, "secure": false, @@ -64164,10 +64466,10 @@ }, { "name": "_pk_id.58.3e0d", - "value": "a53747c68cb1d8ab.1704596522.", + "value": "5aa57b986f1470d1.1705201803.", "domain": "cartobio.agencebio.org", "path": "/", - "expires": 1738551722, + "expires": 1739157003, "size": 42, "httpOnly": false, "secure": false, @@ -64182,27 +64484,61 @@ "alt-svc": "h3=\":443\"; ma=86400", "cache-control": "no-cache", "cf-cache-status": "DYNAMIC", - "cf-ray": "8418f5a2c97352d7-LAX", + "cf-ray": "8452af01b8e42eea-LAX", "content-encoding": "br", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 03:02:01 GMT", + "date": "Sun, 14 Jan 2024 03:10:02 GMT", "expires": "Thu, 01 Jan 1970 00:00:01 GMT", - "last-modified": "Fri, 29 Dec 2023 11:00:05 GMT", + "last-modified": "Tue, 09 Jan 2024 15:49:27 GMT", "nel": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", - "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=7Y9wNhxmp7v0GWgMVauGqeOajiHMB%2BUOKfCfyqb3VqwS8Ygou89ayTppe1btNpMlw%2BeQc4LjJfolwEh5OSiROG%2B5XcM%2BI%2FPB%2BHtAjst8%2FgWQELpzwI%2F4XQTOZQpoxlWDythbdhkcnfdm\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=cHjJZdpNBvzmFfdzYEFo3iktIYX4UAxeVixTmeC0QjAuNVdtdSNYi5iulqAGot55vaPmqyxDuUdBwoFNOHfTJnwY1uXHHuWW9UU5m8NjhSUEn7%2FwYaqPD4gM8yI5PtEf5%2F7u4jM9NHl3\"}],\"group\":\"cf-nel\",\"max_age\":604800}", "server": "cloudflare", "vary": "Accept-Encoding" }, "endpoints": [ { "hostname": "cartobio.agencebio.org", - "ip": "104.21.16.54", + "ip": "172.67.210.31", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -64270,7 +64606,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -64461,7 +64797,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 03:01:01", + "@generated": "Sun, 14 Jan 2024 03:08:59", "site": [ { "@name": "https://cartobio.agencebio.org", @@ -64674,7 +65010,7 @@ "type": "dns", "host": "cartobio.agencebio.org.", "matched-at": "cartobio.agencebio.org", - "timestamp": "2024-01-07T03:05:38.30008171Z", + "timestamp": "2024-01-14T03:13:40.181899969Z", "matcher-status": true }, { @@ -64700,44 +65036,7 @@ "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:04.87630509Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://cartobio.agencebio.org", - "matched-at": "https://cartobio.agencebio.org", - "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379327765Z", + "timestamp": "2024-01-14T03:14:08.420579456Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -64774,155 +65073,7 @@ "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379378239Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://cartobio.agencebio.org", - "matched-at": "https://cartobio.agencebio.org", - "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379392766Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://cartobio.agencebio.org", - "matched-at": "https://cartobio.agencebio.org", - "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379407404Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://cartobio.agencebio.org", - "matched-at": "https://cartobio.agencebio.org", - "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.37942136Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://cartobio.agencebio.org", - "matched-at": "https://cartobio.agencebio.org", - "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379433803Z", + "timestamp": "2024-01-14T03:14:14.60097424Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -64959,81 +65110,7 @@ "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379449672Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://cartobio.agencebio.org", - "matched-at": "https://cartobio.agencebio.org", - "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379465903Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://cartobio.agencebio.org", - "matched-at": "https://cartobio.agencebio.org", - "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379480831Z", + "timestamp": "2024-01-14T03:14:14.601015387Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65065,12 +65142,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379495588Z", + "timestamp": "2024-01-14T03:14:14.601026988Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65107,7 +65184,266 @@ "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org", "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:11.379509755Z", + "timestamp": "2024-01-14T03:14:14.601039732Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://cartobio.agencebio.org", + "matched-at": "https://cartobio.agencebio.org", + "ip": "104.21.16.54", + "timestamp": "2024-01-14T03:14:14.601055852Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://cartobio.agencebio.org", + "matched-at": "https://cartobio.agencebio.org", + "ip": "104.21.16.54", + "timestamp": "2024-01-14T03:14:14.601069077Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://cartobio.agencebio.org", + "matched-at": "https://cartobio.agencebio.org", + "ip": "104.21.16.54", + "timestamp": "2024-01-14T03:14:14.601084996Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://cartobio.agencebio.org", + "matched-at": "https://cartobio.agencebio.org", + "ip": "104.21.16.54", + "timestamp": "2024-01-14T03:14:14.601101868Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://cartobio.agencebio.org", + "matched-at": "https://cartobio.agencebio.org", + "ip": "104.21.16.54", + "timestamp": "2024-01-14T03:14:14.601116715Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://cartobio.agencebio.org", + "matched-at": "https://cartobio.agencebio.org", + "ip": "104.21.16.54", + "timestamp": "2024-01-14T03:14:14.601132064Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://cartobio.agencebio.org", + "matched-at": "https://cartobio.agencebio.org", + "ip": "104.21.16.54", + "timestamp": "2024-01-14T03:14:14.601146681Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org'", "matcher-status": true }, @@ -65146,7 +65482,7 @@ "path": "images/" }, "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:25.585415634Z", + "timestamp": "2024-01-14T03:14:28.897911499Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org/favicon.ico'", "matcher-status": true }, @@ -65186,7 +65522,7 @@ "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org/", "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:27.709379656Z", + "timestamp": "2024-01-14T03:14:30.988115622Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: cartobio.agencebio.org' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org/'", "matcher-status": true }, @@ -65226,44 +65562,44 @@ "host": "https://cartobio.agencebio.org", "matched-at": "https://cartobio.agencebio.org/", "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:06:27.709448356Z", + "timestamp": "2024-01-14T03:14:30.988177367Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: cartobio.agencebio.org' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cartobio.agencebio.org/'", "matcher-status": true }, { - "template": "ssl/deprecated-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/deprecated-tls", - "template-id": "deprecated-tls", - "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "name": "Weak Cipher Suites Detection", "author": [ - "righettod", - "forgedhallpass" + "pussycat0x" ], "tags": [ "ssl", - "tls" + "tls", + "misconfig" ], - "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", "reference": [ - "https://ssl-config.mozilla.org/#config=intermediate" + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" ], - "severity": "info", + "severity": "low", "metadata": { - "max-request": 3, - "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" - }, - "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + "max-request": 4 + } }, + "matcher-name": "tls-1.0", "type": "ssl", "host": "cartobio.agencebio.org", "matched-at": "cartobio.agencebio.org:443", "extracted-results": [ - "tls10" + "[tls10 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:21.957445208Z", + "timestamp": "2024-01-14T03:17:25.485225262Z", "matcher-status": true }, { @@ -65293,7 +65629,7 @@ "Google Trust Services LLC" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.075290167Z", + "timestamp": "2024-01-14T03:17:25.485511636Z", "matcher-status": true }, { @@ -65324,7 +65660,7 @@ "*.agencebio.org" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.075430559Z", + "timestamp": "2024-01-14T03:17:25.485731304Z", "matcher-status": true }, { @@ -65355,11 +65691,11 @@ "host": "cartobio.agencebio.org", "matched-at": "cartobio.agencebio.org:443", "extracted-results": [ - " SAN: [agencebio.org *.agencebio.org]", - "CN: agencebio.org" + "CN: agencebio.org", + " SAN: [agencebio.org *.agencebio.org]" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.075473289Z", + "timestamp": "2024-01-14T03:17:25.485769185Z", "matcher-status": true }, { @@ -65390,7 +65726,43 @@ "tls10" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.075821235Z", + "timestamp": "2024-01-14T03:17:25.485902462Z", + "matcher-status": true + }, + { + "template": "ssl/deprecated-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/deprecated-tls", + "template-id": "deprecated-tls", + "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "info": { + "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "author": [ + "righettod", + "forgedhallpass" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "reference": [ + "https://ssl-config.mozilla.org/#config=intermediate" + ], + "severity": "info", + "metadata": { + "max-request": 3, + "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" + }, + "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + }, + "type": "ssl", + "host": "cartobio.agencebio.org", + "matched-at": "cartobio.agencebio.org:443", + "extracted-results": [ + "tls10" + ], + "ip": "104.21.16.54", + "timestamp": "2024-01-14T03:17:25.485469346Z", "matcher-status": true }, { @@ -65418,15 +65790,15 @@ "max-request": 4 } }, - "matcher-name": "tls-1.0", + "matcher-name": "tls-1.1", "type": "ssl", "host": "cartobio.agencebio.org", "matched-at": "cartobio.agencebio.org:443", "extracted-results": [ - "[tls10 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" + "[tls11 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.076221852Z", + "timestamp": "2024-01-14T03:17:25.546772181Z", "matcher-status": true }, { @@ -65462,7 +65834,7 @@ "tls11" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.107022337Z", + "timestamp": "2024-01-14T03:17:25.547453393Z", "matcher-status": true }, { @@ -65493,43 +65865,7 @@ "tls11" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.121439644Z", - "matcher-status": true - }, - { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", - "info": { - "name": "Weak Cipher Suites Detection", - "author": [ - "pussycat0x" - ], - "tags": [ - "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" - ], - "severity": "low", - "metadata": { - "max-request": 4 - } - }, - "matcher-name": "tls-1.1", - "type": "ssl", - "host": "cartobio.agencebio.org", - "matched-at": "cartobio.agencebio.org:443", - "extracted-results": [ - "[tls11 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" - ], - "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.123499691Z", + "timestamp": "2024-01-14T03:17:25.547829176Z", "matcher-status": true }, { @@ -65560,7 +65896,7 @@ "tls12" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.167068478Z", + "timestamp": "2024-01-14T03:17:25.61070683Z", "matcher-status": true }, { @@ -65591,7 +65927,7 @@ "tls13" ], "ip": "104.21.16.54", - "timestamp": "2024-01-07T03:09:22.205088248Z", + "timestamp": "2024-01-14T03:17:25.662600386Z", "matcher-status": true } ], @@ -65599,7 +65935,7 @@ { "requestedUrl": "https://cartobio.agencebio.org/", "finalUrl": "https://cartobio.agencebio.org/", - "fetchTime": "2024-01-07T03:01:15.926Z", + "fetchTime": "2024-01-14T03:09:14.240Z", "runWarnings": [], "categories": { "performance": { @@ -65662,53 +65998,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3270, + "numericValue": 3685, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2727, - "firstMeaningfulPaint": 2849, - "largestContentfulPaint": 3345, - "interactive": 3270, - "speedIndex": 3443, - "totalBlockingTime": 97, - "maxPotentialFID": 243, - "cumulativeLayoutShift": 0.054114013671875, - "cumulativeLayoutShiftMainFrame": 0.054114013671875, - "totalCumulativeLayoutShift": 0.054114013671875, + "firstContentfulPaint": 3134, + "firstMeaningfulPaint": 3259, + "largestContentfulPaint": 3484, + "interactive": 3685, + "speedIndex": 4629, + "totalBlockingTime": 101, + "maxPotentialFID": 251, + "cumulativeLayoutShift": 0.06962037489149306, + "cumulativeLayoutShiftMainFrame": 0.06962037489149306, + "totalCumulativeLayoutShift": 0.06962037489149306, "observedTimeOrigin": 0, - "observedTimeOriginTs": 319850680, + "observedTimeOriginTs": 249889039, "observedNavigationStart": 0, - "observedNavigationStartTs": 319850680, - "observedFirstPaint": 1085, - "observedFirstPaintTs": 320935772, - "observedFirstContentfulPaint": 1085, - "observedFirstContentfulPaintTs": 320935772, - "observedFirstContentfulPaintAllFrames": 1085, - "observedFirstContentfulPaintAllFramesTs": 320935772, - "observedFirstMeaningfulPaint": 1085, - "observedFirstMeaningfulPaintTs": 320935772, - "observedLargestContentfulPaint": 1085, - "observedLargestContentfulPaintTs": 320935772, - "observedLargestContentfulPaintAllFrames": 1085, - "observedLargestContentfulPaintAllFramesTs": 320935772, - "observedTraceEnd": 3781, - "observedTraceEndTs": 323632140, - "observedLoad": 1147, - "observedLoadTs": 320997426, - "observedDomContentLoaded": 1072, - "observedDomContentLoadedTs": 320923059, - "observedCumulativeLayoutShift": 0.054114013671875, - "observedCumulativeLayoutShiftMainFrame": 0.054114013671875, - "observedTotalCumulativeLayoutShift": 0.054114013671875, - "observedFirstVisualChange": 1086, - "observedFirstVisualChangeTs": 320936680, - "observedLastVisualChange": 1153, - "observedLastVisualChangeTs": 321003680, - "observedSpeedIndex": 1092, - "observedSpeedIndexTs": 320942828 + "observedNavigationStartTs": 249889039, + "observedFirstPaint": 1681, + "observedFirstPaintTs": 251570291, + "observedFirstContentfulPaint": 1681, + "observedFirstContentfulPaintTs": 251570291, + "observedFirstContentfulPaintAllFrames": 1681, + "observedFirstContentfulPaintAllFramesTs": 251570291, + "observedFirstMeaningfulPaint": 1681, + "observedFirstMeaningfulPaintTs": 251570291, + "observedLargestContentfulPaint": 1681, + "observedLargestContentfulPaintTs": 251570291, + "observedLargestContentfulPaintAllFrames": 1681, + "observedLargestContentfulPaintAllFramesTs": 251570291, + "observedTraceEnd": 6230, + "observedTraceEndTs": 256119162, + "observedLoad": 3922, + "observedLoadTs": 253811527, + "observedDomContentLoaded": 1670, + "observedDomContentLoadedTs": 251558909, + "observedCumulativeLayoutShift": 0.06962037489149306, + "observedCumulativeLayoutShiftMainFrame": 0.06962037489149306, + "observedTotalCumulativeLayoutShift": 0.06962037489149306, + "observedFirstVisualChange": 1684, + "observedFirstVisualChangeTs": 251573039, + "observedLastVisualChange": 2400, + "observedLastVisualChangeTs": 252289039, + "observedSpeedIndex": 1748, + "observedSpeedIndexTs": 251636767 }, { "lcpInvalidated": false @@ -65730,19 +66066,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 755, + "numTasks": 868, "numTasksOver10ms": 3, - "numTasksOver25ms": 2, + "numTasksOver25ms": 1, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 9.061000000000002, - "throughput": 20320234.799317107, - "maxRtt": 144.778, - "maxServerLatency": 27.17, - "totalByteWeight": 839467, - "totalTaskTime": 265.61699999999826, - "mainDocumentTransferSize": 932 + "rtt": 8.811, + "throughput": 31959967.27363958, + "maxRtt": 146.679, + "maxServerLatency": 433.52000000000004, + "totalByteWeight": 839860, + "totalTaskTime": 270.98099999999727, + "mainDocumentTransferSize": 941 } ] } @@ -65841,8 +66177,8 @@ "nmapGrade": "B", "nmapOpenPortsCount": 4, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-02-10T05:17:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-04-09T09:08:00.000Z", "testsslGrade": "B", "cookiesGrade": "B", "cookiesCount": 2, @@ -65877,7 +66213,7 @@ "http": { "url": "https://catalogue.apprentissage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 03:12:36 GMT", + "end_time": "Sun, 14 Jan 2024 03:09:45 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -65885,7 +66221,7 @@ "Cache-Control": "max-age=0", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 03:12:33 GMT", + "Date": "Sun, 14 Jan 2024 03:09:44 GMT", "ETag": "W/\"2a4-18c86cb4f68\"", "Last-Modified": "Wed, 20 Dec 2023 10:35:20 GMT", "Server": "nginx", @@ -65893,9 +66229,9 @@ "Transfer-Encoding": "chunked", "Vary": "Origin" }, - "scan_id": 46227740, + "scan_id": 46436449, "score": 35, - "start_time": "Sun, 07 Jan 2024 03:12:32 GMT", + "start_time": "Sun, 14 Jan 2024 03:09:38 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -66087,8 +66423,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T03:24:35Z", - "next_check_at": "2024-01-07T03:29:33Z", + "last_check_at": "2024-01-14T03:19:31Z", + "next_check_at": "2024-01-14T03:24:29Z", "created_at": "2021-04-22T19:50:49Z", "mute_until": null, "favicon_url": "https://catalogue-apprentissage.intercariforef.org/favicon.ico", @@ -66096,7 +66432,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T03:04:41Z", + "tested_at": "2024-01-14T02:34:48Z", "expires_at": "2024-02-03T07:38:02Z", "valid": true, "error": null @@ -66104,12 +66440,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 298, - "namelookup": 14, - "connection": 47, - "handshake": 53, - "response": 62, - "total": 474 + "redirect": 240, + "namelookup": 5, + "connection": 39, + "handshake": 43, + "response": 44, + "total": 370 } }, "uptimeGrade": "A", @@ -66489,7 +66825,7 @@ "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "MEDIUM", - "finding": "expires < 30 days (27)" + "finding": "expires < 30 days (20)" }, { "id": "cert_notBefore", @@ -66692,7 +67028,7 @@ "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "1704597231" + "finding": "1705201856" }, { "id": "HSTS", @@ -67248,7 +67584,7 @@ "ip": "catalogue.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "55" + "finding": "54" } ], "thirdparties": { @@ -67335,7 +67671,7 @@ "cache-control": "max-age=0", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 03:13:05 GMT", + "date": "Sun, 14 Jan 2024 03:10:14 GMT", "etag": "W/\"2a4-18c86cb4f68\"", "last-modified": "Wed, 20 Dec 2023 10:35:20 GMT", "server": "nginx", @@ -67488,7 +67824,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 03:12:06", + "@generated": "Sun, 14 Jan 2024 03:09:14", "site": [ { "@name": "https://catalogue.apprentissage.beta.gouv.fr", @@ -67603,7 +67939,7 @@ { "requestedUrl": "https://catalogue.apprentissage.beta.gouv.fr/", "finalUrl": "https://catalogue-apprentissage.intercariforef.org/", - "fetchTime": "2024-01-07T03:12:20.698Z", + "fetchTime": "2024-01-14T03:09:27.545Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://catalogue.apprentissage.beta.gouv.fr/) was redirected to https://catalogue-apprentissage.intercariforef.org/. Try testing the second URL directly." ], @@ -67668,53 +68004,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3861, + "numericValue": 4601, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2578, - "firstMeaningfulPaint": 2578, - "largestContentfulPaint": 5210, - "interactive": 3861, - "speedIndex": 4459, - "totalBlockingTime": 199, - "maxPotentialFID": 143, - "cumulativeLayoutShift": 0.1872912610371908, - "cumulativeLayoutShiftMainFrame": 0.1872912610371908, - "totalCumulativeLayoutShift": 0.1872912610371908, + "firstContentfulPaint": 2624, + "firstMeaningfulPaint": 2624, + "largestContentfulPaint": 5753, + "interactive": 4601, + "speedIndex": 4613, + "totalBlockingTime": 794, + "maxPotentialFID": 606, + "cumulativeLayoutShift": 0.3690168469746908, + "cumulativeLayoutShiftMainFrame": 0.3690168469746908, + "totalCumulativeLayoutShift": 0.3690168469746908, "observedTimeOrigin": 0, - "observedTimeOriginTs": 281672498, + "observedTimeOriginTs": 191591369, "observedNavigationStart": 0, - "observedNavigationStartTs": 281672498, - "observedFirstPaint": 1718, - "observedFirstPaintTs": 283390989, - "observedFirstContentfulPaint": 1718, - "observedFirstContentfulPaintTs": 283390989, - "observedFirstContentfulPaintAllFrames": 1718, - "observedFirstContentfulPaintAllFramesTs": 283390989, - "observedFirstMeaningfulPaint": 1718, - "observedFirstMeaningfulPaintTs": 283390989, - "observedLargestContentfulPaint": 1718, - "observedLargestContentfulPaintTs": 283390989, - "observedLargestContentfulPaintAllFrames": 1718, - "observedLargestContentfulPaintAllFramesTs": 283390989, - "observedTraceEnd": 4262, - "observedTraceEndTs": 285934544, - "observedLoad": 1340, - "observedLoadTs": 283012647, - "observedDomContentLoaded": 1338, - "observedDomContentLoadedTs": 283010014, - "observedCumulativeLayoutShift": 0.1872912610371908, - "observedCumulativeLayoutShiftMainFrame": 0.1872912610371908, - "observedTotalCumulativeLayoutShift": 0.1872912610371908, - "observedFirstVisualChange": 1716, - "observedFirstVisualChangeTs": 283388498, - "observedLastVisualChange": 1999, - "observedLastVisualChangeTs": 283671498, - "observedSpeedIndex": 1736, - "observedSpeedIndexTs": 283408997 + "observedNavigationStartTs": 191591369, + "observedFirstPaint": 1798, + "observedFirstPaintTs": 193389093, + "observedFirstContentfulPaint": 1798, + "observedFirstContentfulPaintTs": 193389093, + "observedFirstContentfulPaintAllFrames": 1798, + "observedFirstContentfulPaintAllFramesTs": 193389093, + "observedFirstMeaningfulPaint": 1798, + "observedFirstMeaningfulPaintTs": 193389093, + "observedLargestContentfulPaint": 1798, + "observedLargestContentfulPaintTs": 193389093, + "observedLargestContentfulPaintAllFrames": 1798, + "observedLargestContentfulPaintAllFramesTs": 193389093, + "observedTraceEnd": 4303, + "observedTraceEndTs": 195893917, + "observedLoad": 1312, + "observedLoadTs": 192903722, + "observedDomContentLoaded": 1305, + "observedDomContentLoadedTs": 192896221, + "observedCumulativeLayoutShift": 0.3690168469746908, + "observedCumulativeLayoutShiftMainFrame": 0.3690168469746908, + "observedTotalCumulativeLayoutShift": 0.3690168469746908, + "observedFirstVisualChange": 1800, + "observedFirstVisualChangeTs": 193391369, + "observedLastVisualChange": 1884, + "observedLastVisualChangeTs": 193475369, + "observedSpeedIndex": 1810, + "observedSpeedIndexTs": 193401597 }, { "lcpInvalidated": false @@ -67736,18 +68072,18 @@ "numScripts": 7, "numStylesheets": 2, "numFonts": 2, - "numTasks": 268, - "numTasksOver10ms": 5, - "numTasksOver25ms": 3, - "numTasksOver50ms": 0, - "numTasksOver100ms": 0, + "numTasks": 257, + "numTasksOver10ms": 7, + "numTasksOver25ms": 4, + "numTasksOver50ms": 2, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 83.995, - "throughput": 10176088.036084073, - "maxRtt": 88.77900000000001, - "maxServerLatency": 123.39499999999998, - "totalByteWeight": 801854, - "totalTaskTime": 179.83099999999996, + "rtt": 81.353, + "throughput": 10753264.171567243, + "maxRtt": 86.431, + "maxServerLatency": 122.12500000000001, + "totalByteWeight": 801880, + "totalTaskTime": 403.35999999999984, "mainDocumentTransferSize": 660 } ] @@ -67871,28 +68207,28 @@ "http": { "url": "https://connect.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 03:20:04 GMT", + "end_time": "Sun, 14 Jan 2024 03:23:26 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "2354", - "Content-Security-Policy": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-hzPwT5kdmAMZeXuUEg+6Ug=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'", + "Content-Length": "2305", + "Content-Security-Policy": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-SdF6VpneQ49YBG185pZdiA=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 03:20:02 GMT", + "Date": "Sun, 14 Jan 2024 03:23:24 GMT", "Referrer-Policy": "same-origin", - "Sozu-Id": "01HKGYYG5SCKGZT30BFPBRKEA1", + "Sozu-Id": "01HM2ZXPFGPYHWCBPFDKJEXT79", "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "Vary": "Cookie, Accept-Encoding, origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 46227823, + "scan_id": 46436607, "score": 115, - "start_time": "Sun, 07 Jan 2024 03:20:00 GMT", + "start_time": "Sun, 14 Jan 2024 03:23:21 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -67908,8 +68244,8 @@ "'none'" ], "connect-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "'self'" + "'self'", + "https://matomo.inclusion.beta.gouv.fr/" ], "default-src": [ "'self'" @@ -67921,17 +68257,17 @@ "'none'" ], "img-src": [ - "https://matomo.inclusion.beta.gouv.fr/", "data:", - "'self'" + "'self'", + "https://matomo.inclusion.beta.gouv.fr/" ], "object-src": [ "'none'" ], "script-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "'nonce-hzpwt5kdmamzexuueg+6ug=='", - "'self'" + "'self'", + "'nonce-sdf6vpneq49ybg185pzdia=='", + "https://matomo.inclusion.beta.gouv.fr/" ], "style-src": [ "'self'" @@ -68107,8 +68443,17 @@ "nmap": { "host": "connect.inclusion.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "986", + "closed_ports": "985", "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "9.4", + "vulnerabilities": [] + } + }, { "service": { "name": "http", @@ -68190,7 +68535,8 @@ }, { "service": { - "name": "cpdlc", + "name": "http", + "product": "JBoss Enterprise Application Platform", "id": "5911", "vulnerabilities": [] } @@ -68217,70 +68563,70 @@ "testssl": [ { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -68288,7 +68634,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -68296,7 +68642,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -68304,7 +68650,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -68312,7 +68658,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -68320,7 +68666,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -68328,574 +68674,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "44 >= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1704597682" + "finding": "1705202719" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-OohiE8s/5lMp8YUurfPecg=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-EQeUli707oLD3VKVL2JvsQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -68903,7 +69249,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -68912,7 +69258,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -68921,7 +69267,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -68930,7 +69276,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -68939,7 +69285,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -68947,7 +69293,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -68956,7 +69302,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -68965,7 +69311,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -68974,7 +69320,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -68983,14 +69329,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -68999,7 +69345,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -69008,7 +69354,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -69017,7 +69363,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -69026,7 +69372,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -69035,7 +69381,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -69044,7 +69390,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -69053,7 +69399,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -69062,7 +69408,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -69071,7 +69417,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -69080,385 +69426,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -69466,7 +69812,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -69474,7 +69820,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -69482,7 +69828,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -69490,7 +69836,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -69498,7 +69844,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -69506,574 +69852,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "44 >= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1704597742" + "finding": "1705202821" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-qnStbPJWqWq4ZWQxoPVZ1Q=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-n/VCnSad0Ccvlg/jMVIMUg=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -70081,7 +70427,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -70090,7 +70436,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -70099,7 +70445,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -70108,7 +70454,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -70117,7 +70463,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -70125,7 +70471,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -70134,7 +70480,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -70143,7 +70489,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -70152,7 +70498,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -70161,14 +70507,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -70177,7 +70523,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -70186,7 +70532,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -70195,7 +70541,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -70204,7 +70550,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -70213,7 +70559,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -70222,7 +70568,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -70231,7 +70577,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -70240,7 +70586,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -70249,7 +70595,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -70258,385 +70604,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -70644,7 +70990,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -70652,7 +70998,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -70660,7 +71006,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -70668,7 +71014,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -70676,7 +71022,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -70684,574 +71030,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "44 >= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1704597800" + "finding": "1705202922" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-dZ8dK92iPL89S7jhiYA/yA=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-l8AMCWiMqQjLOqptk2MF6A=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -71259,7 +71605,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -71268,7 +71614,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -71277,7 +71623,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -71286,7 +71632,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -71295,7 +71641,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -71303,7 +71649,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -71312,7 +71658,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -71321,7 +71667,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -71330,7 +71676,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -71339,14 +71685,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -71355,7 +71701,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -71364,7 +71710,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -71373,7 +71719,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -71382,7 +71728,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -71391,7 +71737,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -71400,7 +71746,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -71409,7 +71755,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -71418,7 +71764,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -71427,7 +71773,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -71436,385 +71782,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -71822,7 +72168,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -71830,7 +72176,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -71838,7 +72184,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -71846,7 +72192,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -71854,7 +72200,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -71862,574 +72208,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "44 >= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1704597859" + "finding": "1705203023" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-kBdowqKXqNrqZrlaYf9qtA=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-84I4+E0xdpRZ7jH6wBOm+A=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -72437,7 +72783,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -72446,7 +72792,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -72455,7 +72801,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -72464,7 +72810,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -72473,7 +72819,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -72481,7 +72827,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -72490,7 +72836,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -72499,7 +72845,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -72508,7 +72854,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -72517,14 +72863,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -72533,7 +72879,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -72542,7 +72888,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -72551,7 +72897,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -72560,7 +72906,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -72569,7 +72915,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -72578,7 +72924,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -72587,7 +72933,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -72596,7 +72942,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -72605,7 +72951,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -72614,385 +72960,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -73000,7 +73346,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -73008,7 +73354,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -73016,7 +73362,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -73024,7 +73370,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -73032,7 +73378,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -73040,574 +73386,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "44 >= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1704597917" + "finding": "1705203125" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-/mgKzsn+5n2aD/XP8zDZfQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-yGoAyvcz7D9UGzejXw38PQ=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -73615,7 +73961,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -73624,7 +73970,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -73633,7 +73979,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -73642,7 +73988,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -73651,7 +73997,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -73659,7 +74005,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -73668,7 +74014,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -73677,7 +74023,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -73686,7 +74032,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -73695,14 +74041,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -73711,7 +74057,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -73720,7 +74066,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -73729,7 +74075,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -73738,7 +74084,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -73747,7 +74093,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -73756,7 +74102,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -73765,7 +74111,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -73774,7 +74120,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -73783,7 +74129,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -73792,385 +74138,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -74178,7 +74524,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -74186,7 +74532,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -74194,7 +74540,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -74202,7 +74548,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -74210,7 +74556,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -74218,574 +74564,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "44 >= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1704597976" + "finding": "1705203227" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-sJLLNpuAQEVyzufMPZDPrw=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-06p3HQCE9wRKCElTLrWxVA=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -74793,7 +75139,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -74802,7 +75148,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -74811,7 +75157,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -74820,7 +75166,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -74829,7 +75175,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -74837,7 +75183,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -74846,7 +75192,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -74855,7 +75201,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -74864,7 +75210,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -74873,14 +75219,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -74889,7 +75235,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -74898,7 +75244,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -74907,7 +75253,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -74916,7 +75262,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -74925,7 +75271,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -74934,7 +75280,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -74943,7 +75289,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -74952,7 +75298,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -74961,7 +75307,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -74970,385 +75316,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "connect.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -75356,7 +75702,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -75364,7 +75710,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -75372,7 +75718,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -75380,7 +75726,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -75388,7 +75734,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -75396,574 +75742,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "44 >= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1704598034" + "finding": "1705203329" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-6HbQWu2FuXYZwdGCmSok0w=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-8nBe8kqN7J4b7gXdEwZkAw=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -75971,7 +76317,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -75980,7 +76326,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -75989,7 +76335,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -75998,7 +76344,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -76007,7 +76353,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -76015,7 +76361,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -76024,7 +76370,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -76033,7 +76379,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -76042,7 +76388,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -76051,14 +76397,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -76067,7 +76413,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -76076,7 +76422,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -76085,7 +76431,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -76094,7 +76440,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -76103,7 +76449,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -76112,7 +76458,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -76121,7 +76467,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -76130,7 +76476,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -76139,7 +76485,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -76148,385 +76494,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76534,7 +76880,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76542,7 +76888,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76550,7 +76896,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -76558,7 +76904,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -76566,7 +76912,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -76574,574 +76920,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "44 >= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1704598092" + "finding": "1705203430" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-wKz1tlX5K+WcmxNNQryuQw=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-O5v3JAlX6RtXxFneHgiSaA=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -77149,7 +77495,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -77158,7 +77504,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -77167,7 +77513,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -77176,7 +77522,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -77185,7 +77531,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -77193,7 +77539,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -77202,7 +77548,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -77211,7 +77557,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -77220,7 +77566,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -77229,14 +77575,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -77245,7 +77591,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -77254,7 +77600,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -77263,7 +77609,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -77272,7 +77618,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -77281,7 +77627,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -77290,7 +77636,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -77299,7 +77645,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -77308,7 +77654,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -77317,7 +77663,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -77326,385 +77672,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "connect.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77712,7 +78058,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77720,7 +78066,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77728,7 +78074,7 @@ }, { "id": "cipherlist_LOW", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -77736,7 +78082,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -77744,7 +78090,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -77752,574 +78098,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0320BF7F30C3B63D96C07D098A48AD65EB5E" }, { "id": "cert_serialNumberLen", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "BF6DD7F04122D7C74E4E67FD611D9C726435A658" }, { "id": "cert_fingerprintSHA256", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "cert", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "44 >= 30 days" + "finding": "37 >= 30 days" }, { "id": "cert_notBefore", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "cert_notAfter", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-20 08:29" }, { "id": "cert_extlifeSpan", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCTCCA/GgAwIBAgISAyC/fzDDtj2WwH0JikitZeteMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjIwODI5MjVaFw0yNDAyMjAwODI5MjRaMCkxJzAlBgNVBAMTHmNvbm5lY3QuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMKsdeFofqZ8l4tuM7BOsYQnyZvgyWfOrl0DR9JWHhUxiwROtl5MjB4Puzq4bV5Nj3Q6+N1bIaQIgz2yODLzRU8NNhzLBRd5G8eSVuW9uxVtPmHQ8Lm6CoUAja9hoiNFlt5VX/iksZ+/BswMspl66ciEI4T+TZUtNfHWyPEgzG15+zmwwbjj4LyV0h+fcauxI5drjOUuMb4ExhzMOENabsTL0eKuhfuMS3UkNmSpZlhjjkyuNOwGKLgEdNlUlo3qdeAZJ/Gribf/cGcUvtXK/I0kjAhBrUYSYdunIVhegtZAdTbRl++Z+mXVRAcm5Zc9N3JCinezeX80U9o6gDyGIq8CAwEAAaOCAiAwggIcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQULxhbenQM4GUzb8hqMOSsnDFlpAgwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeY29ubmVjdC5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL9lzljgAABAMARzBFAiEA+3G8SoYFGAbHHM68AZuaf8OIiNm2QmJEU8/N+1fTVSkCIFOlgc9jFwg5/dd4zm6jRwxeGPvVEiYZgbadxPIl96xLAHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL9lzllQAABAMARzBFAiBvflWHcIgqvTDSVSKXCSBP+KMjZlLwBIqilaKnjccogwIhAPcm/vc7WMrgisxJsao8wIa0Hxa/4S6a2TCsWQqCdm0fMA0GCSqGSIb3DQEBCwUAA4IBAQAjXQkwHZ1YW+s3ndtNGQLj5Dky3tJlkCP8oibNV9x8UEV5rxmJqKcqLwgMbHaqtz8tZ2DV2mM1LILq7ShU67YRDpIigK5WetbpbmW+aE0QvIWeEa0m5r9u2JmjktSYkVuyklNF8S2Hk/WtEDv3lEHry4cyBih60U3xz2BhdQwi1tf5CMsiId0ZjEHUx02nZw/v2/vUKVwf488cAw1LS2UMDaaZcmJsd0PEMYLmEoHNIulYKCaFF0vtZVMjO7Jjqt0orfpB+yBgjFdR/9EuuemdEeF+4qqXBBhNYnVKRF2gD9EuZ9e4SeLei2tvgrcpJKRT+g8HIG2gmrnLGxAgW7s3\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "C13A36242B02C224616D661B222F73A61F9AAAF817BB451D9B5BCD767A4A3C64" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-22 08:29" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-20 08:29" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "connect.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1704598151" + "finding": "1705203533" }, { "id": "HSTS_time", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-APW2xoV1tOBjXGbEZShwHg=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" + "finding": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-Xw/7XUJtgVJNXZx/Ur+xzw=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'" }, { "id": "Referrer-Policy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -78327,7 +78673,7 @@ }, { "id": "heartbleed", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -78336,7 +78682,7 @@ }, { "id": "CCS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -78345,7 +78691,7 @@ }, { "id": "ticketbleed", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -78354,7 +78700,7 @@ }, { "id": "ROBOT", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -78363,7 +78709,7 @@ }, { "id": "secure_renego", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -78371,7 +78717,7 @@ }, { "id": "secure_client_renego", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -78380,7 +78726,7 @@ }, { "id": "CRIME_TLS", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -78389,7 +78735,7 @@ }, { "id": "BREACH", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -78398,7 +78744,7 @@ }, { "id": "POODLE_SSL", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -78407,14 +78753,14 @@ }, { "id": "fallback_SCSV", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -78423,7 +78769,7 @@ }, { "id": "FREAK", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -78432,7 +78778,7 @@ }, { "id": "DROWN", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -78441,7 +78787,7 @@ }, { "id": "DROWN_hint", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -78450,7 +78796,7 @@ }, { "id": "LOGJAM", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -78459,7 +78805,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -78468,7 +78814,7 @@ }, { "id": "BEAST", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -78477,7 +78823,7 @@ }, { "id": "LUCKY13", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -78486,7 +78832,7 @@ }, { "id": "winshock", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -78495,7 +78841,7 @@ }, { "id": "RC4", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -78504,325 +78850,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "connect.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "connect.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "532" + "finding": "920" } ], "thirdparties": { @@ -78833,7 +79179,7 @@ "value": "1", "domain": "connect.inclusion.beta.gouv.fr", "path": "/", - "expires": 1704599438, + "expires": 1705204439, "size": 17, "httpOnly": false, "secure": false, @@ -78845,10 +79191,10 @@ }, { "name": "_pk_id.215.73e3", - "value": "41aff39c59e55d34.1704597638.", + "value": "2d54648668405d21.1705202640.", "domain": "connect.inclusion.beta.gouv.fr", "path": "/", - "expires": 1738552838, + "expires": 1739157840, "size": 43, "httpOnly": false, "secure": false, @@ -78862,13 +79208,13 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "2314", - "content-security-policy": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-a58uFPtXq11XJ1OmeBfL/A=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'", + "content-length": "2366", + "content-security-policy": "frame-ancestors 'none'; default-src 'self'; base-uri 'none'; script-src 'self' https://matomo.inclusion.beta.gouv.fr/ 'nonce-Eip6O6djFzP9+1U0GL5/pg=='; font-src 'self'; style-src 'self'; img-src 'self' data: https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' https://matomo.inclusion.beta.gouv.fr/; object-src 'none'", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 03:20:37 GMT", + "date": "Sun, 14 Jan 2024 03:23:57 GMT", "referrer-policy": "same-origin", - "sozu-id": "01HKGYZJ2MNXE9G8ET989KBVBK", + "sozu-id": "01HM2ZYP963Q8GFKWDRANDDMY0", "strict-transport-security": "max-age=31536000; includeSubDomains", "vary": "Cookie, Accept-Encoding, origin", "x-content-type-options": "nosniff", @@ -78877,7 +79223,7 @@ "endpoints": [ { "hostname": "connect.inclusion.beta.gouv.fr", - "ip": "91.208.207.214", + "ip": "91.208.207.217", "geoip": { "continent": { "code": "EU", @@ -79063,7 +79409,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 03:19:35", + "@generated": "Sun, 14 Jan 2024 03:22:54", "site": [ { "@name": "https://connect.inclusion.beta.gouv.fr", @@ -79161,22 +79507,23 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -79192,7 +79539,11 @@ "type": "dns", "host": "connect.inclusion.beta.gouv.fr.", "matched-at": "connect.inclusion.beta.gouv.fr", - "timestamp": "2024-01-07T03:32:50.597726785Z", + "extracted-results": [ + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2024-01-14T03:37:44.600957179Z", "matcher-status": true }, { @@ -79228,26 +79579,27 @@ "dns2.alwaysdata.com.", "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T03:32:50.603612411Z", + "timestamp": "2024-01-14T03:37:44.664510339Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "txt" + "dmarc" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -79257,36 +79609,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "connect.inclusion.beta.gouv.fr.", - "matched-at": "connect.inclusion.beta.gouv.fr", + "matched-at": "_dmarc.connect.inclusion.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all include:spf.mailjet.com include:_spf.google.com include:mail.zendesk.com ?all\"" + "\"v=DMARC1; p=none\"" ], - "timestamp": "2024-01-07T03:32:50.76235412Z", + "timestamp": "2024-01-14T03:37:44.749526736Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -79302,31 +79654,26 @@ "type": "dns", "host": "connect.inclusion.beta.gouv.fr.", "matched-at": "connect.inclusion.beta.gouv.fr", - "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." - ], - "timestamp": "2024-01-07T03:32:50.840152584Z", + "timestamp": "2024-01-14T03:37:44.866392308Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "DNS TXT Record Detected", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "txt" ], - "description": "DNS DMARC information was detected.\n", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -79336,17 +79683,16 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "connect.inclusion.beta.gouv.fr.", - "matched-at": "_dmarc.connect.inclusion.beta.gouv.fr", + "matched-at": "connect.inclusion.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none\"" + "\"v=spf1 include:_spf.alwaysdata.com ~all include:spf.mailjet.com include:_spf.google.com include:mail.zendesk.com ?all\"" ], - "timestamp": "2024-01-07T03:32:50.919758205Z", + "timestamp": "2024-01-14T03:37:45.605736504Z", "matcher-status": true }, { @@ -79377,12 +79723,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:33:34.012297101Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:38:56.809961974Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79414,12 +79760,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:33:34.012360539Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:38:56.810009112Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79451,12 +79797,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:33:34.012377681Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:38:56.810027326Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79488,12 +79834,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:33:34.012391617Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:38:56.810042084Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79525,12 +79871,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://connect.inclusion.beta.gouv.fr", "matched-at": "https://connect.inclusion.beta.gouv.fr", - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:33:34.012409009Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:38:56.810056691Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://connect.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -79579,8 +79925,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:34:19.999117754Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:40:14.477618779Z", "matcher-status": true }, { @@ -79609,8 +79955,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:34:25.80035188Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:40:26.773230906Z", "matcher-status": true }, { @@ -79639,8 +79985,8 @@ "extracted-results": [ "connect.inclusion.beta.gouv.fr" ], - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:34:25.800466483Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:40:26.773343467Z", "matcher-status": true }, { @@ -79670,8 +80016,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:34:27.10702385Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:40:33.112635872Z", "matcher-status": true }, { @@ -79701,8 +80047,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.42.117.108", - "timestamp": "2024-01-07T03:34:27.300696885Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T03:40:33.423659653Z", "matcher-status": true } ], @@ -79710,7 +80056,7 @@ { "requestedUrl": "https://connect.inclusion.beta.gouv.fr/", "finalUrl": "https://connect.inclusion.beta.gouv.fr/", - "fetchTime": "2024-01-07T03:19:49.204Z", + "fetchTime": "2024-01-14T03:23:09.632Z", "runWarnings": [], "categories": { "performance": { @@ -79721,7 +80067,7 @@ "snapshot" ], "id": "performance", - "score": 0.9468223571777343 + "score": 0.946830940246582 }, "accessibility": { "title": "Accessibility", @@ -79773,53 +80119,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5633, + "numericValue": 5576, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5633, - "firstMeaningfulPaint": 5633, - "largestContentfulPaint": 6857, - "interactive": 5633, - "speedIndex": 5633, + "firstContentfulPaint": 5576, + "firstMeaningfulPaint": 5576, + "largestContentfulPaint": 6788, + "interactive": 5576, + "speedIndex": 5576, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.0011465928819444444, "cumulativeLayoutShiftMainFrame": 0.0011465928819444444, "totalCumulativeLayoutShift": 0.0011465928819444444, "observedTimeOrigin": 0, - "observedTimeOriginTs": 226840099, + "observedTimeOriginTs": 265837632, "observedNavigationStart": 0, - "observedNavigationStartTs": 226840099, - "observedFirstPaint": 647, - "observedFirstPaintTs": 227487259, - "observedFirstContentfulPaint": 647, - "observedFirstContentfulPaintTs": 227487259, - "observedFirstContentfulPaintAllFrames": 647, - "observedFirstContentfulPaintAllFramesTs": 227487259, - "observedFirstMeaningfulPaint": 647, - "observedFirstMeaningfulPaintTs": 227487259, - "observedLargestContentfulPaint": 719, - "observedLargestContentfulPaintTs": 227559068, - "observedLargestContentfulPaintAllFrames": 719, - "observedLargestContentfulPaintAllFramesTs": 227559068, - "observedTraceEnd": 3387, - "observedTraceEndTs": 230226705, - "observedLoad": 1079, - "observedLoadTs": 227918995, + "observedNavigationStartTs": 265837632, + "observedFirstPaint": 1104, + "observedFirstPaintTs": 266941950, + "observedFirstContentfulPaint": 1104, + "observedFirstContentfulPaintTs": 266941950, + "observedFirstContentfulPaintAllFrames": 1104, + "observedFirstContentfulPaintAllFramesTs": 266941950, + "observedFirstMeaningfulPaint": 1104, + "observedFirstMeaningfulPaintTs": 266941950, + "observedLargestContentfulPaint": 1237, + "observedLargestContentfulPaintTs": 267074971, + "observedLargestContentfulPaintAllFrames": 1237, + "observedLargestContentfulPaintAllFramesTs": 267074971, + "observedTraceEnd": 4247, + "observedTraceEndTs": 270084186, + "observedLoad": 1938, + "observedLoadTs": 267775650, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 226840605, + "observedDomContentLoadedTs": 265838170, "observedCumulativeLayoutShift": 0.0011465928819444444, "observedCumulativeLayoutShiftMainFrame": 0.0011465928819444444, "observedTotalCumulativeLayoutShift": 0.0011465928819444444, - "observedFirstVisualChange": 650, - "observedFirstVisualChangeTs": 227490099, - "observedLastVisualChange": 1250, - "observedLastVisualChangeTs": 228090099, - "observedSpeedIndex": 694, - "observedSpeedIndexTs": 227534065 + "observedFirstVisualChange": 1101, + "observedFirstVisualChangeTs": 266938632, + "observedLastVisualChange": 1718, + "observedLastVisualChangeTs": 267555632, + "observedSpeedIndex": 1159, + "observedSpeedIndexTs": 266996153 }, { "lcpInvalidated": false @@ -79847,13 +80193,13 @@ "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.873, - "throughput": 12810987.078070814, - "maxRtt": 83.128, - "maxServerLatency": 6.940999999999988, - "totalByteWeight": 1327380, - "totalTaskTime": 1.8159999999999998, - "mainDocumentTransferSize": 3140 + "rtt": 148.76000000000002, + "throughput": 7078284.762398268, + "maxRtt": 149.27700000000002, + "maxServerLatency": 149.645, + "totalByteWeight": 1327335, + "totalTaskTime": 2.309, + "mainDocumentTransferSize": 3095 } ] } @@ -79910,7 +80256,7 @@ "link": "https://connect.inclusion.beta.gouv.fr/", "repository": "https://github.com/gip-inclusion/inclusion-connect", "contact": "support@connect.inclusion.beta.gouv.fr", - "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ALes%20services%20num%C3%A9riques%20%C3%A0%20destination%20des%20professionnels%20de%20l%E2%80%99inclusion%20se%20multiplient%2C%20et%20avec%20eux%20les%20identifiants%20et%20mots%20de%20passe.%20Pour%20les%20usagers%20cela%20devient%20complexe%20et%20fastidieux%20et%20pr%C3%A9sente%20de%20vrais%20risques%20de%20s%C3%A9curit%C3%A9.%0A%0AC%27est%20donc%20une%20source%20de%20friction%20et%20une%20perte%20de%20temps%20pour%20les%20utilisateurs%20au%20quotidien.%0A%0A%23%23%20Notre%20service%0A%0AAvec%20Inclusion%20Connect%2C%20nous%20simplifions%20la%20gestion%20des%20identifiants%20et%20facilitons%20l%E2%80%99acc%C3%A8s%20au%20num%C3%A9rique%20en%20toute%20s%C3%A9curit%C3%A9%2C%20gr%C3%A2ce%20%C3%A0%20un%20compte%20unique%20bas%C3%A9%20sur%20un%20protocole%20solidement%20%C3%A9prouv%C3%A9%20%28OpenIdConnect%29.%0A%0A%23%23%20Nos%20usagers%0A%0ATous%20les%20professionnels%20de%20l%E2%80%99inclusion.%20Comme%20les%20conseillers%20en%20insertion%20professionnelle%2C%20les%20travailleurs%20sociaux%2C%20les%20r%C3%A9f%C3%A9rents%20uniques%20%28ex%20%3A%20PE%2C%20Cap%20emploi%2C%20CD%2C%20CCAS%2FCIAS%2C%20Missions%20Locales%2C%20associations%20conventionn%C3%A9es%2C%20IAE%2C%20centres%20d%E2%80%99h%C3%A9bergement%2C%20etc.%29%2C%20les%20employeurs%20solidaires%20etc.%0A%0A%23%23%20D%C3%A9ploiement%0A%0A%C3%80%20ce%20jour%2C%20Inclusion%20Connect%20est%20d%C3%A9ploy%C3%A9%20sur%20les%20services%20suivants%20%3A%0A%0A%2A%20Les%20emplois%20de%20l%27inclusion%0A%2A%20DORA%0A%2A%20RDV-solidarit%C3%A9s%20et%20RDV-aide-num%C3%A9rique%0A%2A%20M%EF%BB%BFon%20Suivi%20Social%0A%2A%20L%EF%BB%BFa%20communaut%C3%A9%20de%20l%27inclusion%0A%2A%20L%EF%BB%BFes%20Conseillers%20Num%C3%A9riques%20France%20Service%20%28grands%20r%C3%A9seaux%20et%20structures%29%0A%2A%20Immersion%20facilit%C3%A9e%0A%2A%20Rdv%20Insertion%0A%2A%20Portail%20Emploi%20Lyon%20M%C3%A9tropole%0A%2A%20eva%0A%0AEt%20gr%C3%A2ce%20au%20m%C3%A9canisme%20de%20la%20f%C3%A9d%C3%A9ration%20d%27identit%C3%A9%20les%20agents%20de%20P%C3%B4le%20emploi%20peuvent%20se%20connecter%20avec%20leurs%20identifiants%20NEPTUNE%20via%20Inlcusion%20Connect%20aux%20services%20cit%C3%A9s%20ci-dessus.%0A%0AVoici%20un%20lien%20direct%20vers%20nos%20statistiques%20d%27usage%20%3A%20%5BStatistiques%5D%28http%3A%2F%2Fstats.inclusion.beta.gouv.fr%2Fpublic%2Fdashboard%2F8895a813-68d0-4d3a-a7e3-f71ef0615a52%29%0A", + "content_url_encoded_markdown": "%23%23%20Le%20probl%C3%A8me%0A%0ALes%20services%20num%C3%A9riques%20%C3%A0%20destination%20des%20professionnels%20de%20l%E2%80%99inclusion%20se%20multiplient%2C%20et%20avec%20eux%20les%20identifiants%20et%20mots%20de%20passe.%20Pour%20les%20usagers%20cela%20devient%20complexe%20et%20fastidieux%20et%20pr%C3%A9sente%20de%20vrais%20risques%20de%20s%C3%A9curit%C3%A9.%0A%0AC%27est%20donc%20une%20source%20de%20friction%20et%20une%20perte%20de%20temps%20pour%20les%20utilisateurs%20au%20quotidien.%0A%0A%23%23%20Notre%20service%0A%0AAvec%20Inclusion%20Connect%2C%20nous%20simplifions%20la%20gestion%20des%20identifiants%20et%20facilitons%20l%E2%80%99acc%C3%A8s%20au%20num%C3%A9rique%20en%20toute%20s%C3%A9curit%C3%A9%2C%20gr%C3%A2ce%20%C3%A0%20un%20compte%20unique%20bas%C3%A9%20sur%20un%20protocole%20solidement%20%C3%A9prouv%C3%A9%20%28OpenIdConnect%29.%0A%0A%23%23%20Nos%20usagers%0A%0ATous%20les%20professionnels%20de%20l%E2%80%99inclusion.%20Comme%20les%20conseillers%20en%20insertion%20professionnelle%2C%20les%20travailleurs%20sociaux%2C%20les%20r%C3%A9f%C3%A9rents%20uniques%20%28ex%20%3A%20PE%2C%20Cap%20emploi%2C%20CD%2C%20CCAS%2FCIAS%2C%20Missions%20Locales%2C%20associations%20conventionn%C3%A9es%2C%20IAE%2C%20centres%20d%E2%80%99h%C3%A9bergement%2C%20etc.%29%2C%20les%20employeurs%20solidaires%20etc.%0A%0A%23%23%20D%C3%A9ploiement%0A%0A%C3%80%20ce%20jour%2C%20Inclusion%20Connect%20est%20d%C3%A9ploy%C3%A9%20sur%20les%20services%20suivants%20%3A%0A%0A%2A%20Les%20emplois%20de%20l%27inclusion%0A%2A%20DORA%0A%2A%20RDV-solidarit%C3%A9s%20et%20RDV-aide-num%C3%A9rique%0A%2A%20M%EF%BB%BFon%20Suivi%20Social%0A%2A%20L%EF%BB%BFa%20communaut%C3%A9%20de%20l%27inclusion%0A%2A%20L%EF%BB%BFes%20Conseillers%20Num%C3%A9riques%20France%20Service%20%28grands%20r%C3%A9seaux%20et%20structures%29%0A%2A%20Immersion%20facilit%C3%A9e%0A%2A%20Rdv%20Insertion%0A%2A%20Portail%20Emploi%20Lyon%20M%C3%A9tropole%0A%2A%20eva%0A%2A%20Acad%C3%A9mie%20France%20Travail%0A%0AEt%20gr%C3%A2ce%20au%20m%C3%A9canisme%20de%20la%20f%C3%A9d%C3%A9ration%20d%27identit%C3%A9%20les%20agents%20de%20P%C3%B4le%20emploi%20peuvent%20se%20connecter%20avec%20leurs%20identifiants%20NEPTUNE%20via%20Inlcusion%20Connect%20aux%20services%20cit%C3%A9s%20ci-dessus.%0A%0AVoici%20un%20lien%20direct%20vers%20nos%20statistiques%20d%27usage%20%3A%20%5BStatistiques%5D%28http%3A%2F%2Fstats.inclusion.beta.gouv.fr%2Fpublic%2Fdashboard%2F8895a813-68d0-4d3a-a7e3-f71ef0615a52%29%0A", "events": [], "phases": [ { @@ -79934,7 +80280,7 @@ "summary": { "httpGrade": "A+", "nmapGrade": "B", - "nmapOpenPortsCount": 14, + "nmapOpenPortsCount": 15, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-02-20T08:29:00.000Z", @@ -79943,7 +80289,7 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.9468223571777343, + "lighthouse_performance": 0.946830940246582, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -79972,7 +80318,7 @@ "http": { "url": "https://contrat.apprentissage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 03:20:34 GMT", + "end_time": "Sun, 14 Jan 2024 03:33:34 GMT", "grade": "A", "hidden": false, "likelihood_indicator": "LOW", @@ -79982,18 +80328,18 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self' https://plausible.io; frame-src 'self'; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; img-src 'self' https://www.notion.so https://jedonnemonavis.numerique.gouv.fr data: https://www.ssa.gov; object-src 'none'; script-src 'self' https://plausible.io https://www.ssa.gov https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 03:20:32 GMT", + "Date": "Sun, 14 Jan 2024 03:33:32 GMT", "Referrer-Policy": "no-referrer-when-downgrade", - "Set-Cookie": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS=!3vkIG0+2xOJiZo1WDPlD0yXzT0UGhlxjOGlGROThk6EQFQdbpnJXG9vp4z7Kh1yR66dA7LI25dvgJMlfoORhzV9zaw5t; path=/; Httponly; Secure", + "Set-Cookie": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS=!TdUj4KPspzIgJbJWDPlD0yXzT0UGhpmp0owbGuupyRvzU8+5qKaVm1TasVovaeWAkBnmfzJ3pHR3raKVydpeTbBRZEqn; path=/; Httponly; Secure", "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN" }, - "scan_id": 46227829, + "scan_id": 46436802, "score": 95, - "start_time": "Sun, 07 Jan 2024 03:20:29 GMT", + "start_time": "Sun, 14 Jan 2024 03:28:12 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -80012,8 +80358,8 @@ "'none'" ], "default-src": [ - "https://plausible.io", - "'self'" + "'self'", + "https://plausible.io" ], "font-src": [ "data:", @@ -80027,28 +80373,28 @@ "'self'" ], "img-src": [ + "https://www.notion.so", "data:", + "https://jedonnemonavis.numerique.gouv.fr", "https://www.ssa.gov", - "https://www.notion.so", - "'self'", - "https://jedonnemonavis.numerique.gouv.fr" + "'self'" ], "object-src": [ "'none'" ], "script-src": [ - "https://plausible.io", "https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js", - "https://www.ssa.gov", - "'self'" + "'self'", + "https://plausible.io", + "https://www.ssa.gov" ], "script-src-attr": [ "'none'" ], "style-src": [ - "'unsafe-inline'", "https:", - "'self'" + "'self'", + "'unsafe-inline'" ], "upgrade-insecure-requests": [ "'none'" @@ -80244,7 +80590,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-03T22:54:41Z", + "up_since": "2024-01-12T15:36:36Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -80256,8 +80602,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T03:28:50Z", - "next_check_at": "2024-01-07T03:33:48Z", + "last_check_at": "2024-01-14T03:46:48Z", + "next_check_at": "2024-01-14T03:51:46Z", "created_at": "2022-09-01T22:02:14Z", "mute_until": null, "favicon_url": "https://celia.emploi.gouv.fr/favicon.ico", @@ -80265,7 +80611,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T03:03:59Z", + "tested_at": "2024-01-14T03:21:56Z", "expires_at": "2024-03-19T07:31:20Z", "valid": true, "error": null @@ -80273,12 +80619,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 794, - "namelookup": 53, - "connection": 138, - "handshake": 283, - "response": 163, - "total": 1430 + "redirect": 717, + "namelookup": 37, + "connection": 152, + "handshake": 324, + "response": 175, + "total": 1406 } }, "uptimeGrade": "A", @@ -80511,7 +80857,7 @@ "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -80658,7 +81004,7 @@ "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "OK", - "finding": "72 >= 30 days" + "finding": "65 >= 30 days" }, { "id": "cert_notBefore", @@ -80854,14 +81200,14 @@ "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "1704597740" + "finding": "1705203334" }, { "id": "HSTS", @@ -81417,7 +81763,7 @@ "ip": "contrat.apprentissage.beta.gouv.fr/185.31.40.11", "port": "443", "severity": "INFO", - "finding": "63" + "finding": "99" } ], "thirdparties": { @@ -81430,7 +81776,7 @@ "cookies": [ { "name": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS", - "value": "!xv8F6IEFrRDPhvRWDPlD0yXzT0UGhnswwK6iKZsZ4Izieu1/H8Fqcp7alxoaHBJL/bN4+Qq0N5BKslv6FyFf+rSAZmsG", + "value": "!VG9l6XSgh7RaMUlWDPlD0yXzT0UGhmDyiFBFRupniErL6BRA+OP/OhvcUCiI91OJg21CYmhrHDBJHZ/pyXyRG+hfKYHM", "domain": "celia.emploi.gouv.fr", "path": "/", "expires": -1, @@ -81449,9 +81795,9 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self' https://plausible.io; frame-src 'self'; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self'; img-src 'self' https://www.notion.so https://jedonnemonavis.numerique.gouv.fr data: https://www.ssa.gov; object-src 'none'; script-src 'self' https://plausible.io https://www.ssa.gov https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; upgrade-insecure-requests;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 03:21:08 GMT", + "date": "Sun, 14 Jan 2024 03:33:53 GMT", "referrer-policy": "no-referrer-when-downgrade", - "set-cookie": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS=!xv8F6IEFrRDPhvRWDPlD0yXzT0UGhnswwK6iKZsZ4Izieu1/H8Fqcp7alxoaHBJL/bN4+Qq0N5BKslv6FyFf+rSAZmsG; path=/; Httponly; Secure", + "set-cookie": "BIGipServerpool-prod-pdigi.cegedim.cloud-HTTPS=!VG9l6XSgh7RaMUlWDPlD0yXzT0UGhmDyiFBFRupniErL6BRA+OP/OhvcUCiI91OJg21CYmhrHDBJHZ/pyXyRG+hfKYHM; path=/; Httponly; Secure", "strict-transport-security": "max-age=31536000; includeSubDomains", "transfer-encoding": "chunked", "vary": "Accept-Encoding", @@ -81517,19 +81863,19 @@ }, { "hostname": "plausible.io", - "ip": "169.150.236.97", + "ip": "143.244.50.82", "geoip": { "city": { - "geoname_id": 4887398, + "geoname_id": 5368361, "names": { - "de": "Chicago", - "en": "Chicago", - "es": "Chicago", - "fr": "Chicago", - "ja": "シカゴ", - "pt-BR": "Chicago", - "ru": "Чикаго", - "zh-CN": "芝加哥" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -81550,7 +81896,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -81562,22 +81908,22 @@ }, "location": { "accuracy_radius": 20, - "latitude": 41.8874, - "longitude": -87.6318, - "metro_code": 602, - "time_zone": "America/Chicago" + "latitude": 34.0544, + "longitude": -118.2441, + "metro_code": 803, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "60602" + "code": "90060" }, "registered_country": { "geoname_id": 2635167, "iso_code": "GB", "names": { - "de": "Vereinigtes Königreich", + "de": "UK", "en": "United Kingdom", "es": "Reino Unido", - "fr": "Royaume Uni", + "fr": "Royaume-Uni", "ja": "英国", "pt-BR": "Reino Unido", "ru": "Британия", @@ -81586,16 +81932,17 @@ }, "subdivisions": [ { - "geoname_id": 4896861, - "iso_code": "IL", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Illinois", - "es": "Illinois", - "fr": "Illinois", - "ja": "イリノイ州", - "pt-BR": "Ilinóis", - "ru": "Иллинойс", - "zh-CN": "伊利诺伊州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -81634,7 +81981,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 03:20:04", + "@generated": "Sun, 14 Jan 2024 03:27:46", "site": [ { "@name": "https://contrat.apprentissage.beta.gouv.fr", @@ -81763,7 +82110,7 @@ { "requestedUrl": "https://contrat.apprentissage.beta.gouv.fr/", "finalUrl": "https://celia.emploi.gouv.fr/", - "fetchTime": "2024-01-07T03:20:18.213Z", + "fetchTime": "2024-01-14T03:28:00.709Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://contrat.apprentissage.beta.gouv.fr/) was redirected to https://celia.emploi.gouv.fr/. Try testing the second URL directly." ], @@ -81828,53 +82175,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7603, + "numericValue": 7995, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2723, - "firstMeaningfulPaint": 2723, - "largestContentfulPaint": 2982, - "interactive": 7603, - "speedIndex": 3503, - "totalBlockingTime": 203, - "maxPotentialFID": 456, - "cumulativeLayoutShift": 0.14987309318277445, - "cumulativeLayoutShiftMainFrame": 0.14987309318277445, - "totalCumulativeLayoutShift": 0.14987309318277445, + "firstContentfulPaint": 3011, + "firstMeaningfulPaint": 3011, + "largestContentfulPaint": 3262, + "interactive": 7995, + "speedIndex": 4425, + "totalBlockingTime": 208, + "maxPotentialFID": 465, + "cumulativeLayoutShift": 0.1351111482514034, + "cumulativeLayoutShiftMainFrame": 0.1351111482514034, + "totalCumulativeLayoutShift": 0.1500637979919271, "observedTimeOrigin": 0, - "observedTimeOriginTs": 181271662, + "observedTimeOriginTs": 257863710, "observedNavigationStart": 0, - "observedNavigationStartTs": 181271662, - "observedFirstPaint": 1004, - "observedFirstPaintTs": 182276085, - "observedFirstContentfulPaint": 1004, - "observedFirstContentfulPaintTs": 182276085, - "observedFirstContentfulPaintAllFrames": 1004, - "observedFirstContentfulPaintAllFramesTs": 182276085, - "observedFirstMeaningfulPaint": 1004, - "observedFirstMeaningfulPaintTs": 182276085, - "observedLargestContentfulPaint": 1004, - "observedLargestContentfulPaintTs": 182276085, - "observedLargestContentfulPaintAllFrames": 1004, - "observedLargestContentfulPaintAllFramesTs": 182276085, - "observedTraceEnd": 4407, - "observedTraceEndTs": 185678988, - "observedLoad": 1982, - "observedLoadTs": 183253963, - "observedDomContentLoaded": 1974, - "observedDomContentLoadedTs": 183245824, - "observedCumulativeLayoutShift": 0.14987309318277445, - "observedCumulativeLayoutShiftMainFrame": 0.14987309318277445, - "observedTotalCumulativeLayoutShift": 0.14987309318277445, - "observedFirstVisualChange": 1004, - "observedFirstVisualChangeTs": 182275662, - "observedLastVisualChange": 2104, - "observedLastVisualChangeTs": 183375662, - "observedSpeedIndex": 1417, - "observedSpeedIndexTs": 182688359 + "observedNavigationStartTs": 257863710, + "observedFirstPaint": 1369, + "observedFirstPaintTs": 259232602, + "observedFirstContentfulPaint": 1369, + "observedFirstContentfulPaintTs": 259232602, + "observedFirstContentfulPaintAllFrames": 1369, + "observedFirstContentfulPaintAllFramesTs": 259232602, + "observedFirstMeaningfulPaint": 1369, + "observedFirstMeaningfulPaintTs": 259232602, + "observedLargestContentfulPaint": 1369, + "observedLargestContentfulPaintTs": 259232602, + "observedLargestContentfulPaintAllFrames": 1369, + "observedLargestContentfulPaintAllFramesTs": 259232602, + "observedTraceEnd": 5208, + "observedTraceEndTs": 263071566, + "observedLoad": 2716, + "observedLoadTs": 260579641, + "observedDomContentLoaded": 2708, + "observedDomContentLoadedTs": 260571693, + "observedCumulativeLayoutShift": 0.1351111482514034, + "observedCumulativeLayoutShiftMainFrame": 0.1351111482514034, + "observedTotalCumulativeLayoutShift": 0.1500637979919271, + "observedFirstVisualChange": 1375, + "observedFirstVisualChangeTs": 259238710, + "observedLastVisualChange": 2909, + "observedLastVisualChangeTs": 260772710, + "observedSpeedIndex": 1941, + "observedSpeedIndexTs": 259805107 }, { "lcpInvalidated": false @@ -81896,18 +82243,18 @@ "numScripts": 11, "numStylesheets": 1, "numFonts": 2, - "numTasks": 555, + "numTasks": 577, "numTasksOver10ms": 3, "numTasksOver25ms": 1, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.5299999999999976, - "throughput": 6981923.405953737, - "maxRtt": 102.015, - "maxServerLatency": 142.914, - "totalByteWeight": 594870, - "totalTaskTime": 215.9189999999995, + "rtt": 8.664, + "throughput": 4840767.4934381265, + "maxRtt": 137.083, + "maxServerLatency": 177.68500000000006, + "totalByteWeight": 594880, + "totalTaskTime": 221.1249999999996, "mainDocumentTransferSize": 13349 } ] @@ -82036,29 +82383,29 @@ "http": { "url": "https://chauffage-urbain.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 03:35:51 GMT", + "end_time": "Sun, 14 Jan 2024 03:33:31 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' 'sha256-H2mRU+3M13HkAJfH6/b74hVw3UOtytXrVI3MuPwDTj0=' https://stats.data.gouv.fr https://stats.beta.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://stats.beta.gouv.fr https://cdn.linkedin.oribi.io https://wxs.ign.fr https://api.mapbox.com/;frame-src https://www.youtube.com/;worker-src 'self' blob:", + "Content-Security-Policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' 'sha256-H2mRU+3M13HkAJfH6/b74hVw3UOtytXrVI3MuPwDTj0=' 'sha256-344ePyJp7yxx64WKWpbs/ZvEDHA6mve7lS3i90cEPT4=' https://stats.data.gouv.fr https://stats.beta.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://stats.beta.gouv.fr https://cdn.linkedin.oribi.io https://google.com/ https://px.ads.linkedin.com https://wxs.ign.fr https://api.mapbox.com/;frame-src https://td.doubleclick.net https://www.facebook.com/ https://www.youtube.com/;worker-src 'self' blob:", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 03:35:49 GMT", - "ETag": "\"mzmrfe7wnk1r37\"", + "Date": "Sun, 14 Jan 2024 03:33:29 GMT", + "ETag": "\"o4m2yxhvcm1l7p\"", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN", "X-Powered-By": "Next.js", - "X-Request-ID": "a5b85653-fd15-48f4-84e6-96441ec3ef6f", + "X-Request-ID": "2fcbb9ca-d49c-4497-b3a5-417d0f24d66b", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46227936, + "scan_id": 46436922, "score": 100, - "start_time": "Sun, 07 Jan 2024 03:35:45 GMT", + "start_time": "Sun, 14 Jan 2024 03:32:06 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -82074,24 +82421,26 @@ "'self'" ], "connect-src": [ - "https://api.mapbox.com/", - "https://openmaptiles.geo.data.gouv.fr", - "https://openmaptiles.github.io", - "'self'", + "https://stats.data.gouv.fr", + "https://cdn.linkedin.oribi.io", "https://france-chaleur-urbaine.beta.gouv.fr/", "https://wxs.ign.fr", - "https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/", - "https://stats.data.gouv.fr", "https://api-adresse.data.gouv.fr/", + "https://openmaptiles.github.io", + "https://px.ads.linkedin.com", + "https://openmaptiles.geo.data.gouv.fr", "https://stats.beta.gouv.fr", - "https://cdn.linkedin.oribi.io" + "https://google.com/", + "https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/", + "https://api.mapbox.com/", + "'self'" ], "default-src": [ "'self'" ], "font-src": [ - "https:", "data:", + "https:", "'self'" ], "form-action": [ @@ -82101,46 +82450,49 @@ "'self'" ], "frame-src": [ - "https://www.youtube.com/" + "https://www.youtube.com/", + "https://td.doubleclick.net", + "https://www.facebook.com/" ], "img-src": [ - "https:", "data:", + "https:", "'self'" ], "object-src": [ "'none'" ], "script-src": [ + "https://snap.licdn.com", + "https://stats.data.gouv.fr", + "https://www.googletagmanager.com", + "https://static.axept.io", + "'sha256-6sc04y6nnqlzwzyqa3sfglajogleaasou2bnnnkusvm='", + "'sha256-pah6kzhwrs47demjxb9x6pfcgghwaf4bz4nckf/bhiu='", + "'sha256-344epyjp7yxx64wkwpbs/zvedha6mve7ls3i90cept4='", + "'sha256-egdlwovjdfoaxttvj5joqj8msevtoxdxa0rky5ixixk='", + "'sha256-txnvhdn1j7ztxp+9faggyqt5mddgcfg3dmt2sjr4v/i='", "'self'", - "'sha256-h2mru+3m13hkajfh6/b74hvw3uotytxrvi3mupwdtj0='", - "https://www.googleadservices.com", - "'sha256-5nusiklxgjie3jiclfpyxyzshtqffzm0jthzyypijte='", "'sha256-3i33qfpfa/plrn/3rrrc4vjbjmkyiuxwq+zfnhiewmo='", - "https://api.mapbox.com/", - "https://googleads.g.doubleclick.net", - "'sha256-txnvhdn1j7ztxp+9faggyqt5mddgcfg3dmt2sjr4v/i='", - "https://stats.beta.gouv.fr", - "'sha256-egdlwovjdfoaxttvj5joqj8msevtoxdxa0rky5ixixk='", - "'sha256-pah6kzhwrs47demjxb9x6pfcgghwaf4bz4nckf/bhiu='", - "'sha256-vhlisyhjqlxs8efpqomla3m8/vbrwdzde5zgwihjqea='", "https://connect.facebook.net", - "https://stats.data.gouv.fr", - "'sha256-uodyfyhkg1rred64ingkwu540cb8gbpvb+eozcz/zyo='", + "'sha256-5nusiklxgjie3jiclfpyxyzshtqffzm0jthzyypijte='", "'sha256-ksltjybi6uoozfn80t6rova1rbbtp9x8qgpgwhmwbpa='", - "https://snap.licdn.com", - "https://static.axept.io", - "https://www.googletagmanager.com", "https://www.gstatic.com/", - "'sha256-6sc04y6nnqlzwzyqa3sfglajogleaasou2bnnnkusvm='" + "https://stats.beta.gouv.fr", + "https://www.googleadservices.com", + "'sha256-uodyfyhkg1rred64ingkwu540cb8gbpvb+eozcz/zyo='", + "'sha256-vhlisyhjqlxs8efpqomla3m8/vbrwdzde5zgwihjqea='", + "https://api.mapbox.com/", + "'sha256-h2mru+3m13hkajfh6/b74hvw3uotytxrvi3mupwdtj0='", + "https://googleads.g.doubleclick.net" ], "script-src-attr": [ "'none'" ], "style-src": [ "https:", - "'unsafe-inline'", - "'self'" + "'self'", + "'unsafe-inline'" ], "upgrade-insecure-requests": [ "'none'" @@ -82321,10 +82673,10 @@ "url": "https://chauffage-urbain.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 100, + "uptime": 99.967, "down": false, "down_since": null, - "up_since": "2024-01-01T21:10:38Z", + "up_since": "2024-01-12T19:57:31Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -82336,8 +82688,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T03:51:32Z", - "next_check_at": "2024-01-07T03:56:30Z", + "last_check_at": "2024-01-14T03:43:35Z", + "next_check_at": "2024-01-14T03:48:32Z", "created_at": "2021-04-22T19:50:54Z", "mute_until": null, "favicon_url": "https://france-chaleur-urbaine.beta.gouv.fr/favicons/favicon.ico", @@ -82345,20 +82697,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T03:21:43Z", - "expires_at": "2024-02-06T06:50:09Z", + "tested_at": "2024-01-14T03:38:38Z", + "expires_at": "2024-04-06T06:51:07Z", "valid": true, "error": null }, "metrics": { "apdex": 1, "timings": { - "redirect": 460, - "namelookup": 36, - "connection": 218, - "handshake": 140, - "response": 143, - "total": 998 + "redirect": 448, + "namelookup": 37, + "connection": 152, + "handshake": 136, + "response": 134, + "total": 906 } }, "uptimeGrade": "A", @@ -82659,7 +83011,7 @@ "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "04853F1B8616BFCFFF157637660D9104CD0E" + "finding": "04EAC6FB56DC076C32F0F98B583484EE95DE" }, { "id": "cert_serialNumberLen", @@ -82673,21 +83025,21 @@ "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "223C22B7F1BEF011535D470062D134835E8BDC10" + "finding": "F2432DD33296BA9395A5CC35AAFA4D255E51C925" }, { "id": "cert_fingerprintSHA256", "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "90302268DF319C8229C12E0759FAB2204E1AFDE09AA37BBC24EBA285A9DB8F28" + "finding": "84344BED5FD240F913C439FF2515185E35388BF25F5FB37C6DF50BC39AC61F10" }, { "id": "cert", "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -82736,21 +83088,21 @@ "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "30 >= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2023-11-08 06:50" + "finding": "2024-01-07 06:51" }, { "id": "cert_notAfter", "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2024-02-06 06:50" + "finding": "2024-04-06 06:51" }, { "id": "cert_extlifeSpan", @@ -82939,7 +83291,7 @@ "ip": "chauffage-urbain.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704598686" + "finding": "1705203311" }, { "id": "HSTS", @@ -83112,7 +83464,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=90302268DF319C8229C12E0759FAB2204E1AFDE09AA37BBC24EBA285A9DB8F28" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=84344BED5FD240F913C439FF2515185E35388BF25F5FB37C6DF50BC39AC61F10" }, { "id": "LOGJAM", @@ -83492,77 +83844,77 @@ }, { "id": "service", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -83570,7 +83922,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -83578,7 +83930,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -83586,7 +83938,7 @@ }, { "id": "cipherlist_LOW", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -83594,7 +83946,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -83602,7 +83954,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -83610,483 +83962,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2023-11-08 06:50" + "finding": "2024-01-07 06:51" }, { "id": "cert_notAfter", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2024-02-06 06:50" + "finding": "2024-04-06 06:51" }, { "id": "cert_extlifeSpan", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704598780" + "finding": "1705203366" }, { "id": "HSTS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -84094,7 +84446,7 @@ }, { "id": "heartbleed", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -84103,7 +84455,7 @@ }, { "id": "CCS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -84112,7 +84464,7 @@ }, { "id": "ticketbleed", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -84121,7 +84473,7 @@ }, { "id": "ROBOT", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -84130,7 +84482,7 @@ }, { "id": "secure_renego", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -84138,7 +84490,7 @@ }, { "id": "secure_client_renego", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -84147,7 +84499,7 @@ }, { "id": "CRIME_TLS", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -84156,7 +84508,7 @@ }, { "id": "BREACH", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -84165,7 +84517,7 @@ }, { "id": "POODLE_SSL", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -84174,14 +84526,14 @@ }, { "id": "fallback_SCSV", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -84190,7 +84542,7 @@ }, { "id": "FREAK", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -84199,7 +84551,7 @@ }, { "id": "DROWN", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -84208,16 +84560,16 @@ }, { "id": "DROWN_hint", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=90302268DF319C8229C12E0759FAB2204E1AFDE09AA37BBC24EBA285A9DB8F28" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=84344BED5FD240F913C439FF2515185E35388BF25F5FB37C6DF50BC39AC61F10" }, { "id": "LOGJAM", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -84226,7 +84578,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -84235,7 +84587,7 @@ }, { "id": "BEAST", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -84244,7 +84596,7 @@ }, { "id": "LUCKY13", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -84253,7 +84605,7 @@ }, { "id": "winshock", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -84262,7 +84614,7 @@ }, { "id": "RC4", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -84271,399 +84623,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", + "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -84671,7 +85023,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -84679,7 +85031,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -84687,7 +85039,7 @@ }, { "id": "cipherlist_LOW", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -84695,7 +85047,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -84703,7 +85055,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -84711,483 +85063,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2023-11-08 06:50" + "finding": "2024-01-07 06:51" }, { "id": "cert_notAfter", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2024-02-06 06:50" + "finding": "2024-04-06 06:51" }, { "id": "cert_extlifeSpan", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704598873" + "finding": "1705203417" }, { "id": "HSTS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -85195,7 +85547,7 @@ }, { "id": "heartbleed", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -85204,7 +85556,7 @@ }, { "id": "CCS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -85213,7 +85565,7 @@ }, { "id": "ticketbleed", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -85222,7 +85574,7 @@ }, { "id": "ROBOT", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -85231,7 +85583,7 @@ }, { "id": "secure_renego", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -85239,7 +85591,7 @@ }, { "id": "secure_client_renego", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -85248,7 +85600,7 @@ }, { "id": "CRIME_TLS", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -85257,7 +85609,7 @@ }, { "id": "BREACH", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -85266,7 +85618,7 @@ }, { "id": "POODLE_SSL", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -85275,14 +85627,14 @@ }, { "id": "fallback_SCSV", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -85291,7 +85643,7 @@ }, { "id": "FREAK", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -85300,7 +85652,7 @@ }, { "id": "DROWN", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -85309,16 +85661,16 @@ }, { "id": "DROWN_hint", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=90302268DF319C8229C12E0759FAB2204E1AFDE09AA37BBC24EBA285A9DB8F28" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=84344BED5FD240F913C439FF2515185E35388BF25F5FB37C6DF50BC39AC61F10" }, { "id": "LOGJAM", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -85327,7 +85679,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -85336,7 +85688,7 @@ }, { "id": "BEAST", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -85345,7 +85697,7 @@ }, { "id": "LUCKY13", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -85354,7 +85706,7 @@ }, { "id": "winshock", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -85363,7 +85715,7 @@ }, { "id": "RC4", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -85372,399 +85724,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "chauffage-urbain.beta.gouv.fr/148.253.75.120", + "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -85772,7 +86124,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -85780,7 +86132,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -85788,7 +86140,7 @@ }, { "id": "cipherlist_LOW", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -85796,7 +86148,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -85804,7 +86156,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -85812,483 +86164,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2023-11-08 06:50" + "finding": "2024-01-07 06:51" }, { "id": "cert_notAfter", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2024-02-06 06:50" + "finding": "2024-04-06 06:51" }, { "id": "cert_extlifeSpan", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704598967" + "finding": "1705203469" }, { "id": "HSTS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -86296,7 +86648,7 @@ }, { "id": "heartbleed", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -86305,7 +86657,7 @@ }, { "id": "CCS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -86314,7 +86666,7 @@ }, { "id": "ticketbleed", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -86323,7 +86675,7 @@ }, { "id": "ROBOT", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -86332,7 +86684,7 @@ }, { "id": "secure_renego", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -86340,7 +86692,7 @@ }, { "id": "secure_client_renego", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -86349,7 +86701,7 @@ }, { "id": "CRIME_TLS", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -86358,7 +86710,7 @@ }, { "id": "BREACH", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -86367,7 +86719,7 @@ }, { "id": "POODLE_SSL", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -86376,14 +86728,14 @@ }, { "id": "fallback_SCSV", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -86392,7 +86744,7 @@ }, { "id": "FREAK", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -86401,7 +86753,7 @@ }, { "id": "DROWN", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -86410,16 +86762,16 @@ }, { "id": "DROWN_hint", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=90302268DF319C8229C12E0759FAB2204E1AFDE09AA37BBC24EBA285A9DB8F28" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=84344BED5FD240F913C439FF2515185E35388BF25F5FB37C6DF50BC39AC61F10" }, { "id": "LOGJAM", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -86428,7 +86780,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -86437,7 +86789,7 @@ }, { "id": "BEAST", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -86446,7 +86798,7 @@ }, { "id": "LUCKY13", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -86455,7 +86807,7 @@ }, { "id": "winshock", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -86464,7 +86816,7 @@ }, { "id": "RC4", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -86473,332 +86825,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "chauffage-urbain.beta.gouv.fr/5.104.101.30", + "ip": "chauffage-urbain.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "378" + "finding": "212" } ], "thirdparties": { @@ -86837,50 +87189,50 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/www-player.css", + "url": "https://www.youtube.com/s/player/80b90bfd/www-player.css", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" } }, { - "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/player_ias.vflset/en_US/embed.js", + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, { - "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/www-embed-player.vflset/www-embed-player.js", + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/player_ias.vflset/en_US/base.js", + "url": "https://www.youtube.com/s/player/80b90bfd/player_ias.vflset/en_US/embed.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", + "type": "youtube", + "url": "https://www.youtube.com/s/player/80b90bfd/www-embed-player.vflset/www-embed-player.js", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", + "type": "youtube", + "url": "https://www.youtube.com/s/player/80b90bfd/player_ias.vflset/en_US/base.js", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" } }, { @@ -86933,7 +87285,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/player_ias.vflset/en_US/remote.js", + "url": "https://www.youtube.com/s/player/80b90bfd/player_ias.vflset/en_US/remote.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -86941,7 +87293,7 @@ }, { "type": "google", - "url": "https://www.google.com/js/th/sLx6qsRU46GEe0D3YqweyWcV0efz1f9DxDQkuEUxY-c.js", + "url": "https://www.google.com/js/th/8Hi5A8hOrTMN2tBLhmCcAO89l4B_aU1bigXouSWjw-4.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -86971,14 +87323,6 @@ "message": "Use hosted Matomo instance" } }, - { - "type": "google", - "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", - "details": { - "id": "google", - "message": "Use hosted Matomo instance" - } - }, { "type": "google", "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", @@ -87003,26 +87347,22 @@ "message": "Dont embed youtube scripts, use peertube" } }, + { + "type": "google", + "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", + "details": { + "id": "google", + "message": "Use hosted Matomo instance" + } + }, { "type": "youtube", - "url": "https://www.youtube.com/generate_204?8B-OCg", + "url": "https://www.youtube.com/generate_204?mQnCOA", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" } }, - { - "type": "unknown", - "url": "https://api.mapbox.com/mapbox-gl-js/plugins/mapbox-gl-rtl-text/v0.2.3/mapbox-gl-rtl-text.js" - }, - { - "type": "unknown", - "url": "https://openmaptiles.github.io/osm-bright-gl-style/sprite.json" - }, - { - "type": "unknown", - "url": "https://openmaptiles.github.io/osm-bright-gl-style/sprite.png" - }, { "type": "youtube", "url": "https://www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8", @@ -87050,7 +87390,7 @@ }, { "name": "__Host-next-auth.csrf-token", - "value": "df7b074e2a69c19e56aa35c0ebe1582b316e62b70350d7e4543a72976bbc5c63%7Cdf6f1cdda394c1ce1bdebd299eda804ea52a3a621bca219a8b6b2f026f84abb6", + "value": "eac56f4f3341b9efb1cbad592c401de5995a5ff82f93c838253765195095c1fb%7Cb92d639ef9e236c7f0fa7592b56d179dac65412fc56bffcf717a1fe4336dc92b", "domain": "france-chaleur-urbaine.beta.gouv.fr", "path": "/", "expires": -1, @@ -87066,16 +87406,16 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' 'sha256-H2mRU+3M13HkAJfH6/b74hVw3UOtytXrVI3MuPwDTj0=' https://stats.data.gouv.fr https://stats.beta.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://stats.beta.gouv.fr https://cdn.linkedin.oribi.io https://wxs.ign.fr https://api.mapbox.com/;frame-src https://www.youtube.com/;worker-src 'self' blob:", + "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https: data:;object-src 'none';script-src 'self' 'sha256-TXnVHDn1j7ztxp+9fAgGYQt5MDdGcfG3DMT2sJR4v/I=' 'sha256-uoDYfYhkG1Rred64INgKWU540cb8GBpVb+EoZcz/Zyo=' 'sha256-eGdlwoVjdfoAxTtVJ5JOqj8MsevToXdxA0rkY5IXIxk=' 'sha256-5nUSiKlxGJiE3JicLfPYxYZShtQfFZM0jtHZyyPijTE=' 'sha256-PAh6kZHWrs47demJXB9x6PfCgghwAf4BZ4ncKf/BhiU=' 'sha256-vHLisyhJqlXs8efpQOmla3M8/VBRwdzde5ZgWIhJQEA=' 'sha256-3I33qFPfa/PLrN/3rrrC4vJBjmKYiuXWQ+ZfnHiEWmo=' 'sha256-ksltjYbI6Uoozfn80t6ROvA1rBbTP9X8qGPGwHmWBpA=' 'sha256-6SC04Y6nNQLzwzyqa3SfGlAJoGLEAasou2bnNnkusvM=' 'sha256-H2mRU+3M13HkAJfH6/b74hVw3UOtytXrVI3MuPwDTj0=' 'sha256-344ePyJp7yxx64WKWpbs/ZvEDHA6mve7lS3i90cEPT4=' https://stats.data.gouv.fr https://stats.beta.gouv.fr https://static.axept.io https://connect.facebook.net https://www.gstatic.com/ https://www.googletagmanager.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://connect.facebook.net https://snap.licdn.com https://api.mapbox.com/;script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests ;connect-src 'self' https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io https://france-chaleur-urbaine.beta.gouv.fr/ https://france-chaleur-urbaine-dev.osc-fr1.scalingo.io/ https://api-adresse.data.gouv.fr/ https://stats.data.gouv.fr https://stats.beta.gouv.fr https://cdn.linkedin.oribi.io https://google.com/ https://px.ads.linkedin.com https://wxs.ign.fr https://api.mapbox.com/;frame-src https://td.doubleclick.net https://www.facebook.com/ https://www.youtube.com/;worker-src 'self' blob:", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 03:36:22 GMT", - "etag": "\"mzmrfe7wnk1r37\"", + "date": "Sun, 14 Jan 2024 03:34:02 GMT", + "etag": "\"o4m2yxhvcm1l7p\"", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-powered-by": "Next.js", - "x-request-id": "2bf8eb94-29b8-4269-bde8-27a9ec2039d8", + "x-request-id": "9502e7c7-382e-4044-88b8-420c13432644", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -87137,19 +87477,15 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.93.229", + "ip": "146.75.37.229", "geoip": { "city": { - "geoname_id": 5368361, + "geoname_id": 4781530, "names": { - "de": "Los Angeles", - "en": "Los Angeles", - "es": "Los Ángeles", - "fr": "Los Angeles", - "ja": "ロサンゼルス", - "pt-BR": "Los Angeles", - "ru": "Лос-Анджелес", - "zh-CN": "洛杉矶" + "de": "Reston", + "en": "Reston", + "ja": "レストン", + "ru": "Рестон" } }, "continent": { @@ -87170,7 +87506,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87182,19 +87518,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 34.0544, - "longitude": -118.244, - "metro_code": 803, - "time_zone": "America/Los_Angeles" + "latitude": 38.9609, + "longitude": -77.3429, + "metro_code": 511, + "time_zone": "America/New_York" }, "postal": { - "code": "90012" + "code": "20190" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87206,17 +87542,15 @@ }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 6254928, + "iso_code": "VA", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" } } ] @@ -87224,7 +87558,7 @@ }, { "hostname": "www.youtube.com", - "ip": "142.250.72.142", + "ip": "142.251.167.136", "geoip": { "continent": { "code": "NA", @@ -87244,7 +87578,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87264,7 +87598,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87278,7 +87612,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.189.3", + "ip": "172.253.63.94", "geoip": { "continent": { "code": "NA", @@ -87298,7 +87632,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87318,7 +87652,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87332,7 +87666,7 @@ }, { "hostname": "googleads.g.doubleclick.net", - "ip": "172.217.14.98", + "ip": "142.251.16.156", "geoip": { "continent": { "code": "NA", @@ -87352,7 +87686,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87372,7 +87706,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87386,7 +87720,7 @@ }, { "hostname": "static.doubleclick.net", - "ip": "142.250.217.134", + "ip": "142.251.163.149", "geoip": { "continent": { "code": "NA", @@ -87406,7 +87740,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87426,7 +87760,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87440,7 +87774,7 @@ }, { "hostname": "jnn-pa.googleapis.com", - "ip": "142.250.72.234", + "ip": "172.253.122.95", "geoip": { "continent": { "code": "NA", @@ -87460,7 +87794,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87480,7 +87814,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87494,7 +87828,7 @@ }, { "hostname": "www.google.com", - "ip": "142.250.217.132", + "ip": "172.253.115.99", "geoip": { "continent": { "code": "NA", @@ -87514,7 +87848,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87534,7 +87868,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87548,7 +87882,7 @@ }, { "hostname": "i.ytimg.com", - "ip": "142.251.40.54", + "ip": "142.251.167.119", "geoip": { "continent": { "code": "NA", @@ -87568,7 +87902,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87588,7 +87922,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87602,7 +87936,7 @@ }, { "hostname": "yt3.ggpht.com", - "ip": "142.250.189.1", + "ip": "172.253.115.132", "geoip": { "continent": { "code": "NA", @@ -87622,7 +87956,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87642,7 +87976,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87656,61 +87990,7 @@ }, { "hostname": "www.gstatic.com", - "ip": "142.250.188.227", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "api.mapbox.com", - "ip": "216.137.39.26", + "ip": "172.253.122.94", "geoip": { "continent": { "code": "NA", @@ -87730,7 +88010,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87750,7 +88030,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -87761,76 +88041,6 @@ } } } - }, - { - "hostname": "openmaptiles.github.io", - "ip": "185.199.110.153", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 34.0544, - "longitude": -118.244, - "time_zone": "America/Los_Angeles" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5332921, - "iso_code": "CA", - "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" - } - } - ] - } } ] }, @@ -87846,7 +88056,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 03:35:11", + "@generated": "Sun, 14 Jan 2024 03:31:36", "site": [ { "@name": "https://chauffage-urbain.beta.gouv.fr", @@ -87854,13 +88064,6 @@ "@port": "443", "@ssl": "true", "alerts": [ - { - "name": "Absence of Anti-CSRF Tokens", - "riskcode": "2", - "confidence": "1", - "riskdesc": "Medium (Low)", - "desc": "

No Anti-CSRF tokens were found in a HTML submission form.

A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.

CSRF attacks are effective in a number of situations, including:

* The victim has an active session on the target site.

* The victim is authenticated via HTTP auth on the target site.

* The victim is on the same local network as the target site.

CSRF has primarily been used to perform an action against a target site using the victim's privileges, but recent techniques have been discovered to disclose information by gaining access to the response. The risk of information disclosure is dramatically increased when the target site is vulnerable to XSS, because XSS can be used as a platform for CSRF, allowing the attack to operate within the bounds of the same-origin policy.

" - }, { "name": "CSP: Wildcard Directive", "riskcode": "2", @@ -87978,6 +88181,41 @@ ] }, "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "chauffage-urbain.beta.gouv.fr.", + "matched-at": "chauffage-urbain.beta.gouv.fr", + "timestamp": "2024-01-14T03:39:10.130694399Z", + "matcher-status": true + }, { "template": "dns/dns-saas-service-detection.yaml", "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", @@ -88010,42 +88248,7 @@ "extracted-results": [ "betagouv-redirections.osc-fr1.scalingo.io." ], - "timestamp": "2024-01-07T03:44:31.972301211Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "chauffage-urbain.beta.gouv.fr.", - "matched-at": "chauffage-urbain.beta.gouv.fr", - "timestamp": "2024-01-07T03:44:32.007079281Z", + "timestamp": "2024-01-14T03:39:10.883618507Z", "matcher-status": true }, { @@ -88083,8 +88286,8 @@ "type": "http", "host": "https://chauffage-urbain.beta.gouv.fr", "matched-at": "https://chauffage-urbain.beta.gouv.fr/", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T03:46:12.78741662Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:40:16.360228913Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: chauffage-urbain.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chauffage-urbain.beta.gouv.fr/'", "matcher-status": true }, @@ -88114,8 +88317,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T03:52:02.042041782Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:45:55.873346535Z", "matcher-status": true }, { @@ -88144,8 +88347,8 @@ "extracted-results": [ "chauffage-urbain.beta.gouv.fr" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T03:52:02.042177275Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:45:55.873453954Z", "matcher-status": true }, { @@ -88175,8 +88378,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T03:52:04.019780265Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:45:56.934843191Z", "matcher-status": true }, { @@ -88206,8 +88409,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T03:52:04.418045771Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T03:45:57.124210093Z", "matcher-status": true } ], @@ -88215,7 +88418,7 @@ { "requestedUrl": "https://chauffage-urbain.beta.gouv.fr/", "finalUrl": "https://france-chaleur-urbaine.beta.gouv.fr/", - "fetchTime": "2024-01-07T03:35:25.765Z", + "fetchTime": "2024-01-14T03:31:50.328Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://chauffage-urbain.beta.gouv.fr/) was redirected to https://france-chaleur-urbaine.beta.gouv.fr/. Try testing the second URL directly." ], @@ -88249,7 +88452,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.83 + "score": 0.92 }, "seo": { "title": "SEO", @@ -88280,53 +88483,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 26030, + "numericValue": 23932, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3752, - "firstMeaningfulPaint": 3752, - "largestContentfulPaint": 17215, - "interactive": 26030, - "speedIndex": 13185, - "totalBlockingTime": 1231, - "maxPotentialFID": 319, - "cumulativeLayoutShift": 0.770998523288303, - "cumulativeLayoutShiftMainFrame": 0.770998523288303, - "totalCumulativeLayoutShift": 0.770998523288303, + "firstContentfulPaint": 3223, + "firstMeaningfulPaint": 3223, + "largestContentfulPaint": 16162, + "interactive": 23932, + "speedIndex": 11564, + "totalBlockingTime": 1209, + "maxPotentialFID": 225, + "cumulativeLayoutShift": 0.7414902496337891, + "cumulativeLayoutShiftMainFrame": 0.7414902496337891, + "totalCumulativeLayoutShift": 0.7414902496337891, "observedTimeOrigin": 0, - "observedTimeOriginTs": 375734815, + "observedTimeOriginTs": 303518241, "observedNavigationStart": 0, - "observedNavigationStartTs": 375734815, - "observedFirstPaint": 1300, - "observedFirstPaintTs": 377034690, - "observedFirstContentfulPaint": 1300, - "observedFirstContentfulPaintTs": 377034690, - "observedFirstContentfulPaintAllFrames": 1300, - "observedFirstContentfulPaintAllFramesTs": 377034690, - "observedFirstMeaningfulPaint": 1300, - "observedFirstMeaningfulPaintTs": 377034690, - "observedLargestContentfulPaint": 2236, - "observedLargestContentfulPaintTs": 377970931, - "observedLargestContentfulPaintAllFrames": 2236, - "observedLargestContentfulPaintAllFramesTs": 377970931, - "observedTraceEnd": 7850, - "observedTraceEndTs": 383585044, - "observedLoad": 2653, - "observedLoadTs": 378388267, - "observedDomContentLoaded": 2162, - "observedDomContentLoadedTs": 377896733, - "observedCumulativeLayoutShift": 0.770998523288303, - "observedCumulativeLayoutShiftMainFrame": 0.770998523288303, - "observedTotalCumulativeLayoutShift": 0.770998523288303, - "observedFirstVisualChange": 1300, - "observedFirstVisualChangeTs": 377034815, - "observedLastVisualChange": 3116, - "observedLastVisualChangeTs": 378850815, - "observedSpeedIndex": 2478, - "observedSpeedIndexTs": 378212871 + "observedNavigationStartTs": 303518241, + "observedFirstPaint": 818, + "observedFirstPaintTs": 304336313, + "observedFirstContentfulPaint": 818, + "observedFirstContentfulPaintTs": 304336313, + "observedFirstContentfulPaintAllFrames": 818, + "observedFirstContentfulPaintAllFramesTs": 304336313, + "observedFirstMeaningfulPaint": 818, + "observedFirstMeaningfulPaintTs": 304336313, + "observedLargestContentfulPaint": 1532, + "observedLargestContentfulPaintTs": 305050195, + "observedLargestContentfulPaintAllFrames": 1532, + "observedLargestContentfulPaintAllFramesTs": 305050195, + "observedTraceEnd": 4436, + "observedTraceEndTs": 307954677, + "observedLoad": 2072, + "observedLoadTs": 305590587, + "observedDomContentLoaded": 1473, + "observedDomContentLoadedTs": 304990773, + "observedCumulativeLayoutShift": 0.7414902496337891, + "observedCumulativeLayoutShiftMainFrame": 0.7414902496337891, + "observedTotalCumulativeLayoutShift": 0.7414902496337891, + "observedFirstVisualChange": 819, + "observedFirstVisualChangeTs": 304337241, + "observedLastVisualChange": 2302, + "observedLastVisualChangeTs": 305820241, + "observedSpeedIndex": 1781, + "observedSpeedIndexTs": 305299288 }, { "lcpInvalidated": false @@ -88344,23 +88547,23 @@ "type": "debugdata", "items": [ { - "numRequests": 155, + "numRequests": 141, "numScripts": 37, "numStylesheets": 5, "numFonts": 8, - "numTasks": 3302, - "numTasksOver10ms": 29, - "numTasksOver25ms": 12, + "numTasks": 2502, + "numTasksOver10ms": 21, + "numTasksOver25ms": 11, "numTasksOver50ms": 6, - "numTasksOver100ms": 1, + "numTasksOver100ms": 3, "numTasksOver500ms": 0, - "rtt": 8.082, - "throughput": 26670810.23426371, - "maxRtt": 150.719, - "maxServerLatency": 320.401, - "totalByteWeight": 5083069, - "totalTaskTime": 1528.8070000000096, - "mainDocumentTransferSize": 18167 + "rtt": 0, + "throughput": 45092193.17449086, + "maxRtt": 85.33800000000001, + "maxServerLatency": 92.61400000000002, + "totalByteWeight": 4676541, + "totalTaskTime": 1214.3930000000196, + "mainDocumentTransferSize": 16550 } ] } @@ -88466,24 +88669,24 @@ "httpGrade": "A+", "apdex": 1, "apdexGrade": "A", - "uptime": 100, + "uptime": 99.967, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-02-06T06:50:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-04-06T06:51:00.000Z", "testsslGrade": "A", "cookiesGrade": "B", "cookiesCount": 2, "trackersGrade": "F", - "trackersCount": 30, + "trackersCount": 27, "lighthouse_performance": 0, "lighthouse_performanceGrade": "F", "lighthouse_accessibility": 0.84, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.83, - "lighthouse_best-practicesGrade": "B", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", "lighthouse_seo": 0.92, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.4, @@ -88504,7 +88707,7 @@ "http": { "url": "https://classe-a-12.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 03:45:29 GMT", + "end_time": "Sun, 14 Jan 2024 03:59:23 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -88515,16 +88718,16 @@ "age": "0", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 03:45:27 GMT", + "date": "Sun, 14 Jan 2024 03:59:20 GMT", "etag": "\"8f7-5e774388ab981-gzip\"", "last-modified": "Tue, 30 Aug 2022 12:07:14 GMT", "server": "Apache", "vary": "Accept-Encoding", "via": "1.1 alproxy" }, - "scan_id": 46227994, + "scan_id": 46437476, "score": 20, - "start_time": "Sun, 07 Jan 2024 03:45:24 GMT", + "start_time": "Sun, 14 Jan 2024 03:58:35 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -88710,8 +88913,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T03:53:51Z", - "next_check_at": "2024-01-07T04:53:45Z", + "last_check_at": "2024-01-14T04:00:55Z", + "next_check_at": "2024-01-14T05:00:26Z", "created_at": "2021-04-22T21:33:49Z", "mute_until": "forever", "favicon_url": "https://classe-a-12.beta.gouv.fr/favicons/favicon-192x192.png", @@ -88719,24 +88922,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-06T19:56:37Z", + "tested_at": "2024-01-13T21:03:28Z", "expires_at": "2024-02-24T07:34:04Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.9, "timings": { "redirect": 0, - "namelookup": 135, - "connection": 88, - "handshake": 96, - "response": 217, - "total": 536 + "namelookup": 110, + "connection": 86, + "handshake": 99, + "response": 210, + "total": 506 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "F" }, "nmap": { "host": "classe-a-12.beta.gouv.fr", @@ -88964,7 +89167,7 @@ "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -89111,7 +89314,7 @@ "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", @@ -89307,21 +89510,21 @@ "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "1704599191" + "finding": "1705204827" }, { "id": "HTTP_headerAge", "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "23 seconds" + "finding": "53 seconds" }, { "id": "HSTS", @@ -89877,7 +90080,7 @@ "ip": "classe-a-12.beta.gouv.fr/185.31.40.21", "port": "443", "severity": "INFO", - "finding": "58" + "finding": "102" } ], "thirdparties": { @@ -89897,7 +90100,7 @@ "value": "1", "domain": "classe-a-12.beta.gouv.fr", "path": "/", - "expires": 1704600961, + "expires": 1705206592, "size": 16, "httpOnly": false, "secure": false, @@ -89909,10 +90112,10 @@ }, { "name": "_pk_id.72.5fc2", - "value": "9102c97a7646bf9c.1704599161.", + "value": "460952e5954cea21.1705204793.", "domain": "classe-a-12.beta.gouv.fr", "path": "/", - "expires": 1738554361, + "expires": 1739159993, "size": 42, "httpOnly": false, "secure": false, @@ -89925,11 +90128,11 @@ ], "headers": { "accept-ranges": "bytes", - "age": "232", + "age": "279", "content-encoding": "br", "content-length": "788", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 03:42:08 GMT", + "date": "Sun, 14 Jan 2024 03:55:12 GMT", "etag": "\"8f7-5e774388ab981-br\"", "last-modified": "Tue, 30 Aug 2022 12:07:14 GMT", "server": "Apache", @@ -89995,7 +90198,7 @@ }, { "hostname": "use.fontawesome.com", - "ip": "172.64.141.13", + "ip": "172.64.140.13", "geoip": { "continent": { "code": "NA", @@ -90015,7 +90218,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -90035,7 +90238,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -90168,7 +90371,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 03:43:34", + "@generated": "Sun, 14 Jan 2024 03:56:44", "site": [ { "@name": "https://classe-a-12.beta.gouv.fr", @@ -90290,7 +90493,7 @@ { "requestedUrl": "https://classe-a-12.beta.gouv.fr/", "finalUrl": "https://classe-a-12.beta.gouv.fr/", - "fetchTime": "2024-01-07T03:43:48.536Z", + "fetchTime": "2024-01-14T03:56:58.828Z", "runWarnings": [ "The page loaded too slowly to finish within the time limit. Results may be incomplete." ], @@ -90303,7 +90506,7 @@ "snapshot" ], "id": "performance", - "score": 0.6125234603881836 + "score": 0.6125240325927734 }, "accessibility": { "title": "Accessibility", @@ -90355,53 +90558,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3659, + "numericValue": 3670, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2301, - "firstMeaningfulPaint": 3659, - "largestContentfulPaint": 5217, - "interactive": 3659, - "speedIndex": 2670, - "totalBlockingTime": 72, - "maxPotentialFID": 122, + "firstContentfulPaint": 2377, + "firstMeaningfulPaint": 3670, + "largestContentfulPaint": 5064, + "interactive": 3670, + "speedIndex": 3173, + "totalBlockingTime": 138, + "maxPotentialFID": 137, "cumulativeLayoutShift": 0.24990216233995227, "cumulativeLayoutShiftMainFrame": 0.24990216233995227, "totalCumulativeLayoutShift": 0.24990216233995227, "observedTimeOrigin": 0, - "observedTimeOriginTs": 347119922, + "observedTimeOriginTs": 326233843, "observedNavigationStart": 0, - "observedNavigationStartTs": 347119922, - "observedFirstPaint": 736, - "observedFirstPaintTs": 347855887, - "observedFirstContentfulPaint": 736, - "observedFirstContentfulPaintTs": 347855887, - "observedFirstContentfulPaintAllFrames": 736, - "observedFirstContentfulPaintAllFramesTs": 347855887, - "observedFirstMeaningfulPaint": 1076, - "observedFirstMeaningfulPaintTs": 348195764, - "observedLargestContentfulPaint": 1087, - "observedLargestContentfulPaintTs": 348206973, - "observedLargestContentfulPaintAllFrames": 1087, - "observedLargestContentfulPaintAllFramesTs": 348206973, - "observedTraceEnd": 45009, - "observedTraceEndTs": 392128885, - "observedLoad": 1157, - "observedLoadTs": 348276664, - "observedDomContentLoaded": 733, - "observedDomContentLoadedTs": 347853043, + "observedNavigationStartTs": 326233843, + "observedFirstPaint": 1092, + "observedFirstPaintTs": 327326208, + "observedFirstContentfulPaint": 1092, + "observedFirstContentfulPaintTs": 327326208, + "observedFirstContentfulPaintAllFrames": 1092, + "observedFirstContentfulPaintAllFramesTs": 327326208, + "observedFirstMeaningfulPaint": 1662, + "observedFirstMeaningfulPaintTs": 327895572, + "observedLargestContentfulPaint": 1673, + "observedLargestContentfulPaintTs": 327906478, + "observedLargestContentfulPaintAllFrames": 1673, + "observedLargestContentfulPaintAllFramesTs": 327906478, + "observedTraceEnd": 45012, + "observedTraceEndTs": 371245661, + "observedLoad": 1895, + "observedLoadTs": 328129064, + "observedDomContentLoaded": 1089, + "observedDomContentLoadedTs": 327323157, "observedCumulativeLayoutShift": 0.24990216233995227, "observedCumulativeLayoutShiftMainFrame": 0.24990216233995227, "observedTotalCumulativeLayoutShift": 0.24990216233995227, - "observedFirstVisualChange": 732, - "observedFirstVisualChangeTs": 347851922, - "observedLastVisualChange": 1149, - "observedLastVisualChangeTs": 348268922, - "observedSpeedIndex": 810, - "observedSpeedIndexTs": 347930249 + "observedFirstVisualChange": 1103, + "observedFirstVisualChangeTs": 327336843, + "observedLastVisualChange": 1669, + "observedLastVisualChangeTs": 327902843, + "observedSpeedIndex": 1236, + "observedSpeedIndexTs": 327470067 }, { "lcpInvalidated": false @@ -90423,18 +90626,18 @@ "numScripts": 4, "numStylesheets": 3, "numFonts": 8, - "numTasks": 1224, - "numTasksOver10ms": 7, - "numTasksOver25ms": 1, + "numTasks": 1259, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 11.325, - "throughput": 43754476.12113493, - "maxRtt": 85.956, - "maxServerLatency": 18.575999999999993, - "totalByteWeight": 3080069, - "totalTaskTime": 263.983999999999, + "rtt": 8.692, + "throughput": 26211152.691587552, + "maxRtt": 151.907, + "maxServerLatency": 23.955000000000013, + "totalByteWeight": 3080066, + "totalTaskTime": 206.46899999999926, "mainDocumentTransferSize": 934 } ] @@ -90528,8 +90731,8 @@ "sonarcloud": null, "summary": { "httpGrade": "F", - "apdex": 1, - "apdexGrade": "A", + "apdex": 0.9, + "apdexGrade": "F", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -90542,7 +90745,7 @@ "cookiesCount": 2, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.6125234603881836, + "lighthouse_performance": 0.6125240325927734, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.71, "lighthouse_accessibilityGrade": "B", @@ -90568,7 +90771,7 @@ "http": { "url": "https://competencevalidee.pole-emploi.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 03:49:27 GMT", + "end_time": "Sun, 14 Jan 2024 03:59:37 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -90578,15 +90781,15 @@ "Content-Encoding": "gzip", "Content-Length": "513", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 03:49:26 GMT", - "Expires": "Sun, 07 Jan 2024 04:04:26 GMT", - "Last-Modified": "Mon, 04 Dec 2023 13:24:00 GMT", - "Set-Cookie": "BIGipServerPOOL_Z1_PROD_MOP_HTTP=848562954.20480.0000; path=/; Httponly; Secure, TS014195a1=0150c672c31bebe56749e86bbc142c8161dbe0a0f331d23894a488ebec34874774d20d92d567023e0fbefcbb97b369940af0d06240; Path=/; Domain=.candidat.pole-emploi.fr", + "Date": "Sun, 14 Jan 2024 03:59:35 GMT", + "Expires": "Sun, 14 Jan 2024 04:14:35 GMT", + "Last-Modified": "Mon, 04 Dec 2023 13:23:59 GMT", + "Set-Cookie": "BIGipServerPOOL_Z1_PROD_MOP_HTTP=848562954.20480.0000; path=/; Httponly; Secure, TS014195a1=0150c672c30fe4dd49adbef4673b9bd1fd1422a76f8621cb10e8e7b81faa5acc82e6ea2166391a357518898bd0d3536bd029007f95; Path=/; Domain=.candidat.pole-emploi.fr", "Vary": "Accept-Encoding" }, - "scan_id": 46228023, + "scan_id": 46437450, "score": 0, - "start_time": "Sun, 07 Jan 2024 03:49:21 GMT", + "start_time": "Sun, 14 Jan 2024 03:57:05 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 7, @@ -90823,39 +91026,39 @@ "version": "8.2p1 Ubuntu 4ubuntu0.11", "vulnerabilities": [ { - "type": "cve", "id": "CVE-2020-15778", "is_exploit": "false", + "type": "cve", "cvss": "6.8" }, { - "type": "githubexploit", "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", "is_exploit": "true", + "type": "githubexploit", "cvss": "6.8" }, { - "type": "githubexploit", "id": "10213DBE-F683-58BB-B6D3-353173626207", "is_exploit": "true", + "type": "githubexploit", "cvss": "6.8" }, { - "type": "prion", "id": "PRION:CVE-2020-12062", "is_exploit": "false", + "type": "prion", "cvss": "5.0" }, { - "type": "prion", "id": "PRION:CVE-2016-20012", "is_exploit": "false", + "type": "prion", "cvss": "5.0" }, { - "type": "cve", "id": "CVE-2020-12062", "is_exploit": "false", + "type": "cve", "cvss": "5.0" } ] @@ -90869,21 +91072,21 @@ "version": "1.17.0", "vulnerabilities": [ { - "type": "prion", "id": "PRION:CVE-2019-9513", "is_exploit": "false", + "type": "prion", "cvss": "7.8" }, { - "type": "prion", "id": "PRION:CVE-2019-9511", "is_exploit": "false", + "type": "prion", "cvss": "7.8" }, { - "type": "prion", "id": "PRION:CVE-2019-9516", "is_exploit": "false", + "type": "prion", "cvss": "6.8" } ] @@ -90897,21 +91100,21 @@ "version": "1.17.0", "vulnerabilities": [ { - "type": "prion", "id": "PRION:CVE-2019-9513", "is_exploit": "false", + "type": "prion", "cvss": "7.8" }, { - "type": "prion", "id": "PRION:CVE-2019-9511", "is_exploit": "false", + "type": "prion", "cvss": "7.8" }, { - "type": "prion", "id": "PRION:CVE-2019-9516", "is_exploit": "false", + "type": "prion", "cvss": "6.8" } ] @@ -91270,7 +91473,7 @@ "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "OK", - "finding": "201 >= 60 days" + "finding": "194 >= 60 days" }, { "id": "cert_notBefore", @@ -91466,14 +91669,14 @@ "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "1704599472" + "finding": "1705204849" }, { "id": "HSTS_time", @@ -92036,7 +92239,7 @@ "ip": "competencevalidee.pole-emploi.fr/51.68.90.157", "port": "443", "severity": "INFO", - "finding": "128" + "finding": "70" } ], "thirdparties": { @@ -92115,7 +92318,7 @@ }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lr2ygxs47rwyg5xx" + "url": "https://hd.pe.fr/event?s=475540&idclient=lrcywuy9cp1iledk" }, { "type": "unknown", @@ -92159,17 +92362,17 @@ }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/hit?d=pn302&u=t9h28ej2djb&e=1%7CdailyUser%7C&e=1%7CnewMonthlyUser%7C&stamp=1704599402234&tl=fr&al=fr" + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/hit?d=pn302&u=c4vtgmtme0k&e=1%7CdailyUser%7C&e=1%7CnewMonthlyUser%7C&stamp=1705204805280&tl=fr&al=fr" } ], "cookies": [ { "name": "_pctx", - "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAGwxWUAGYAWMSAC%2BQA", + "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAOwBGVmADGhANYgAvkA", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1738727398, - "size": 96, + "expires": 1739332803, + "size": 95, "httpOnly": false, "secure": true, "session": false, @@ -92183,7 +92386,7 @@ "value": "%22exempt%22", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1738727398, + "expires": 1739332803, "size": 22, "httpOnly": false, "secure": true, @@ -92195,11 +92398,11 @@ }, { "name": "TCPID", - "value": "12410349583271377450", + "value": "1241040325783393", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1738554598, - "size": 25, + "expires": 1739160003, + "size": 21, "httpOnly": false, "secure": false, "session": false, @@ -92210,10 +92413,10 @@ }, { "name": "_pcid", - "value": "%7B%22browserId%22%3A%22lr2ygxs47rwyg5xx%22%2C%22_t%22%3A%22m6rdef4e%22%7D", + "value": "%7B%22browserId%22%3A%22lrcywuy9cp1iledk%22%2C%22_t%22%3A%22m71ducaj%22%7D", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1738727398, + "expires": 1739332803, "size": 79, "httpOnly": false, "secure": true, @@ -92225,7 +92428,7 @@ }, { "name": "TS014195a1", - "value": "0150c672c3dd7db7af0db6dfc8157a2dc8a7f0fcd868a543b5629ae327b4f606c1ba2dd2b80e572256dd1ba4495fcaad44b9123145", + "value": "0150c672c30760e0057600229019cfaf19bc38763939a41cd16822d1bcb71a4c131c418f82fdd5490a38c2525296300231bca075f3", "domain": ".candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -92258,10 +92461,10 @@ "content-encoding": "gzip", "content-length": "513", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 03:49:57 GMT", - "expires": "Sun, 07 Jan 2024 04:04:57 GMT", + "date": "Sun, 14 Jan 2024 04:00:02 GMT", + "expires": "Sun, 14 Jan 2024 04:15:02 GMT", "last-modified": "Mon, 04 Dec 2023 13:24:00 GMT", - "set-cookie": "BIGipServerPOOL_Z1_PROD_MOP_HTTP=848562954.20480.0000; path=/; Httponly; Secure\nTS014195a1=0150c672c3dd7db7af0db6dfc8157a2dc8a7f0fcd868a543b5629ae327b4f606c1ba2dd2b80e572256dd1ba4495fcaad44b9123145; Path=/; Domain=.candidat.pole-emploi.fr", + "set-cookie": "BIGipServerPOOL_Z1_PROD_MOP_HTTP=848562954.20480.0000; path=/; Httponly; Secure\nTS014195a1=0150c672c30760e0057600229019cfaf19bc38763939a41cd16822d1bcb71a4c131c418f82fdd5490a38c2525296300231bca075f3; Path=/; Domain=.candidat.pole-emploi.fr", "vary": "Accept-Encoding" }, "endpoints": [ @@ -92433,7 +92636,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -92453,7 +92656,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -92593,7 +92796,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "65.8.161.43", + "ip": "18.160.18.10", "geoip": { "continent": { "code": "NA", @@ -92613,7 +92816,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -92633,7 +92836,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -92647,7 +92850,7 @@ }, { "hostname": "hd.pe.fr", - "ip": "18.239.199.128", + "ip": "18.160.18.42", "geoip": { "continent": { "code": "NA", @@ -92667,7 +92870,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -92687,7 +92890,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -92701,7 +92904,7 @@ }, { "hostname": "privacy.trustcommander.net", - "ip": "13.37.27.232", + "ip": "52.47.53.150", "geoip": { "city": { "geoname_id": 2988507, @@ -92758,7 +92961,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -92777,7 +92980,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -92851,7 +93056,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.191.67", + "ip": "172.253.62.94", "geoip": { "continent": { "code": "NA", @@ -92871,7 +93076,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -92891,7 +93096,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -93012,7 +93217,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 03:48:54", + "@generated": "Sun, 14 Jan 2024 03:56:41", "site": [ { "@name": "https://competencevalidee.pole-emploi.fr", @@ -93208,22 +93413,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -93239,29 +93444,26 @@ "type": "dns", "host": "competencevalidee.pole-emploi.fr.", "matched-at": "competencevalidee.pole-emploi.fr", - "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com ?all\"" - ], - "timestamp": "2024-01-07T03:53:14.791167872Z", + "timestamp": "2024-01-14T04:02:11.929942004Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -93277,7 +93479,10 @@ "type": "dns", "host": "competencevalidee.pole-emploi.fr.", "matched-at": "competencevalidee.pole-emploi.fr", - "timestamp": "2024-01-07T03:53:14.79422024Z", + "extracted-results": [ + "\"v=spf1 include:spf.mailjet.com ?all\"" + ], + "timestamp": "2024-01-14T04:02:11.980277029Z", "matcher-status": true }, { @@ -93316,7 +93521,7 @@ "extracted-results": [ "1 213.32.73.220." ], - "timestamp": "2024-01-07T03:53:14.95949873Z", + "timestamp": "2024-01-14T04:02:12.828372408Z", "matcher-status": true }, { @@ -93342,7 +93547,7 @@ "host": "https://competencevalidee.pole-emploi.fr", "matched-at": "https://competencevalidee.pole-emploi.fr", "ip": "51.68.90.157", - "timestamp": "2024-01-07T03:54:30.146951897Z", + "timestamp": "2024-01-14T04:02:58.067118162Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://competencevalidee.pole-emploi.fr'", "matcher-status": true }, @@ -93369,7 +93574,7 @@ "host": "https://competencevalidee.pole-emploi.fr", "matched-at": "https://competencevalidee.pole-emploi.fr", "ip": "51.68.90.157", - "timestamp": "2024-01-07T03:54:30.147048626Z", + "timestamp": "2024-01-14T04:02:58.067158447Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://competencevalidee.pole-emploi.fr'", "matcher-status": true }, @@ -93397,7 +93602,7 @@ "host": "https://competencevalidee.pole-emploi.fr", "matched-at": "https://competencevalidee.pole-emploi.fr/robots.txt", "ip": "51.68.90.157", - "timestamp": "2024-01-07T03:55:12.453070251Z", + "timestamp": "2024-01-14T04:03:23.543091467Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://competencevalidee.pole-emploi.fr/robots.txt'", "matcher-status": true }, @@ -93437,7 +93642,7 @@ "host": "https://competencevalidee.pole-emploi.fr", "matched-at": "https://competencevalidee.pole-emploi.fr/", "ip": "51.68.90.157", - "timestamp": "2024-01-07T03:55:41.379665923Z", + "timestamp": "2024-01-14T04:03:41.022818165Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: competencevalidee.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://competencevalidee.pole-emploi.fr/'", "matcher-status": true }, @@ -93487,7 +93692,7 @@ "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11" ], "ip": "51.68.90.157", - "timestamp": "2024-01-07T03:56:53.952938218Z", + "timestamp": "2024-01-14T04:04:36.84098281Z", "matcher-status": true }, { @@ -93517,7 +93722,7 @@ "Entrust, Inc." ], "ip": "51.68.90.157", - "timestamp": "2024-01-07T03:57:45.153789561Z", + "timestamp": "2024-01-14T04:05:25.689404188Z", "matcher-status": true }, { @@ -93547,7 +93752,7 @@ "competencevalidee.pole-emploi.fr" ], "ip": "51.68.90.157", - "timestamp": "2024-01-07T03:57:45.153910496Z", + "timestamp": "2024-01-14T04:05:25.689534892Z", "matcher-status": true }, { @@ -93578,7 +93783,7 @@ "tls12" ], "ip": "51.68.90.157", - "timestamp": "2024-01-07T03:57:47.269490314Z", + "timestamp": "2024-01-14T04:05:28.268099121Z", "matcher-status": true } ], @@ -93586,7 +93791,7 @@ { "requestedUrl": "https://competencevalidee.pole-emploi.fr/", "finalUrl": "https://candidat.pole-emploi.fr/competences-validees/", - "fetchTime": "2024-01-07T03:49:09.368Z", + "fetchTime": "2024-01-14T03:56:54.379Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://competencevalidee.pole-emploi.fr/) was redirected to https://candidat.pole-emploi.fr/competences-validees/. Try testing the second URL directly." ], @@ -93599,7 +93804,7 @@ "snapshot" ], "id": "performance", - "score": 0.8262828826904297 + "score": 0.7927032470703125 }, "accessibility": { "title": "Accessibility", @@ -93651,53 +93856,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 13100, + "numericValue": 11297, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3565, - "firstMeaningfulPaint": 4483, - "largestContentfulPaint": 5786, - "interactive": 13100, - "speedIndex": 10790, - "totalBlockingTime": 352, - "maxPotentialFID": 169, - "cumulativeLayoutShift": 0.21103050888909236, - "cumulativeLayoutShiftMainFrame": 0.21103050888909236, - "totalCumulativeLayoutShift": 0.21103050888909236, + "firstContentfulPaint": 3168, + "firstMeaningfulPaint": 6218, + "largestContentfulPaint": 8473, + "interactive": 11297, + "speedIndex": 11431, + "totalBlockingTime": 208, + "maxPotentialFID": 154, + "cumulativeLayoutShift": 0.41012001185947, + "cumulativeLayoutShiftMainFrame": 0.41012001185947, + "totalCumulativeLayoutShift": 0.41012001185947, "observedTimeOrigin": 0, - "observedTimeOriginTs": 277450120, + "observedTimeOriginTs": 309199581, "observedNavigationStart": 0, - "observedNavigationStartTs": 277450120, - "observedFirstPaint": 1992, - "observedFirstPaintTs": 279441781, - "observedFirstContentfulPaint": 1992, - "observedFirstContentfulPaintTs": 279441781, - "observedFirstContentfulPaintAllFrames": 1992, - "observedFirstContentfulPaintAllFramesTs": 279441781, - "observedFirstMeaningfulPaint": 2013, - "observedFirstMeaningfulPaintTs": 279463087, - "observedLargestContentfulPaint": 2013, - "observedLargestContentfulPaintTs": 279463087, - "observedLargestContentfulPaintAllFrames": 2013, - "observedLargestContentfulPaintAllFramesTs": 279463087, - "observedTraceEnd": 5119, - "observedTraceEndTs": 282568837, - "observedLoad": 2812, - "observedLoadTs": 280261921, - "observedDomContentLoaded": 1899, - "observedDomContentLoadedTs": 279349375, - "observedCumulativeLayoutShift": 0.21103050888909236, - "observedCumulativeLayoutShiftMainFrame": 0.21103050888909236, - "observedTotalCumulativeLayoutShift": 0.21103050888909236, - "observedFirstVisualChange": 2005, - "observedFirstVisualChangeTs": 279455120, - "observedLastVisualChange": 2805, - "observedLastVisualChangeTs": 280255120, - "observedSpeedIndex": 2144, - "observedSpeedIndexTs": 279593982 + "observedNavigationStartTs": 309199581, + "observedFirstPaint": 1097, + "observedFirstPaintTs": 310296474, + "observedFirstContentfulPaint": 1097, + "observedFirstContentfulPaintTs": 310296474, + "observedFirstContentfulPaintAllFrames": 1097, + "observedFirstContentfulPaintAllFramesTs": 310296474, + "observedFirstMeaningfulPaint": 1410, + "observedFirstMeaningfulPaintTs": 310609453, + "observedLargestContentfulPaint": 1410, + "observedLargestContentfulPaintTs": 310609453, + "observedLargestContentfulPaintAllFrames": 1410, + "observedLargestContentfulPaintAllFramesTs": 310609453, + "observedTraceEnd": 3916, + "observedTraceEndTs": 313115443, + "observedLoad": 1608, + "observedLoadTs": 310807910, + "observedDomContentLoaded": 1012, + "observedDomContentLoadedTs": 310211214, + "observedCumulativeLayoutShift": 0.41012001185947, + "observedCumulativeLayoutShiftMainFrame": 0.41012001185947, + "observedTotalCumulativeLayoutShift": 0.41012001185947, + "observedFirstVisualChange": 1104, + "observedFirstVisualChangeTs": 310303581, + "observedLastVisualChange": 3404, + "observedLastVisualChangeTs": 312603581, + "observedSpeedIndex": 2126, + "observedSpeedIndexTs": 311325213 }, { "lcpInvalidated": false @@ -93715,22 +93920,22 @@ "type": "debugdata", "items": [ { - "numRequests": 22, - "numScripts": 6, + "numRequests": 25, + "numScripts": 7, "numStylesheets": 2, "numFonts": 4, - "numTasks": 687, - "numTasksOver10ms": 4, + "numTasks": 800, + "numTasksOver10ms": 6, "numTasksOver25ms": 3, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.157, - "throughput": 9971726.263268497, - "maxRtt": 163.129, - "maxServerLatency": 61.80899999999997, - "totalByteWeight": 1959354, - "totalTaskTime": 274.9999999999994, + "rtt": 5.03, + "throughput": 8964366.027728364, + "maxRtt": 97.475, + "maxServerLatency": 12.860999999999976, + "totalByteWeight": 2135408, + "totalTaskTime": 291.7929999999983, "mainDocumentTransferSize": 1063 } ] @@ -93843,7 +94048,7 @@ "cookiesCount": 6, "trackersGrade": "F", "trackersCount": 28, - "lighthouse_performance": 0.8262828826904297, + "lighthouse_performance": 0.7927032470703125, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.95, "lighthouse_accessibilityGrade": "A", @@ -93872,30 +94077,30 @@ "http": { "url": "https://communaute.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 04:05:08 GMT", + "end_time": "Sun, 14 Jan 2024 04:02:46 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "8420", - "Content-Security-Policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-KkEVyGXcCPXzvfKTfxHZSg=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-KkEVyGXcCPXzvfKTfxHZSg=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'", + "Content-Length": "8273", + "Content-Security-Policy": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-ALGu3mQ+HL5JL0op194lcQ=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-ALGu3mQ+HL5JL0op194lcQ=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 04:05:05 GMT", + "Date": "Sun, 14 Jan 2024 04:02:44 GMT", "Permissions-Policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=cwXtaEiY6ebaDxNKorrrJ7Qmeea7JQeY; expires=Sun, 05 Jan 2025 04:05:05 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=tl4868deyd0gvz1iwktjvq5z0ijr2ttf; expires=Sun, 21 Jan 2024 04:05:05 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "Sozu-Id": "01HKH1GZTM68XX198B8C76S4ZR", + "Set-Cookie": "csrftoken=0E1pdqSPn7rKkLDIx0AhcLB3hiNMGnvw; expires=Sun, 12 Jan 2025 04:02:44 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=xhjvgk4vs7owoh7j26v2306gx4f6cxb8; expires=Sun, 28 Jan 2024 04:02:44 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "Sozu-Id": "01HM325PMXSJ0RXGA5VT7CMXAK", "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", "Vary": "Cookie, Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 46228151, + "scan_id": 46437616, "score": 105, - "start_time": "Sun, 07 Jan 2024 04:05:03 GMT", + "start_time": "Sun, 14 Jan 2024 04:02:41 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -93908,57 +94113,57 @@ "output": { "data": { "connect-src": [ + "'self'", "*.sentry.io", - "https://matomo.inclusion.beta.gouv.fr/", - "'self'" + "https://matomo.inclusion.beta.gouv.fr/" ], "default-src": [ "'self'" ], "font-src": [ - "data:", + "'self'", "https://fonts.gstatic.com/", - "'self'" + "data:" ], "frame-src": [ - "https://tally.so", - "'self'" + "'self'", + "https://tally.so" ], "img-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "data:", + "'self'", "cellar-c2.services.clever-cloud.com", - "'self'" + "data:", + "https://matomo.inclusion.beta.gouv.fr/" ], "script-src": [ "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", - "https://tally.so", + "'nonce-algu3mq+hl5jl0op194lcq=='", + "'self'", "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", - "'nonce-kkevygxccpxzvfktfxhzsg=='", - "https://matomo.inclusion.beta.gouv.fr/", + "https://tally.so", + "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "'self'", - "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js" + "https://matomo.inclusion.beta.gouv.fr/" ], "script-src-elem": [ "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", - "https://tally.so", + "'nonce-algu3mq+hl5jl0op194lcq=='", + "'self'", "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", - "'nonce-kkevygxccpxzvfktfxhzsg=='", - "https://matomo.inclusion.beta.gouv.fr/", + "https://tally.so", + "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "'self'", - "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js" + "https://matomo.inclusion.beta.gouv.fr/" ], "style-src": [ - "https://fonts.googleapis.com", + "'self'", "'unsafe-inline'", - "'self'" + "https://fonts.googleapis.com" ], "style-src-elem": [ - "https://fonts.googleapis.com", + "'self'", "'unsafe-inline'", - "'self'" + "https://fonts.googleapis.com" ] }, "http": true, @@ -94001,7 +94206,7 @@ "data": { "csrftoken": { "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1736049907, + "expires": 1736654565, "httponly": false, "max-age": null, "path": "/", @@ -94011,7 +94216,7 @@ }, "sessionid": { "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1705809906, + "expires": 1706414564, "httponly": true, "max-age": null, "path": "/", @@ -94185,8 +94390,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T04:12:09Z", - "next_check_at": "2024-01-07T05:11:59Z", + "last_check_at": "2024-01-14T04:20:56Z", + "next_check_at": "2024-01-14T05:20:43Z", "created_at": "2021-04-27T20:02:33Z", "mute_until": null, "favicon_url": "https://communaute.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", @@ -94194,29 +94399,29 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T02:13:00Z", + "tested_at": "2024-01-14T03:21:01Z", "expires_at": "2024-02-22T09:10:53Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.9, "timings": { "redirect": 0, - "namelookup": 48, - "connection": 136, - "handshake": 139, - "response": 238, - "total": 561 + "namelookup": 144, + "connection": 190, + "handshake": 198, + "response": 349, + "total": 881 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "F" }, "nmap": { "host": "communaute.inclusion.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "987", + "closed_ports": "986", "open_ports": [ { "service": { @@ -94225,6 +94430,13 @@ "vulnerabilities": [] } }, + { + "service": { + "name": "tcpwrapped", + "id": "179", + "vulnerabilities": [] + } + }, { "service": { "name": "https", @@ -94292,7 +94504,8 @@ }, { "service": { - "name": "cpdlc", + "name": "http", + "product": "JBoss Enterprise Application Platform", "id": "5911", "vulnerabilities": [] } @@ -94317,6 +94530,1205 @@ "dependabot": null, "codescan": null, "testssl": [ + { + "id": "service", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "FS", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1" + }, + { + "id": "TLS_extensions", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "TLS_timestamp", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" + }, + { + "id": "cert_serialNumberLen", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "18" + }, + { + "id": "cert_fingerprintSHA1", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" + }, + { + "id": "cert_fingerprintSHA256", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" + }, + { + "id": "cert", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFDzCCA/egAwIBAgISA1+ym5ezKG7n1rPkzEbmzKulMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjQwOTEwNTRaFw0yNDAyMjIwOTEwNTNaMCwxKjAoBgNVBAMTIWNvbW11bmF1dGUuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAICFFc6w+WX9Po8AOG0uBey4tdN5RmSVHBfxWDxav2wlppJ28WXywO3hRUge2hYBGohO92mw5LTk232PemIg260Sb8KzP8ywA11cbmbiDogz6fGnkAF334u40fasGUdmZrHTWmcqVw/e9UQudvbjsPNedpje+/vd/ZQKJ5WHBvosDS8S/xfGsPGbWE0otUgLajG2k30P/cRBik/I68G2gVK+1A0Q/D/folEJ7zCVhK4k8LDVY9SCquSnJyFoHoa4HJEiOMfldXQwg/irCIaNLBbfr/0sVGVQdGktil8bte3HrlxQo5XVfZz90S49Xps0A9L8aILpirdje2Un3raGzz8CAwEAAaOCAiMwggIfMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUlSC1Nm3nEORrGrA5ioPzo+OQA2gwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wLAYDVR0RBCUwI4IhY29tbXVuYXV0ZS5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGMAM+YlgAABAMARzBFAiEA6DlsB4URmQapamVSBuKSiDEDpRpgNxrNzTvcoCr8yMwCIB5Eiv0gt+60lraIuj8JYVvwpgp+Km5o51A0j6/QZqafAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGMAM+YqQAABAMARzBFAiA5DLdLTuT0r19xPJ8vIn/FHUyLn/qEQDY80b9BxqDHnQIhAKP1K0j5xsZAJLdjgfNUiSyeCI/WmBMbkoRpCIUjynxBMA0GCSqGSIb3DQEBCwUAA4IBAQAgqwXPj9w/C4Q1QWdNG1zK7Zb/q43XHkBQDD7AI1IU08SGawLc0NrOdJ6JNwvLJ5aGTUv7AVcQpLN/dNP0iYjzm2YR/hvKhYOazfFogUfODXQjg18AAelZVOVarSdula8/P/H/nC0mWMcC0suODq0xV/z9/mRZK/yfdnTXkpCLvg1bITvQqx9isvWyh37Q/ePAUbhrjTRWyBdd0caBZxWT/UVgCL7hBEsRfj8gyBYP4t1cD2OUsZ1uxYEBcQrL9xqxeB2c7S/g3Miu1ryYN0EUKHJGELgImZ+0NowIdwsdq4pnaCAKA2io1JiIU+lr3nzsbA/aCs68ocCGDvt/GVmJ\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "communaute.inclusion.beta.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "request w/o SNI didn't succeed" + }, + { + "id": "cert_subjectAltName", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "communaute.inclusion.beta.gouv.fr" + }, + { + "id": "cert_trust", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "39 >= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "2023-11-24 09:10" + }, + { + "id": "cert_notAfter", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "2024-02-22 09:10" + }, + { + "id": "cert_extlifeSpan", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "4" + }, + { + "id": "certs_list_ordering_problem", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "LOW", + "finding": "yes" + }, + { + "id": "cert_caIssuers", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "2023-11-24 09:10" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "MEDIUM", + "finding": "2024-02-22 09:10" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "MEDIUM", + "finding": "expires <= 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "communaute.inclusion.beta.gouv.fr <-- R3" + }, + { + "id": "intermediate_cert <#2>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#3>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#3>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#3>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#3>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#3>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#3>", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "-1 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "1705205094" + }, + { + "id": "HSTS_time", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" + }, + { + "id": "HPKP", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "2 at '/'" + }, + { + "id": "cookie_secure", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "All (2) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "2/2 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-EYZLng8rsU79e3H4JLYefA=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-EYZLng8rsU79e3H4JLYefA=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'" + }, + { + "id": "Permissions-Policy", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" + }, + { + "id": "Referrer-Policy", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "same-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" + }, + { + "id": "ROBOT", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "likely not vulnerable (timed out)" + }, + { + "id": "CRIME_TLS", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" + }, + { + "id": "LOGJAM", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "A+" + }, { "id": "service", "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", @@ -94671,7 +96083,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", @@ -94789,15 +96201,15 @@ "id": "intermediate_cert_notAfter <#1>", "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", @@ -94916,7 +96328,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1704600439" + "finding": "1705205201" }, { "id": "HSTS_time", @@ -95000,7 +96412,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-piYIAIKsySopDkh4RgwMPQ=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-piYIAIKsySopDkh4RgwMPQ=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-+iwNK07wtGQ/ZcORWMzjHQ=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-+iwNK07wtGQ/ZcORWMzjHQ=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'" }, { "id": "Permissions-Policy", @@ -95518,70 +96930,70 @@ }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -95589,7 +97001,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -95597,7 +97009,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -95605,7 +97017,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -95613,7 +97025,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -95621,7 +97033,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -95629,595 +97041,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1704600546" + "finding": "1705205306" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-1Lup84edclSS1hG2fyzcFA=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-1Lup84edclSS1hG2fyzcFA=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-1gpJq7+aqJ70ShAqE2M1tg=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-1gpJq7+aqJ70ShAqE2M1tg=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -96225,7 +97637,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -96234,7 +97646,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -96243,7 +97655,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -96252,7 +97664,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -96261,7 +97673,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -96269,7 +97681,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -96278,7 +97690,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -96287,7 +97699,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -96296,7 +97708,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -96305,14 +97717,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -96321,7 +97733,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -96330,7 +97742,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -96339,7 +97751,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -96348,7 +97760,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -96357,7 +97769,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -96366,7 +97778,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -96375,7 +97787,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -96384,7 +97796,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -96393,7 +97805,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -96402,385 +97814,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -96788,7 +98200,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -96796,7 +98208,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -96804,7 +98216,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -96812,7 +98224,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -96820,7 +98232,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -96828,595 +98240,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1704600653" + "finding": "1705205417" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-LmnO+sL10H3ZBRSISI5PEA=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-LmnO+sL10H3ZBRSISI5PEA=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-nTJd5r4oCHg5922VZsrQPg=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-nTJd5r4oCHg5922VZsrQPg=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -97424,7 +98836,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -97433,7 +98845,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -97442,7 +98854,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -97451,7 +98863,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -97460,7 +98872,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -97468,7 +98880,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -97477,7 +98889,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -97486,7 +98898,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -97495,7 +98907,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -97504,14 +98916,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -97520,7 +98932,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -97529,7 +98941,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -97538,7 +98950,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -97547,7 +98959,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -97556,7 +98968,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -97565,7 +98977,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -97574,7 +98986,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -97583,7 +98995,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -97592,7 +99004,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -97601,385 +99013,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -97987,7 +99399,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -97995,7 +99407,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98003,7 +99415,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -98011,7 +99423,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -98019,7 +99431,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -98027,595 +99439,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDzCCA/egAwIBAgISA1+ym5ezKG7n1rPkzEbmzKulMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjQwOTEwNTRaFw0yNDAyMjIwOTEwNTNaMCwxKjAoBgNVBAMTIWNvbW11bmF1dGUuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAICFFc6w+WX9Po8AOG0uBey4tdN5RmSVHBfxWDxav2wlppJ28WXywO3hRUge2hYBGohO92mw5LTk232PemIg260Sb8KzP8ywA11cbmbiDogz6fGnkAF334u40fasGUdmZrHTWmcqVw/e9UQudvbjsPNedpje+/vd/ZQKJ5WHBvosDS8S/xfGsPGbWE0otUgLajG2k30P/cRBik/I68G2gVK+1A0Q/D/folEJ7zCVhK4k8LDVY9SCquSnJyFoHoa4HJEiOMfldXQwg/irCIaNLBbfr/0sVGVQdGktil8bte3HrlxQo5XVfZz90S49Xps0A9L8aILpirdje2Un3raGzz8CAwEAAaOCAiMwggIfMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUlSC1Nm3nEORrGrA5ioPzo+OQA2gwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wLAYDVR0RBCUwI4IhY29tbXVuYXV0ZS5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGMAM+YlgAABAMARzBFAiEA6DlsB4URmQapamVSBuKSiDEDpRpgNxrNzTvcoCr8yMwCIB5Eiv0gt+60lraIuj8JYVvwpgp+Km5o51A0j6/QZqafAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGMAM+YqQAABAMARzBFAiA5DLdLTuT0r19xPJ8vIn/FHUyLn/qEQDY80b9BxqDHnQIhAKP1K0j5xsZAJLdjgfNUiSyeCI/WmBMbkoRpCIUjynxBMA0GCSqGSIb3DQEBCwUAA4IBAQAgqwXPj9w/C4Q1QWdNG1zK7Zb/q43XHkBQDD7AI1IU08SGawLc0NrOdJ6JNwvLJ5aGTUv7AVcQpLN/dNP0iYjzm2YR/hvKhYOazfFogUfODXQjg18AAelZVOVarSdula8/P/H/nC0mWMcC0suODq0xV/z9/mRZK/yfdnTXkpCLvg1bITvQqx9isvWyh37Q/ePAUbhrjTRWyBdd0caBZxWT/UVgCL7hBEsRfj8gyBYP4t1cD2OUsZ1uxYEBcQrL9xqxeB2c7S/g3Miu1ryYN0EUKHJGELgImZ+0NowIdwsdq4pnaCAKA2io1JiIU+lr3nzsbA/aCs68ocCGDvt/GVmJ\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1704600760" + "finding": "1705205524" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-quWM0qcEVUUvBSagtmYBHA=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-quWM0qcEVUUvBSagtmYBHA=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-N5FbT+5RylZU0EvC2M0Q7A=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-N5FbT+5RylZU0EvC2M0Q7A=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -98623,7 +100035,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -98632,7 +100044,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -98641,7 +100053,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -98650,7 +100062,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -98659,7 +100071,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -98667,7 +100079,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -98676,7 +100088,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -98685,7 +100097,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -98694,7 +100106,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -98703,14 +100115,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -98719,7 +100131,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -98728,7 +100140,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -98737,7 +100149,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -98746,7 +100158,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -98755,7 +100167,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -98764,7 +100176,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -98773,7 +100185,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -98782,7 +100194,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -98791,7 +100203,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -98800,385 +100212,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -99186,7 +100598,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -99194,7 +100606,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -99202,7 +100614,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -99210,7 +100622,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -99218,7 +100630,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -99226,595 +100638,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1704600866" + "finding": "1705205628" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-Lp+ejw5nQGMgCL6JFYWfaQ=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-Lp+ejw5nQGMgCL6JFYWfaQ=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-GExDM6kglQk2mJDCsJ7IWQ=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-GExDM6kglQk2mJDCsJ7IWQ=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -99822,7 +101234,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -99831,7 +101243,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -99840,7 +101252,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -99849,7 +101261,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -99858,7 +101270,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -99866,7 +101278,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -99875,7 +101287,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -99884,7 +101296,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -99893,7 +101305,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -99902,14 +101314,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -99918,7 +101330,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -99927,7 +101339,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -99936,7 +101348,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -99945,7 +101357,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -99954,7 +101366,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -99963,7 +101375,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -99972,7 +101384,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -99981,7 +101393,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -99990,7 +101402,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -99999,315 +101411,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "communaute.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A+" @@ -100526,7 +101938,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -100666,7 +102078,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", @@ -100784,15 +102196,15 @@ "id": "intermediate_cert_notAfter <#1>", "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", @@ -100911,7 +102323,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1704600974" + "finding": "1705205734" }, { "id": "HSTS_time", @@ -100995,7 +102407,7 @@ "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-m9OIpw931eR/v09k7CnCUg=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-m9OIpw931eR/v09k7CnCUg=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-7e6P4+DdWG2sfysMbJJn1w=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-7e6P4+DdWG2sfysMbJJn1w=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'" }, { "id": "Permissions-Policy", @@ -101513,70 +102925,70 @@ }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -101584,7 +102996,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -101592,7 +103004,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -101600,7 +103012,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -101608,7 +103020,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -101616,7 +103028,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -101624,1794 +103036,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2024-02-22 09:10" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "communaute.inclusion.beta.gouv.fr <-- R3" - }, - { - "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "1704601080" - }, - { - "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2 at '/'" - }, - { - "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "All (2) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2/2 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-096DQNLHqQEtUP6Hrnpo5g=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-096DQNLHqQEtUP6Hrnpo5g=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" - }, - { - "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" - }, - { - "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" - }, - { - "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" - }, - { - "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" - }, - { - "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "communaute.inclusion.beta.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "46 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "2023-11-24 09:10" - }, - { - "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "2024-02-22 09:10" - }, - { - "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "4" - }, - { - "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "LOW", - "finding": "yes" - }, - { - "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFDzCCA/egAwIBAgISA1+ym5ezKG7n1rPkzEbmzKulMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjQwOTEwNTRaFw0yNDAyMjIwOTEwNTNaMCwxKjAoBgNVBAMTIWNvbW11bmF1dGUuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAICFFc6w+WX9Po8AOG0uBey4tdN5RmSVHBfxWDxav2wlppJ28WXywO3hRUge2hYBGohO92mw5LTk232PemIg260Sb8KzP8ywA11cbmbiDogz6fGnkAF334u40fasGUdmZrHTWmcqVw/e9UQudvbjsPNedpje+/vd/ZQKJ5WHBvosDS8S/xfGsPGbWE0otUgLajG2k30P/cRBik/I68G2gVK+1A0Q/D/folEJ7zCVhK4k8LDVY9SCquSnJyFoHoa4HJEiOMfldXQwg/irCIaNLBbfr/0sVGVQdGktil8bte3HrlxQo5XVfZz90S49Xps0A9L8aILpirdje2Un3raGzz8CAwEAAaOCAiMwggIfMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUlSC1Nm3nEORrGrA5ioPzo+OQA2gwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wLAYDVR0RBCUwI4IhY29tbXVuYXV0ZS5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGMAM+YlgAABAMARzBFAiEA6DlsB4URmQapamVSBuKSiDEDpRpgNxrNzTvcoCr8yMwCIB5Eiv0gt+60lraIuj8JYVvwpgp+Km5o51A0j6/QZqafAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGMAM+YqQAABAMARzBFAiA5DLdLTuT0r19xPJ8vIn/FHUyLn/qEQDY80b9BxqDHnQIhAKP1K0j5xsZAJLdjgfNUiSyeCI/WmBMbkoRpCIUjynxBMA0GCSqGSIb3DQEBCwUAA4IBAQAgqwXPj9w/C4Q1QWdNG1zK7Zb/q43XHkBQDD7AI1IU08SGawLc0NrOdJ6JNwvLJ5aGTUv7AVcQpLN/dNP0iYjzm2YR/hvKhYOazfFogUfODXQjg18AAelZVOVarSdula8/P/H/nC0mWMcC0suODq0xV/z9/mRZK/yfdnTXkpCLvg1bITvQqx9isvWyh37Q/ePAUbhrjTRWyBdd0caBZxWT/UVgCL7hBEsRfj8gyBYP4t1cD2OUsZ1uxYEBcQrL9xqxeB2c7S/g3Miu1ryYN0EUKHJGELgImZ+0NowIdwsdq4pnaCAKA2io1JiIU+lr3nzsbA/aCs68ocCGDvt/GVmJ\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "INFO", - "finding": "2023-11-24 09:10" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", - "port": "443", - "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1704601187" + "finding": "1705205839" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-lnZtlnZ9PwumOo05ObQ2vA=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-lnZtlnZ9PwumOo05ObQ2vA=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-BvTalt6mTTz7ZCeXKSS47g=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-BvTalt6mTTz7ZCeXKSS47g=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -103419,7 +103632,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -103428,7 +103641,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -103437,7 +103650,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -103446,7 +103659,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -103455,7 +103668,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -103463,7 +103676,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -103472,7 +103685,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -103481,7 +103694,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -103490,7 +103703,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -103499,14 +103712,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -103515,7 +103728,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -103524,7 +103737,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -103533,7 +103746,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -103542,7 +103755,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -103551,7 +103764,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -103560,7 +103773,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -103569,7 +103782,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -103578,7 +103791,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -103587,7 +103800,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -103596,385 +103809,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -103982,7 +104195,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -103990,7 +104203,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -103998,7 +104211,7 @@ }, { "id": "cipherlist_LOW", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -104006,7 +104219,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -104014,7 +104227,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -104022,595 +104235,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "035FB29B97B3286EE7D6B3E4CC46E6CCABA5" }, { "id": "cert_serialNumberLen", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "197DDF2CBA75E9625C0288ABA2B5B587C173B947" }, { "id": "cert_fingerprintSHA256", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "cert", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "46 >= 30 days" + "finding": "39 >= 30 days" }, { "id": "cert_notBefore", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "cert_notAfter", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-22 09:10" }, { "id": "cert_extlifeSpan", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "9243D2C37338816121A4EBD10C48AC81FC21F14CEEA8CABA0961B2F80ECF9F0C" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-24 09:10" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 09:10" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "communaute.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1704601297" + "finding": "1705205949" }, { "id": "HSTS_time", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2/2 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-yAwZpIBwZpVNWz2lweYO6Q=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-yAwZpIBwZpVNWz2lweYO6Q=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'" + "finding": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-bSOA2TapLQ9DE5ZQmbDxeg=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-bSOA2TapLQ9DE5ZQmbDxeg=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'" }, { "id": "Permissions-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -104618,7 +104831,7 @@ }, { "id": "heartbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -104627,7 +104840,7 @@ }, { "id": "CCS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -104636,7 +104849,7 @@ }, { "id": "ticketbleed", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -104645,7 +104858,7 @@ }, { "id": "ROBOT", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -104654,7 +104867,7 @@ }, { "id": "secure_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -104662,7 +104875,7 @@ }, { "id": "secure_client_renego", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -104671,7 +104884,7 @@ }, { "id": "CRIME_TLS", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -104680,7 +104893,7 @@ }, { "id": "BREACH", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -104689,7 +104902,7 @@ }, { "id": "POODLE_SSL", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -104698,14 +104911,14 @@ }, { "id": "fallback_SCSV", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -104714,7 +104927,7 @@ }, { "id": "FREAK", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -104723,7 +104936,7 @@ }, { "id": "DROWN", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -104732,7 +104945,7 @@ }, { "id": "DROWN_hint", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -104741,7 +104954,7 @@ }, { "id": "LOGJAM", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -104750,7 +104963,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -104759,7 +104972,7 @@ }, { "id": "BEAST", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -104768,7 +104981,7 @@ }, { "id": "LUCKY13", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -104777,7 +104990,7 @@ }, { "id": "winshock", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -104786,7 +104999,7 @@ }, { "id": "RC4", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -104795,325 +105008,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "communaute.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "969" + "finding": "965" } ], "thirdparties": { @@ -105158,10 +105371,10 @@ "cookies": [ { "name": "sessionid", - "value": "9rerfroxm3ococcf0pe0i5izdhq9p62z", + "value": "42pyrjcqdhhg9zj6wa4gn0s1k8geksfc", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1705809937.81769, + "expires": 1706414596.192436, "size": 41, "httpOnly": true, "secure": true, @@ -105176,7 +105389,7 @@ "value": "1", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1704602138, + "expires": 1705206797, "size": 17, "httpOnly": false, "secure": false, @@ -105188,10 +105401,10 @@ }, { "name": "_pk_id.206.a786", - "value": "1a7e3c8d7143b10f.1704600339.", + "value": "5d23919887924941.1705204997.", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1738555539, + "expires": 1739160197, "size": 43, "httpOnly": false, "secure": false, @@ -105203,10 +105416,10 @@ }, { "name": "csrftoken", - "value": "PUP5p53WiLNVNNh7TCe3kpPIkRAD1Mlg", + "value": "Rm3omd5skUUEIIrsgnxXMgBPh7cRVRWo", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1736049937.817599, + "expires": 1736654596.192314, "size": 41, "httpOnly": false, "secure": true, @@ -105220,15 +105433,15 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "8386", - "content-security-policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-Tsvx8lwlFJGFqpumKe+8KA=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-Tsvx8lwlFJGFqpumKe+8KA=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'", + "content-length": "8240", + "content-security-policy": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-nOxPmb8tnwq7V0PNxFgSfg=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-nOxPmb8tnwq7V0PNxFgSfg=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 04:05:37 GMT", + "date": "Sun, 14 Jan 2024 04:03:16 GMT", "permissions-policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=PUP5p53WiLNVNNh7TCe3kpPIkRAD1Mlg; expires=Sun, 05 Jan 2025 04:05:37 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=9rerfroxm3ococcf0pe0i5izdhq9p62z; expires=Sun, 21 Jan 2024 04:05:37 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01HKH1HZ1NJ71VRA1SHZ5AP2W3", + "set-cookie": "csrftoken=Rm3omd5skUUEIIrsgnxXMgBPh7cRVRWo; expires=Sun, 12 Jan 2025 04:03:16 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=42pyrjcqdhhg9zj6wa4gn0s1k8geksfc; expires=Sun, 28 Jan 2024 04:03:16 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01HM326NRV0TSXVY12YYP8X4M4", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "vary": "Cookie, Accept-Encoding", "x-content-type-options": "nosniff", @@ -105237,7 +105450,7 @@ "endpoints": [ { "hostname": "communaute.inclusion.beta.gouv.fr", - "ip": "91.208.207.216", + "ip": "46.252.181.103", "geoip": { "continent": { "code": "EU", @@ -105293,18 +105506,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "151.101.41.229", + "ip": "151.101.201.229", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 5393015, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Santa Clara", + "en": "Santa Clara", + "es": "Santa Clara", + "fr": "Santa Clara", + "ja": "サンタクララ", + "pt-BR": "Santa Clara", + "ru": "Санта-Клара", + "zh-CN": "圣克拉拉" } }, "continent": { @@ -105325,7 +105539,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -105337,19 +105551,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, + "latitude": 37.3931, + "longitude": -121.962, "metro_code": 807, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95141" + "code": "95054" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -105379,13 +105593,47 @@ }, { "hostname": "tally.so", - "ip": "104.21.72.50", + "ip": "172.67.175.26", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -105399,7 +105647,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.46.170", + "ip": "172.217.12.106", "geoip": { "continent": { "code": "NA", @@ -105419,7 +105667,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -105439,7 +105687,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -105460,6 +105708,28 @@ } }, "technologies": [ + { + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "confidence": 100, + "version": "8.6.2", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ] + }, { "slug": "bootstrap", "name": "Bootstrap", @@ -105586,6 +105856,23 @@ ], "rootPath": true }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, { "slug": "hsts", "name": "HSTS", @@ -105645,7 +105932,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 04:04:35", + "@generated": "Sun, 14 Jan 2024 04:02:16", "site": [ { "@name": "https://communaute.inclusion.beta.gouv.fr", @@ -105674,13 +105961,6 @@ "riskdesc": "Medium (High)", "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, - { - "name": "Source Code Disclosure - ActiveVFP", - "riskcode": "2", - "confidence": "2", - "riskdesc": "Medium (Medium)", - "desc": "

Application Source Code was disclosed by the web server - ActiveVFP

" - }, { "name": "Sub Resource Integrity Attribute Missing", "riskcode": "2", @@ -105834,73 +106114,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "communaute.inclusion.beta.gouv.fr.", "matched-at": "communaute.inclusion.beta.gouv.fr", - "timestamp": "2024-01-07T04:19:25.867105171Z", + "extracted-results": [ + "domain.par.clever-cloud.com." + ], + "timestamp": "2024-01-14T04:17:21.25080421Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "communaute.inclusion.beta.gouv.fr.", "matched-at": "communaute.inclusion.beta.gouv.fr", - "extracted-results": [ - "domain.par.clever-cloud.com." - ], - "timestamp": "2024-01-07T04:19:26.571302501Z", + "timestamp": "2024-01-14T04:17:21.271175744Z", "matcher-status": true }, { @@ -105928,8 +106208,8 @@ "extracted-results": [ "GET, HEAD, OPTIONS" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:19:46.750364473Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:17:39.565363644Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -105967,8 +106247,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:20:02.366096414Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:17:52.72827899Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -105994,8 +106274,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:21:37.690840677Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:19:10.8278602Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -106027,12 +106307,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:22:14.6620914Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:19:42.964215817Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -106064,12 +106344,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:22:14.662134151Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:19:42.96426545Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -106101,12 +106381,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:22:14.662153247Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:19:42.964282511Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -106138,12 +106418,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:22:14.662287321Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:19:42.964295355Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -106170,8 +106450,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr/robots.txt", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:22:49.074505068Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:20:12.417674723Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -106198,8 +106478,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr/robots.txt", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:22:49.323417782Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:20:12.540688912Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -106238,8 +106518,8 @@ "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", "https://tally.so/widgets/embed.js" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:23:10.215460229Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:20:30.346218304Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: communaute.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -106278,8 +106558,8 @@ "type": "http", "host": "https://communaute.inclusion.beta.gouv.fr", "matched-at": "https://communaute.inclusion.beta.gouv.fr/", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:23:37.010518883Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:20:53.239282532Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: communaute.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://communaute.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -106328,8 +106608,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "91.208.207.214", - "timestamp": "2024-01-07T04:24:44.846179646Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:22:08.611165445Z", "matcher-status": true }, { @@ -106358,8 +106638,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:24:51.119400535Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:22:16.615481071Z", "matcher-status": true }, { @@ -106388,8 +106668,8 @@ "extracted-results": [ "communaute.inclusion.beta.gouv.fr" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:24:51.119513878Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:22:16.615584493Z", "matcher-status": true }, { @@ -106419,8 +106699,8 @@ "extracted-results": [ "tls12" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:24:53.412858396Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:22:18.877256361Z", "matcher-status": true }, { @@ -106450,8 +106730,8 @@ "extracted-results": [ "tls13" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T04:24:53.725158974Z", + "ip": "91.208.207.218", + "timestamp": "2024-01-14T04:22:19.186882529Z", "matcher-status": true } ], @@ -106459,7 +106739,7 @@ { "requestedUrl": "https://communaute.inclusion.beta.gouv.fr/", "finalUrl": "https://communaute.inclusion.beta.gouv.fr/", - "fetchTime": "2024-01-07T04:04:50.046Z", + "fetchTime": "2024-01-14T04:02:30.215Z", "runWarnings": [], "categories": { "performance": { @@ -106470,7 +106750,7 @@ "snapshot" ], "id": "performance", - "score": 0.8992486953735351 + "score": 0.8441265106201172 }, "accessibility": { "title": "Accessibility", @@ -106522,53 +106802,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7488, + "numericValue": 7447, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7488, - "firstMeaningfulPaint": 7488, - "largestContentfulPaint": 9822, - "interactive": 7488, - "speedIndex": 7488, + "firstContentfulPaint": 7447, + "firstMeaningfulPaint": 7447, + "largestContentfulPaint": 9323, + "interactive": 7447, + "speedIndex": 7447, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.005506114959716797, - "cumulativeLayoutShiftMainFrame": 0.005506114959716797, - "totalCumulativeLayoutShift": 0.005506114959716797, + "cumulativeLayoutShift": 0.0057958204481336805, + "cumulativeLayoutShiftMainFrame": 0.0057958204481336805, + "totalCumulativeLayoutShift": 0.0057958204481336805, "observedTimeOrigin": 0, - "observedTimeOriginTs": 364804030, + "observedTimeOriginTs": 311848754, "observedNavigationStart": 0, - "observedNavigationStartTs": 364804030, - "observedFirstPaint": 1005, - "observedFirstPaintTs": 365809509, - "observedFirstContentfulPaint": 1005, - "observedFirstContentfulPaintTs": 365809509, - "observedFirstContentfulPaintAllFrames": 1005, - "observedFirstContentfulPaintAllFramesTs": 365809509, - "observedFirstMeaningfulPaint": 1005, - "observedFirstMeaningfulPaintTs": 365809509, - "observedLargestContentfulPaint": 1005, - "observedLargestContentfulPaintTs": 365809509, - "observedLargestContentfulPaintAllFrames": 1005, - "observedLargestContentfulPaintAllFramesTs": 365809509, - "observedTraceEnd": 3902, - "observedTraceEndTs": 368706170, - "observedLoad": 1596, - "observedLoadTs": 366399637, + "observedNavigationStartTs": 311848754, + "observedFirstPaint": 967, + "observedFirstPaintTs": 312815325, + "observedFirstContentfulPaint": 967, + "observedFirstContentfulPaintTs": 312815325, + "observedFirstContentfulPaintAllFrames": 967, + "observedFirstContentfulPaintAllFramesTs": 312815325, + "observedFirstMeaningfulPaint": 967, + "observedFirstMeaningfulPaintTs": 312815325, + "observedLargestContentfulPaint": 967, + "observedLargestContentfulPaintTs": 312815325, + "observedLargestContentfulPaintAllFrames": 967, + "observedLargestContentfulPaintAllFramesTs": 312815325, + "observedTraceEnd": 4124, + "observedTraceEndTs": 315972996, + "observedLoad": 1655, + "observedLoadTs": 313503954, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 364804601, - "observedCumulativeLayoutShift": 0.005506114959716797, - "observedCumulativeLayoutShiftMainFrame": 0.005506114959716797, - "observedTotalCumulativeLayoutShift": 0.005506114959716797, - "observedFirstVisualChange": 1014, - "observedFirstVisualChangeTs": 365818030, - "observedLastVisualChange": 1481, - "observedLastVisualChangeTs": 366285030, - "observedSpeedIndex": 1045, - "observedSpeedIndexTs": 365849365 + "observedDomContentLoadedTs": 311849286, + "observedCumulativeLayoutShift": 0.0057958204481336805, + "observedCumulativeLayoutShiftMainFrame": 0.0057958204481336805, + "observedTotalCumulativeLayoutShift": 0.0057958204481336805, + "observedFirstVisualChange": 972, + "observedFirstVisualChangeTs": 312820754, + "observedLastVisualChange": 2138, + "observedLastVisualChangeTs": 313986754, + "observedSpeedIndex": 1023, + "observedSpeedIndexTs": 312871818 }, { "lcpInvalidated": false @@ -106586,23 +106866,23 @@ "type": "debugdata", "items": [ { - "numRequests": 28, - "numScripts": 11, + "numRequests": 34, + "numScripts": 15, "numStylesheets": 5, "numFonts": 4, - "numTasks": 15, + "numTasks": 14, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.5069999999999988, - "throughput": 9767697.06444726, - "maxRtt": 150.697, - "maxServerLatency": 20.200999999999997, - "totalByteWeight": 1576803, - "totalTaskTime": 3.7300000000000004, - "mainDocumentTransferSize": 10538 + "rtt": 1.4160000000000004, + "throughput": 8367261.297814296, + "maxRtt": 148.825, + "maxServerLatency": 19.880999999999997, + "totalByteWeight": 1865802, + "totalTaskTime": 4.694999999999999, + "mainDocumentTransferSize": 10336 } ] } @@ -106698,12 +106978,12 @@ "sonarcloud": null, "summary": { "httpGrade": "A+", - "apdex": 1, - "apdexGrade": "A", + "apdex": 0.9, + "apdexGrade": "F", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "B", - "nmapOpenPortsCount": 13, + "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-02-22T09:10:00.000Z", @@ -106712,7 +106992,7 @@ "cookiesCount": 4, "trackersGrade": "C", "trackersCount": 5, - "lighthouse_performance": 0.8992486953735351, + "lighthouse_performance": 0.8441265106201172, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -106738,7 +107018,7 @@ "http": { "url": "https://covoiturage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:08:31 GMT", + "end_time": "Sun, 14 Jan 2024 02:03:48 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -106746,18 +107026,18 @@ "Connection": "keep-alive", "Content-Length": "28233", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 02:08:30 GMT", - "Strict-Transport-Security": "max-age=15724800; includeSubDomains", + "Date": "Sun, 14 Jan 2024 02:03:46 GMT", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "accept-ranges": "bytes", "etag": "\"5ad9c97badc3ae653af08619380f7976\"", "last-modified": "Fri, 01 Dec 2023 14:50:21 GMT", - "x-amz-id-2": "tx0b2807c4c50244c1bf16e-00659a079d", - "x-amz-request-id": "tx0b2807c4c50244c1bf16e-00659a079d", + "x-amz-id-2": "tx0f3edcd3d0604cd980812-0065a34101", + "x-amz-request-id": "tx0f3edcd3d0604cd980812-0065a34101", "x-amz-version-id": "1701442221832352" }, - "scan_id": 46226821, + "scan_id": 46435440, "score": 40, - "start_time": "Sun, 07 Jan 2024 02:08:27 GMT", + "start_time": "Sun, 14 Jan 2024 02:03:41 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -106866,9 +107146,9 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=15724800; includeSubDomains", + "data": "max-age=31536000; includeSubDomains", "includeSubDomains": true, - "max-age": 15724800, + "max-age": 31536000, "preload": false, "preloaded": false }, @@ -107298,7 +107578,7 @@ "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "OK", - "finding": "56 >= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", @@ -107501,14 +107781,14 @@ "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "1704600649" + "finding": "1705205866" }, { "id": "HSTS_time", "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "OK", - "finding": "182 days (=15724800 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", @@ -108064,7 +108344,7 @@ "ip": "covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "97" + "finding": "52" } ], "thirdparties": { @@ -108074,12 +108354,12 @@ "accept-ranges": "bytes", "content-length": "28233", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 04:09:22 GMT", + "date": "Sun, 14 Jan 2024 04:16:53 GMT", "etag": "\"5ad9c97badc3ae653af08619380f7976\"", "last-modified": "Fri, 01 Dec 2023 14:50:21 GMT", - "strict-transport-security": "max-age=15724800; includeSubDomains", - "x-amz-id-2": "txd9ed26060c0246f79b714-00659a23f2", - "x-amz-request-id": "txd9ed26060c0246f79b714-00659a23f2", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "x-amz-id-2": "tx941ec6c85643460eb7a8b-0065a36035", + "x-amz-request-id": "tx941ec6c85643460eb7a8b-0065a36035", "x-amz-version-id": "1701442221832352" }, "endpoints": [ @@ -108162,7 +108442,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -108341,7 +108623,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 04:08:41", + "@generated": "Sun, 14 Jan 2024 04:16:14", "site": [ { "@name": "https://covoiturage.beta.gouv.fr", @@ -108433,6 +108715,13 @@ "riskdesc": "Informational (Medium)", "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" }, + { + "name": "Non-Storable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" + }, { "name": "Re-examine Cache-control Directives", "riskcode": "0", @@ -108481,22 +108770,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -108512,27 +108801,31 @@ "type": "dns", "host": "covoiturage.beta.gouv.fr.", "matched-at": "covoiturage.beta.gouv.fr", - "timestamp": "2024-01-07T04:12:16.051465694Z", + "extracted-results": [ + "\"Sendinblue-code:fb7fc2e7a9fd8ee1510be13a4fad4db9\"", + "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com include:servers.mcsv.net ?all\"" + ], + "timestamp": "2024-01-14T04:18:52.828518837Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -108542,34 +108835,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "covoiturage.beta.gouv.fr.", - "matched-at": "_dmarc.covoiturage.beta.gouv.fr", + "matched-at": "covoiturage.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T04:12:16.064381153Z", + "timestamp": "2024-01-14T04:18:52.839176106Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -108584,32 +108880,24 @@ "type": "dns", "host": "covoiturage.beta.gouv.fr.", "matched-at": "covoiturage.beta.gouv.fr", - "extracted-results": [ - "ns1.dom.scw.cloud.", - "ns0.dom.scw.cloud." - ], - "timestamp": "2024-01-07T04:12:16.115627305Z", + "timestamp": "2024-01-14T04:18:52.916682689Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -108625,29 +108913,30 @@ "host": "covoiturage.beta.gouv.fr.", "matched-at": "covoiturage.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "ns1.dom.scw.cloud.", + "ns0.dom.scw.cloud." ], - "timestamp": "2024-01-07T04:12:17.053246559Z", + "timestamp": "2024-01-14T04:18:52.993119201Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "txt" + "dmarc" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -108657,17 +108946,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "covoiturage.beta.gouv.fr.", - "matched-at": "covoiturage.beta.gouv.fr", + "matched-at": "_dmarc.covoiturage.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com include:servers.mcsv.net ?all\"", - "\"Sendinblue-code:fb7fc2e7a9fd8ee1510be13a4fad4db9\"" + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2024-01-07T04:12:17.229971365Z", + "timestamp": "2024-01-14T04:18:53.594880367Z", "matcher-status": true }, { @@ -108706,7 +108995,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:12:44.220846416Z", + "timestamp": "2024-01-14T04:19:11.830392916Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108734,7 +109023,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:12:44.252700164Z", + "timestamp": "2024-01-14T04:19:11.863788655Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108768,7 +109057,7 @@ "Hugo 0.82.0" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:36.04726428Z", + "timestamp": "2024-01-14T04:19:45.25093441Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108800,12 +109089,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.659493028Z", + "timestamp": "2024-01-14T04:19:58.552444027Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108837,12 +109126,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.659530688Z", + "timestamp": "2024-01-14T04:19:58.552496144Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108874,12 +109163,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.659541959Z", + "timestamp": "2024-01-14T04:19:58.552513617Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108911,12 +109200,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.65955324Z", + "timestamp": "2024-01-14T04:19:58.552531651Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108948,12 +109237,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.659568549Z", + "timestamp": "2024-01-14T04:19:58.552543132Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -108985,12 +109274,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.659681229Z", + "timestamp": "2024-01-14T04:19:58.552556086Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -109022,12 +109311,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.659698992Z", + "timestamp": "2024-01-14T04:19:58.55256859Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -109059,12 +109348,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.65971403Z", + "timestamp": "2024-01-14T04:19:58.552581323Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -109096,12 +109385,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.659727505Z", + "timestamp": "2024-01-14T04:19:58.552594979Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -109133,12 +109422,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.65974109Z", + "timestamp": "2024-01-14T04:19:58.552608404Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -109185,7 +109474,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:13:57.66070786Z", + "timestamp": "2024-01-14T04:19:58.553646217Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr'", "matcher-status": true }, @@ -109214,7 +109503,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr/%c0", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:14:54.51300846Z", + "timestamp": "2024-01-14T04:20:34.672426099Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr/%c0'", "matcher-status": true }, @@ -109254,7 +109543,7 @@ "host": "https://covoiturage.beta.gouv.fr", "matched-at": "https://covoiturage.beta.gouv.fr/", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:14:56.20725284Z", + "timestamp": "2024-01-14T04:20:35.838942843Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: covoiturage.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://covoiturage.beta.gouv.fr/'", "matcher-status": true }, @@ -109285,7 +109574,7 @@ "Let's Encrypt" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:15:46.399781148Z", + "timestamp": "2024-01-14T04:21:08.854754308Z", "matcher-status": true }, { @@ -109315,7 +109604,7 @@ "covoiturage.beta.gouv.fr" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:15:46.399908756Z", + "timestamp": "2024-01-14T04:21:08.854892125Z", "matcher-status": true }, { @@ -109346,7 +109635,7 @@ "tls12" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:15:52.993564407Z", + "timestamp": "2024-01-14T04:21:10.750659589Z", "matcher-status": true }, { @@ -109377,7 +109666,7 @@ "tls13" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:15:53.313598124Z", + "timestamp": "2024-01-14T04:21:10.929203058Z", "matcher-status": true } ], @@ -109385,7 +109674,7 @@ { "requestedUrl": "https://covoiturage.beta.gouv.fr/", "finalUrl": "https://covoiturage.beta.gouv.fr/", - "fetchTime": "2024-01-07T04:08:55.059Z", + "fetchTime": "2024-01-14T04:16:28.326Z", "runWarnings": [], "categories": { "performance": { @@ -109448,53 +109737,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3262, + "numericValue": 3092, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2622, - "firstMeaningfulPaint": 3262, - "largestContentfulPaint": 3342, - "interactive": 3262, - "speedIndex": 3484, + "firstContentfulPaint": 2492, + "firstMeaningfulPaint": 3092, + "largestContentfulPaint": 3317, + "interactive": 3092, + "speedIndex": 2629, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.10244653277926975, - "cumulativeLayoutShiftMainFrame": 0.10244653277926975, - "totalCumulativeLayoutShift": 0.10244653277926975, + "cumulativeLayoutShift": 0.10242187500000001, + "cumulativeLayoutShiftMainFrame": 0.10242187500000001, + "totalCumulativeLayoutShift": 0.10242187500000001, "observedTimeOrigin": 0, - "observedTimeOriginTs": 330885384, + "observedTimeOriginTs": 240970471, "observedNavigationStart": 0, - "observedNavigationStartTs": 330885384, - "observedFirstPaint": 1307, - "observedFirstPaintTs": 332192279, - "observedFirstContentfulPaint": 1307, - "observedFirstContentfulPaintTs": 332192279, - "observedFirstContentfulPaintAllFrames": 1307, - "observedFirstContentfulPaintAllFramesTs": 332192279, - "observedFirstMeaningfulPaint": 1711, - "observedFirstMeaningfulPaintTs": 332596389, - "observedLargestContentfulPaint": 1527, - "observedLargestContentfulPaintTs": 332412635, - "observedLargestContentfulPaintAllFrames": 1527, - "observedLargestContentfulPaintAllFramesTs": 332412635, - "observedTraceEnd": 4175, - "observedTraceEndTs": 335060455, - "observedLoad": 1866, - "observedLoadTs": 332751816, - "observedDomContentLoaded": 1293, - "observedDomContentLoadedTs": 332177905, - "observedCumulativeLayoutShift": 0.10244653277926975, - "observedCumulativeLayoutShiftMainFrame": 0.10244653277926975, - "observedTotalCumulativeLayoutShift": 0.10244653277926975, - "observedFirstVisualChange": 1301, - "observedFirstVisualChangeTs": 332186384, - "observedLastVisualChange": 1717, - "observedLastVisualChangeTs": 332602384, - "observedSpeedIndex": 1450, - "observedSpeedIndexTs": 332335039 + "observedNavigationStartTs": 240970471, + "observedFirstPaint": 856, + "observedFirstPaintTs": 241826156, + "observedFirstContentfulPaint": 856, + "observedFirstContentfulPaintTs": 241826156, + "observedFirstContentfulPaintAllFrames": 856, + "observedFirstContentfulPaintAllFramesTs": 241826156, + "observedFirstMeaningfulPaint": 1008, + "observedFirstMeaningfulPaintTs": 241978741, + "observedLargestContentfulPaint": 994, + "observedLargestContentfulPaintTs": 241964552, + "observedLargestContentfulPaintAllFrames": 994, + "observedLargestContentfulPaintAllFramesTs": 241964552, + "observedTraceEnd": 3443, + "observedTraceEndTs": 244413519, + "observedLoad": 1134, + "observedLoadTs": 242104571, + "observedDomContentLoaded": 803, + "observedDomContentLoadedTs": 241773052, + "observedCumulativeLayoutShift": 0.10242187500000001, + "observedCumulativeLayoutShiftMainFrame": 0.10242187500000001, + "observedTotalCumulativeLayoutShift": 0.10242187500000001, + "observedFirstVisualChange": 819, + "observedFirstVisualChangeTs": 241789471, + "observedLastVisualChange": 1003, + "observedLastVisualChangeTs": 241973471, + "observedSpeedIndex": 900, + "observedSpeedIndexTs": 241870158 }, { "lcpInvalidated": false @@ -109516,18 +109805,18 @@ "numScripts": 2, "numStylesheets": 2, "numFonts": 4, - "numTasks": 856, - "numTasksOver10ms": 2, + "numTasks": 823, + "numTasksOver10ms": 3, "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 147.74699999999999, - "throughput": 7108566.321722676, - "maxRtt": 157.792, - "maxServerLatency": 81.298, - "totalByteWeight": 645897, - "totalTaskTime": 160.2460000000001, + "rtt": 80.454, + "throughput": 18507526.943860613, + "maxRtt": 86.63, + "maxServerLatency": 91.51800000000001, + "totalByteWeight": 646119, + "totalTaskTime": 174.15700000000004, "mainDocumentTransferSize": 28593 } ] @@ -109656,7 +109945,7 @@ "http": { "url": "https://app.covoiturage.beta.gouv.fr/login", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:16:04 GMT", + "end_time": "Sun, 14 Jan 2024 02:06:04 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -109664,18 +109953,18 @@ "Connection": "keep-alive", "Content-Length": "6714", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 02:16:02 GMT", - "Strict-Transport-Security": "max-age=15724800; includeSubDomains", + "Date": "Sun, 14 Jan 2024 02:06:02 GMT", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "accept-ranges": "bytes", "etag": "\"58a3103fc1f2c1f07b3e48c1ec0a0210\"", - "last-modified": "Wed, 03 Jan 2024 16:57:51 GMT", - "x-amz-id-2": "tx8a246db5afcb4f10819de-00659a0962", - "x-amz-request-id": "tx8a246db5afcb4f10819de-00659a0962", - "x-amz-version-id": "1704301071363749" + "last-modified": "Fri, 12 Jan 2024 11:09:58 GMT", + "x-amz-id-2": "txd939a22634294540a5b32-0065a34189", + "x-amz-request-id": "txd939a22634294540a5b32-0065a34189", + "x-amz-version-id": "1705057798407663" }, - "scan_id": 46226946, + "scan_id": 46435478, "score": 40, - "start_time": "Sun, 07 Jan 2024 02:16:00 GMT", + "start_time": "Sun, 14 Jan 2024 02:05:59 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -109784,9 +110073,9 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=15724800; includeSubDomains", + "data": "max-age=31536000; includeSubDomains", "includeSubDomains": true, - "max-age": 15724800, + "max-age": 31536000, "preload": false, "preloaded": false }, @@ -110216,7 +110505,7 @@ "ip": "app.covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "OK", - "finding": "80 >= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", @@ -110419,14 +110708,14 @@ "ip": "app.covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "1704600957" + "finding": "1705206355" }, { "id": "HSTS_time", "ip": "app.covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "OK", - "finding": "182 days (=15724800 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", @@ -110982,7 +111271,7 @@ "ip": "app.covoiturage.beta.gouv.fr/51.159.8.177", "port": "443", "severity": "INFO", - "finding": "52" + "finding": "97" } ], "thirdparties": { @@ -110992,13 +111281,13 @@ "accept-ranges": "bytes", "content-length": "6714", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 04:15:14 GMT", + "date": "Sun, 14 Jan 2024 04:24:37 GMT", "etag": "\"58a3103fc1f2c1f07b3e48c1ec0a0210\"", - "last-modified": "Wed, 03 Jan 2024 16:57:51 GMT", - "strict-transport-security": "max-age=15724800; includeSubDomains", - "x-amz-id-2": "txec04b74c108b4df6a640f-00659a2552", - "x-amz-request-id": "txec04b74c108b4df6a640f-00659a2552", - "x-amz-version-id": "1704301071363749" + "last-modified": "Fri, 12 Jan 2024 11:09:58 GMT", + "strict-transport-security": "max-age=31536000; includeSubDomains", + "x-amz-id-2": "tx21b04795fb4c4066b8621-0065a36205", + "x-amz-request-id": "tx21b04795fb4c4066b8621-0065a36205", + "x-amz-version-id": "1705057798407663" }, "endpoints": [ { @@ -111080,7 +111369,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -111263,7 +111554,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 04:14:24", + "@generated": "Sun, 14 Jan 2024 04:23:41", "site": [ { "@name": "https://app.covoiturage.beta.gouv.fr", @@ -111413,7 +111704,7 @@ "type": "dns", "host": "app.covoiturage.beta.gouv.fr.", "matched-at": "app.covoiturage.beta.gouv.fr", - "timestamp": "2024-01-07T04:17:04.741552458Z", + "timestamp": "2024-01-14T04:27:21.956794855Z", "matcher-status": true }, { @@ -111440,7 +111731,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:17:19.781051329Z", + "timestamp": "2024-01-14T04:27:45.216801196Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111478,7 +111769,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:17:48.468346016Z", + "timestamp": "2024-01-14T04:28:30.134231453Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111510,12 +111801,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591561719Z", + "timestamp": "2024-01-14T04:28:48.482036814Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111547,12 +111838,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591607284Z", + "timestamp": "2024-01-14T04:28:48.482093691Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111584,12 +111875,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591627882Z", + "timestamp": "2024-01-14T04:28:48.482115191Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111621,12 +111912,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591643611Z", + "timestamp": "2024-01-14T04:28:48.482138915Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111658,12 +111949,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591660041Z", + "timestamp": "2024-01-14T04:28:48.482156659Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111695,12 +111986,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591682703Z", + "timestamp": "2024-01-14T04:28:48.48217363Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111737,7 +112028,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591706277Z", + "timestamp": "2024-01-14T04:28:48.482187766Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111769,12 +112060,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591727947Z", + "timestamp": "2024-01-14T04:28:48.482204368Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111806,12 +112097,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591747674Z", + "timestamp": "2024-01-14T04:28:48.482220217Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111843,12 +112134,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.591762472Z", + "timestamp": "2024-01-14T04:28:48.482235907Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111895,7 +112186,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:00.592102503Z", + "timestamp": "2024-01-14T04:28:48.482664959Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login'", "matcher-status": true }, @@ -111933,7 +112224,7 @@ " mailto:security@covoiturage.beta.gouv.fr" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:14.195487285Z", + "timestamp": "2024-01-14T04:29:10.582214603Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/.well-known/security.txt'", "matcher-status": true }, @@ -111962,7 +112253,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login/%c0", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:30.30755402Z", + "timestamp": "2024-01-14T04:29:35.556451569Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login/%c0'", "matcher-status": true }, @@ -112002,7 +112293,7 @@ "host": "https://app.covoiturage.beta.gouv.fr/login", "matched-at": "https://app.covoiturage.beta.gouv.fr/login/", "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:31.242380925Z", + "timestamp": "2024-01-14T04:29:36.95350627Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.covoiturage.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.covoiturage.beta.gouv.fr/login/'", "matcher-status": true }, @@ -112033,7 +112324,7 @@ "Let's Encrypt" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:59.346709199Z", + "timestamp": "2024-01-14T04:30:19.88483007Z", "matcher-status": true }, { @@ -112063,7 +112354,7 @@ "app.covoiturage.beta.gouv.fr" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:18:59.346847486Z", + "timestamp": "2024-01-14T04:30:19.884935637Z", "matcher-status": true }, { @@ -112094,7 +112385,7 @@ "tls12" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:19:00.97881044Z", + "timestamp": "2024-01-14T04:30:23.994573662Z", "matcher-status": true }, { @@ -112125,7 +112416,7 @@ "tls13" ], "ip": "51.159.8.177", - "timestamp": "2024-01-07T04:19:01.175265442Z", + "timestamp": "2024-01-14T04:30:24.31092376Z", "matcher-status": true } ], @@ -112239,7 +112530,7 @@ "http": { "url": "https://datapass.api.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:28:27 GMT", + "end_time": "Sun, 14 Jan 2024 02:33:20 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -112248,17 +112539,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 02:28:26 GMT", - "Last-Modified": "Sunday, 07-Jan-2024 02:28:26 GMT", + "Date": "Sun, 14 Jan 2024 02:33:14 GMT", + "Last-Modified": "Sunday, 14-Jan-2024 02:33:14 GMT", "Server": "nginx", "Strict-Transport-Security": "max-age=15552000", "Transfer-Encoding": "chunked", "X-Frame-Options": "DENY", "X-Robots-Tag": "noindex,nofollow" }, - "scan_id": 46227141, + "scan_id": 46436062, "score": 60, - "start_time": "Sun, 07 Jan 2024 02:28:23 GMT", + "start_time": "Sun, 14 Jan 2024 02:33:11 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -112432,7 +112723,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-03T22:51:02Z", + "up_since": "2024-01-09T21:58:53Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -112444,8 +112735,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T04:34:24Z", - "next_check_at": "2024-01-07T04:39:24Z", + "last_check_at": "2024-01-14T04:35:31Z", + "next_check_at": "2024-01-14T04:40:29Z", "created_at": "2021-04-22T19:51:18Z", "mute_until": null, "favicon_url": "https://datapass.api.gouv.fr/favicons/android-chrome-512x512.png", @@ -112453,7 +112744,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T04:34:29Z", + "tested_at": "2024-01-14T04:05:40Z", "expires_at": "2025-01-15T22:59:59Z", "valid": true, "error": null @@ -112462,11 +112753,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 486, - "connection": 185, - "handshake": 190, - "response": 183, - "total": 1044 + "namelookup": 234, + "connection": 119, + "handshake": 125, + "response": 120, + "total": 598 } }, "uptimeGrade": "A", @@ -112848,7 +113139,7 @@ "ip": "datapass.api.gouv.fr/54.36.95.60", "port": "443", "severity": "OK", - "finding": "374 >= 60 days" + "finding": "367 >= 60 days" }, { "id": "cert_notBefore", @@ -113009,7 +113300,7 @@ "ip": "datapass.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "1704602001" + "finding": "1705206901" }, { "id": "HSTS_time", @@ -113590,7 +113881,7 @@ "value": "1", "domain": "datapass.api.gouv.fr", "path": "/", - "expires": 1704603759, + "expires": 1705208659, "size": 16, "httpOnly": false, "secure": false, @@ -113602,10 +113893,10 @@ }, { "name": "_pk_id.53.36f3", - "value": "4bc5a5b4d555837e.1704601960.", + "value": "e53e738efce231bf.1705206859.", "domain": "datapass.api.gouv.fr", "path": "/", - "expires": 1738557160, + "expires": 1739162059, "size": 42, "httpOnly": false, "secure": false, @@ -113621,8 +113912,8 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 04:32:38 GMT", - "last-modified": "Sunday, 07-Jan-2024 04:32:38 GMT", + "date": "Sun, 14 Jan 2024 04:34:18 GMT", + "last-modified": "Sunday, 14-Jan-2024 04:34:18 GMT", "server": "nginx", "strict-transport-security": "max-age=15552000", "transfer-encoding": "chunked", @@ -113848,7 +114139,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 04:31:59", + "@generated": "Sun, 14 Jan 2024 04:33:37", "site": [ { "@name": "https://datapass.api.gouv.fr", @@ -113998,7 +114289,7 @@ "type": "dns", "host": "datapass.api.gouv.fr.", "matched-at": "datapass.api.gouv.fr", - "timestamp": "2024-01-07T04:34:28.380273396Z", + "timestamp": "2024-01-14T04:36:08.858609041Z", "matcher-status": true }, { @@ -114024,7 +114315,7 @@ "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:02.650183542Z", + "timestamp": "2024-01-14T04:36:43.648990264Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114056,12 +114347,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:11.38460178Z", + "timestamp": "2024-01-14T04:36:52.79588743Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114093,12 +114384,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:11.384652134Z", + "timestamp": "2024-01-14T04:36:52.795939126Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114130,12 +114421,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:11.38466657Z", + "timestamp": "2024-01-14T04:36:52.795954384Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114167,12 +114458,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:11.384684274Z", + "timestamp": "2024-01-14T04:36:52.795969312Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114204,12 +114495,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:11.384699422Z", + "timestamp": "2024-01-14T04:36:52.795988898Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114241,12 +114532,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:11.384711525Z", + "timestamp": "2024-01-14T04:36:52.796002383Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114278,12 +114569,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:11.384723647Z", + "timestamp": "2024-01-14T04:36:52.79601697Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114315,12 +114606,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:11.384738134Z", + "timestamp": "2024-01-14T04:36:52.796039332Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114352,12 +114643,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:11.384752321Z", + "timestamp": "2024-01-14T04:36:52.796060401Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr'", "matcher-status": true }, @@ -114397,7 +114688,7 @@ "host": "https://datapass.api.gouv.fr", "matched-at": "https://datapass.api.gouv.fr/", "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:35:32.968830639Z", + "timestamp": "2024-01-14T04:37:14.932754844Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: datapass.api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datapass.api.gouv.fr/'", "matcher-status": true }, @@ -114447,7 +114738,7 @@ "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:36:12.167398451Z", + "timestamp": "2024-01-14T04:37:57.39549416Z", "matcher-status": true }, { @@ -114477,7 +114768,7 @@ "DHIMYOTIS" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:37:04.551851331Z", + "timestamp": "2024-01-14T04:38:50.58679684Z", "matcher-status": true }, { @@ -114510,7 +114801,7 @@ "datapass.api.gouv.fr" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:37:04.552074664Z", + "timestamp": "2024-01-14T04:38:50.586902967Z", "matcher-status": true }, { @@ -114541,7 +114832,7 @@ "tls12" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:37:04.630213036Z", + "timestamp": "2024-01-14T04:38:51.24884689Z", "matcher-status": true }, { @@ -114572,7 +114863,7 @@ "tls13" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T04:37:05.490282227Z", + "timestamp": "2024-01-14T04:38:52.133252338Z", "matcher-status": true } ], @@ -114580,7 +114871,7 @@ { "requestedUrl": "https://datapass.api.gouv.fr/", "finalUrl": "https://datapass.api.gouv.fr/", - "fetchTime": "2024-01-07T04:32:13.098Z", + "fetchTime": "2024-01-14T04:33:51.863Z", "runWarnings": [], "categories": { "performance": { @@ -114643,53 +114934,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6081, + "numericValue": 6173, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1357, - "firstMeaningfulPaint": 1357, - "largestContentfulPaint": 6307, - "interactive": 6081, - "speedIndex": 2145, - "totalBlockingTime": 299, - "maxPotentialFID": 216, + "firstContentfulPaint": 1370, + "firstMeaningfulPaint": 1370, + "largestContentfulPaint": 6324, + "interactive": 6173, + "speedIndex": 2218, + "totalBlockingTime": 427, + "maxPotentialFID": 193, "cumulativeLayoutShift": 0.5064667307535807, "cumulativeLayoutShiftMainFrame": 0.5064667307535807, "totalCumulativeLayoutShift": 0.5064667307535807, "observedTimeOrigin": 0, - "observedTimeOriginTs": 226901294, + "observedTimeOriginTs": 261700480, "observedNavigationStart": 0, - "observedNavigationStartTs": 226901294, - "observedFirstPaint": 820, - "observedFirstPaintTs": 227720852, - "observedFirstContentfulPaint": 820, - "observedFirstContentfulPaintTs": 227720852, - "observedFirstContentfulPaintAllFrames": 820, - "observedFirstContentfulPaintAllFramesTs": 227720852, - "observedFirstMeaningfulPaint": 820, - "observedFirstMeaningfulPaintTs": 227720852, - "observedLargestContentfulPaint": 1162, - "observedLargestContentfulPaintTs": 228063233, - "observedLargestContentfulPaintAllFrames": 1162, - "observedLargestContentfulPaintAllFramesTs": 228063233, - "observedTraceEnd": 3454, - "observedTraceEndTs": 230355773, - "observedLoad": 1146, - "observedLoadTs": 228047113, - "observedDomContentLoaded": 771, - "observedDomContentLoadedTs": 227672035, + "observedNavigationStartTs": 261700480, + "observedFirstPaint": 854, + "observedFirstPaintTs": 262554110, + "observedFirstContentfulPaint": 854, + "observedFirstContentfulPaintTs": 262554110, + "observedFirstContentfulPaintAllFrames": 854, + "observedFirstContentfulPaintAllFramesTs": 262554110, + "observedFirstMeaningfulPaint": 854, + "observedFirstMeaningfulPaintTs": 262554110, + "observedLargestContentfulPaint": 1212, + "observedLargestContentfulPaintTs": 262912874, + "observedLargestContentfulPaintAllFrames": 1212, + "observedLargestContentfulPaintAllFramesTs": 262912874, + "observedTraceEnd": 3509, + "observedTraceEndTs": 265209082, + "observedLoad": 1201, + "observedLoadTs": 262901228, + "observedDomContentLoaded": 793, + "observedDomContentLoadedTs": 262493074, "observedCumulativeLayoutShift": 0.5064667307535807, "observedCumulativeLayoutShiftMainFrame": 0.5064667307535807, "observedTotalCumulativeLayoutShift": 0.5064667307535807, - "observedFirstVisualChange": 822, - "observedFirstVisualChangeTs": 227723294, - "observedLastVisualChange": 1322, - "observedLastVisualChangeTs": 228223294, - "observedSpeedIndex": 1081, - "observedSpeedIndexTs": 227981880 + "observedFirstVisualChange": 855, + "observedFirstVisualChangeTs": 262555480, + "observedLastVisualChange": 1338, + "observedLastVisualChangeTs": 263038480, + "observedSpeedIndex": 1127, + "observedSpeedIndexTs": 262827320 }, { "lcpInvalidated": false @@ -114711,19 +115002,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 407, + "numTasks": 400, "numTasksOver10ms": 6, - "numTasksOver25ms": 3, - "numTasksOver50ms": 1, + "numTasksOver25ms": 5, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.521, - "throughput": 16481954.560916092, - "maxRtt": 82.36200000000001, - "maxServerLatency": 3.427999999999983, - "totalByteWeight": 703275, - "totalTaskTime": 253.71299999999866, - "mainDocumentTransferSize": 1351 + "rtt": 82.07600000000001, + "throughput": 16139315.996358898, + "maxRtt": 85.148, + "maxServerLatency": 2.7260000000000275, + "totalByteWeight": 703285, + "totalTaskTime": 284.57199999999943, + "mainDocumentTransferSize": 1352 } ] } @@ -114852,26 +115143,26 @@ "http": { "url": "https://deveco.incubateur.anct.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 00:50:37 GMT", + "end_time": "Sun, 14 Jan 2024 00:53:08 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "accept-ranges": "bytes", "cache-control": "public, max-age=0", - "content-length": "19957", + "content-length": "20171", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 00:50:36 GMT", - "etag": "W/\"4df5-18cb10f91ce\"", + "date": "Sun, 14 Jan 2024 00:53:07 GMT", + "etag": "W/\"4ecb-18cef05cb42\"", "keep-alive": "timeout=5", - "last-modified": "Thu, 28 Dec 2023 15:33:56 GMT", + "last-modified": "Tue, 09 Jan 2024 16:19:43 GMT", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000", "x-frame-options": "SAMEORIGIN" }, - "scan_id": 46225429, + "scan_id": 46434155, "score": 60, - "start_time": "Sun, 07 Jan 2024 00:50:33 GMT", + "start_time": "Sun, 14 Jan 2024 00:53:04 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -115410,7 +115701,7 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "OK", - "finding": "84 >= 30 days" + "finding": "77 >= 30 days" }, { "id": "cert_notBefore", @@ -115606,14 +115897,14 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "1704602301" + "finding": "1705207366" }, { "id": "HSTS_time", @@ -116190,7 +116481,7 @@ "ip": "deveco.incubateur.anct.gouv.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "135" + "finding": "73" } ], "thirdparties": { @@ -116201,7 +116492,7 @@ "value": "1", "domain": "deveco.incubateur.anct.gouv.fr", "path": "/", - "expires": 1704604000, + "expires": 1705209100, "size": 16, "httpOnly": false, "secure": false, @@ -116213,10 +116504,10 @@ }, { "name": "_pk_id.15.1d54", - "value": "d1cf36914644f2b0.1704602201.", + "value": "dacc113388e2e25b.1705207301.", "domain": "deveco.incubateur.anct.gouv.fr", "path": "/", - "expires": 1738557401, + "expires": 1739162501, "size": 42, "httpOnly": false, "secure": false, @@ -116230,11 +116521,11 @@ "headers": { "accept-ranges": "bytes", "cache-control": "public, max-age=0", - "content-length": "19957", + "content-length": "20171", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 04:36:38 GMT", - "etag": "W/\"4df5-18cb10f91ce\"", - "last-modified": "Thu, 28 Dec 2023 15:33:56 GMT", + "date": "Sun, 14 Jan 2024 04:41:39 GMT", + "etag": "W/\"4ecb-18cef05cb42\"", + "last-modified": "Tue, 09 Jan 2024 16:19:43 GMT", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000", "x-frame-options": "SAMEORIGIN" @@ -116319,7 +116610,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -116497,7 +116790,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 04:35:54", + "@generated": "Sun, 14 Jan 2024 04:40:58", "site": [ { "@name": "https://deveco.incubateur.anct.gouv.fr", @@ -116654,7 +116947,7 @@ "type": "dns", "host": "deveco.incubateur.anct.gouv.fr.", "matched-at": "deveco.incubateur.anct.gouv.fr", - "timestamp": "2024-01-07T04:40:31.198363356Z", + "timestamp": "2024-01-14T04:44:14.668624268Z", "matcher-status": true }, { @@ -116691,10 +116984,10 @@ "matched-at": "deveco.incubateur.anct.gouv.fr", "extracted-results": [ "\"google-site-verification=L2JQ-fN4ulue8tUkvSsJqXUR6JoL0KvlhieQMp0olCA\"", - "\"Sendinblue-code:8ff5d53433fed3070b3f1359d24abb8b\"", - "\"v=spf1 include:mx.ovh.com include:spf.sendinblue.com include:spf.tipimail.com mx ~all\"" + "\"v=spf1 include:mx.ovh.com include:spf.sendinblue.com include:spf.tipimail.com mx ~all\"", + "\"Sendinblue-code:8ff5d53433fed3070b3f1359d24abb8b\"" ], - "timestamp": "2024-01-07T04:40:31.201637625Z", + "timestamp": "2024-01-14T04:44:14.809431729Z", "matcher-status": true }, { @@ -116734,7 +117027,7 @@ "extracted-results": [ "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2024-01-07T04:40:31.676455616Z", + "timestamp": "2024-01-14T04:44:14.898554633Z", "matcher-status": true }, { @@ -116772,11 +117065,11 @@ "matched-at": "deveco.incubateur.anct.gouv.fr", "extracted-results": [ "5 mx1.mail.ovh.net.", - "50 mx2.mail.ovh.net.", + "1 mx0.mail.ovh.net.", "100 mx3.mail.ovh.net.", - "1 mx0.mail.ovh.net." + "50 mx2.mail.ovh.net." ], - "timestamp": "2024-01-07T04:40:31.841334314Z", + "timestamp": "2024-01-14T04:44:15.726966952Z", "matcher-status": true }, { @@ -116807,12 +117100,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:41:38.451213817Z", + "timestamp": "2024-01-14T04:44:58.113796296Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116844,12 +117137,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:41:38.451260084Z", + "timestamp": "2024-01-14T04:44:58.113845088Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116881,12 +117174,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "content-security-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:41:38.451270613Z", + "timestamp": "2024-01-14T04:44:58.113861148Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116918,12 +117211,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:41:38.45127963Z", + "timestamp": "2024-01-14T04:44:58.113873691Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116955,12 +117248,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:41:38.451292384Z", + "timestamp": "2024-01-14T04:44:58.113886315Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -116992,12 +117285,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:41:38.451308234Z", + "timestamp": "2024-01-14T04:44:58.113903026Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -117029,12 +117322,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:41:38.451322671Z", + "timestamp": "2024-01-14T04:44:58.113921561Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -117066,12 +117359,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://deveco.incubateur.anct.gouv.fr", "matched-at": "https://deveco.incubateur.anct.gouv.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:41:38.451335655Z", + "timestamp": "2024-01-14T04:44:58.113942991Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -117109,7 +117402,7 @@ " mailto:support-incubateur@anct.gouv.fr" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:41:53.662260669Z", + "timestamp": "2024-01-14T04:45:07.542080581Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://deveco.incubateur.anct.gouv.fr/.well-known/security.txt'", "matcher-status": true }, @@ -117140,7 +117433,7 @@ "Let's Encrypt" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:42:47.084117104Z", + "timestamp": "2024-01-14T04:46:27.280795803Z", "matcher-status": true }, { @@ -117170,7 +117463,7 @@ "deveco.incubateur.anct.gouv.fr" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:42:47.084262927Z", + "timestamp": "2024-01-14T04:46:27.280922099Z", "matcher-status": true }, { @@ -117201,7 +117494,7 @@ "tls12" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:42:49.760613274Z", + "timestamp": "2024-01-14T04:46:59.985347596Z", "matcher-status": true }, { @@ -117232,7 +117525,7 @@ "tls13" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T04:42:50.185377026Z", + "timestamp": "2024-01-14T04:47:00.180848781Z", "matcher-status": true } ], @@ -117240,7 +117533,7 @@ { "requestedUrl": "https://deveco.incubateur.anct.gouv.fr/", "finalUrl": "https://deveco.incubateur.anct.gouv.fr/", - "fetchTime": "2024-01-07T04:36:09.878Z", + "fetchTime": "2024-01-14T04:41:12.003Z", "runWarnings": [], "categories": { "performance": { @@ -117251,7 +117544,7 @@ "snapshot" ], "id": "performance", - "score": 0.7070400238037109 + "score": 0.7073299407958984 }, "accessibility": { "title": "Accessibility", @@ -117303,53 +117596,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11696, + "numericValue": 11578, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 6991, - "firstMeaningfulPaint": 6991, - "largestContentfulPaint": 9305, - "interactive": 11696, - "speedIndex": 6991, - "totalBlockingTime": 130, - "maxPotentialFID": 192, - "cumulativeLayoutShift": 0.00596261935763889, - "cumulativeLayoutShiftMainFrame": 0.00596261935763889, - "totalCumulativeLayoutShift": 0.00596261935763889, + "firstContentfulPaint": 7104, + "firstMeaningfulPaint": 7104, + "largestContentfulPaint": 10064, + "interactive": 11578, + "speedIndex": 9801, + "totalBlockingTime": 43, + "maxPotentialFID": 93, + "cumulativeLayoutShift": 0.004322930230034722, + "cumulativeLayoutShiftMainFrame": 0.004322930230034722, + "totalCumulativeLayoutShift": 0.004322930230034722, "observedTimeOrigin": 0, - "observedTimeOriginTs": 322913339, + "observedTimeOriginTs": 288983051, "observedNavigationStart": 0, - "observedNavigationStartTs": 322913339, - "observedFirstPaint": 1336, - "observedFirstPaintTs": 324249772, - "observedFirstContentfulPaint": 1336, - "observedFirstContentfulPaintTs": 324249772, - "observedFirstContentfulPaintAllFrames": 1336, - "observedFirstContentfulPaintAllFramesTs": 324249772, - "observedFirstMeaningfulPaint": 1336, - "observedFirstMeaningfulPaintTs": 324249772, - "observedLargestContentfulPaint": 1539, - "observedLargestContentfulPaintTs": 324452291, - "observedLargestContentfulPaintAllFrames": 1539, - "observedLargestContentfulPaintAllFramesTs": 324452291, - "observedTraceEnd": 4687, - "observedTraceEndTs": 327600379, - "observedLoad": 2198, - "observedLoadTs": 325110865, - "observedDomContentLoaded": 1332, - "observedDomContentLoadedTs": 324245245, - "observedCumulativeLayoutShift": 0.00596261935763889, - "observedCumulativeLayoutShiftMainFrame": 0.00596261935763889, - "observedTotalCumulativeLayoutShift": 0.00596261935763889, - "observedFirstVisualChange": 1323, - "observedFirstVisualChangeTs": 324236339, - "observedLastVisualChange": 2190, - "observedLastVisualChangeTs": 325103339, - "observedSpeedIndex": 1403, - "observedSpeedIndexTs": 324315860 + "observedNavigationStartTs": 288983051, + "observedFirstPaint": 924, + "observedFirstPaintTs": 289906844, + "observedFirstContentfulPaint": 924, + "observedFirstContentfulPaintTs": 289906844, + "observedFirstContentfulPaintAllFrames": 924, + "observedFirstContentfulPaintAllFramesTs": 289906844, + "observedFirstMeaningfulPaint": 924, + "observedFirstMeaningfulPaintTs": 289906844, + "observedLargestContentfulPaint": 1069, + "observedLargestContentfulPaintTs": 290051911, + "observedLargestContentfulPaintAllFrames": 1069, + "observedLargestContentfulPaintAllFramesTs": 290051911, + "observedTraceEnd": 4039, + "observedTraceEndTs": 293021728, + "observedLoad": 1291, + "observedLoadTs": 290274212, + "observedDomContentLoaded": 863, + "observedDomContentLoadedTs": 289846367, + "observedCumulativeLayoutShift": 0.004322930230034722, + "observedCumulativeLayoutShiftMainFrame": 0.004322930230034722, + "observedTotalCumulativeLayoutShift": 0.004322930230034722, + "observedFirstVisualChange": 922, + "observedFirstVisualChangeTs": 289905051, + "observedLastVisualChange": 1638, + "observedLastVisualChangeTs": 290621051, + "observedSpeedIndex": 965, + "observedSpeedIndexTs": 289948402 }, { "lcpInvalidated": false @@ -117367,23 +117660,23 @@ "type": "debugdata", "items": [ { - "numRequests": 46, + "numRequests": 44, "numScripts": 3, "numStylesheets": 3, "numFonts": 3, - "numTasks": 902, - "numTasksOver10ms": 5, - "numTasksOver25ms": 3, + "numTasks": 845, + "numTasksOver10ms": 4, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 132.13400000000001, - "throughput": 12110085.93984777, - "maxRtt": 135.86, - "maxServerLatency": 777.452, - "totalByteWeight": 2584530, - "totalTaskTime": 273.40299999999866, - "mainDocumentTransferSize": 20213 + "rtt": 80.50500000000001, + "throughput": 19326439.16600255, + "maxRtt": 82.37400000000001, + "maxServerLatency": 655.793, + "totalByteWeight": 2583010, + "totalTaskTime": 231.85699999999954, + "mainDocumentTransferSize": 20418 } ] } @@ -117481,7 +117774,7 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.7070400238037109, + "lighthouse_performance": 0.7073299407958984, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -117504,7 +117797,213 @@ "url": "https://diagoriente.beta.gouv.fr", "category": "startup", "betaId": "diagoriente", - "http": null, + "http": { + "url": "https://diagoriente.beta.gouv.fr", + "algorithm_version": 2, + "end_time": "Sun, 14 Jan 2024 04:53:27 GMT", + "grade": "C-", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "s-maxage=600, stale-while-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "frame-ancestors https://diagoriente.beta.gouv.fr/ app.diagoriente.beta.gouv.fr diagoriente.beta.gouv.fr", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 14 Jan 2024 04:53:23 GMT", + "ETag": "\"2081b-Fq9Kl7BzPOxBtujq3++Pi6gRGgY\"", + "Server": "nginx", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Frame-Options": "ALLOW-FROM diagoriente.beta.gouv.fr", + "x-nextjs-cache": "HIT" + }, + "scan_id": 46454288, + "score": 45, + "start_time": "Sun, 14 Jan 2024 04:50:14 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 4, + "tests_passed": 8, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "frame-ancestors": [ + "https://diagoriente.beta.gouv.fr/", + "diagoriente.beta.gouv.fr", + "app.diagoriente.beta.gouv.fr" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": true + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://diagoriente.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://diagoriente.beta.gouv.fr/", + "https://diagoriente.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "ALLOW-FROM diagoriente.beta.gouv.fr" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 + } + } + }, "updownio": { "token": "r5ob", "url": "https://diagoriente.beta.gouv.fr", @@ -117513,7 +118012,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-05T10:13:43Z", + "up_since": "2024-01-10T01:28:14Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -117525,8 +118024,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T05:01:26Z", - "next_check_at": "2024-01-07T05:06:25Z", + "last_check_at": "2024-01-14T04:59:03Z", + "next_check_at": "2024-01-14T05:04:02Z", "created_at": "2021-04-22T19:52:39Z", "mute_until": null, "favicon_url": "https://diagoriente.beta.gouv.fr/favicon-16x16.png", @@ -117534,24 +118033,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T04:46:31Z", - "expires_at": "2024-02-07T11:45:43Z", + "tested_at": "2024-01-14T04:19:12Z", + "expires_at": "2024-04-07T15:12:17Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.958, "timings": { "redirect": 0, - "namelookup": 166, - "connection": 168, - "handshake": 175, - "response": 179, - "total": 688 + "namelookup": 141, + "connection": 148, + "handshake": 155, + "response": 277, + "total": 722 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "E" }, "nmap": { "host": "diagoriente.beta.gouv.fr", @@ -117885,7 +118384,7 @@ "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "INFO", - "finding": "04FE1A6EA4987C887B4ED268209BD67041E4" + "finding": "04E08BAB3FF6008D64E0224810AC2828227F" }, { "id": "cert_serialNumberLen", @@ -117899,21 +118398,21 @@ "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "INFO", - "finding": "E774863D98B5121679864074B0C4A14AF8FEE21A" + "finding": "6AAE013F1D7582B8EAF18802171BD09A821DEBE4" }, { "id": "cert_fingerprintSHA256", "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "INFO", - "finding": "D4BAA8AC1BFC11B859A12334D48E7A15FA4034166769BD0A4FC9F12FB21248C0" + "finding": "666D43AFE8C1FD5B17761832DF6E223FA9691E6DD5F2EF82DE6DF3F8585FFF57" }, { "id": "cert", "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -117962,21 +118461,21 @@ "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "OK", - "finding": "31 >= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "INFO", - "finding": "2023-11-09 11:45" + "finding": "2024-01-08 15:12" }, { "id": "cert_notAfter", "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "OK", - "finding": "2024-02-07 11:45" + "finding": "2024-04-07 15:12" }, { "id": "cert_extlifeSpan", @@ -118165,7 +118664,7 @@ "ip": "diagoriente.beta.gouv.fr/141.94.175.156", "port": "443", "severity": "INFO", - "finding": "1704603601" + "finding": "1705208095" }, { "id": "HSTS", @@ -118352,7 +118851,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D4BAA8AC1BFC11B859A12334D48E7A15FA4034166769BD0A4FC9F12FB21248C0" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=666D43AFE8C1FD5B17761832DF6E223FA9691E6DD5F2EF82DE6DF3F8585FFF57" }, { "id": "LOGJAM-common_primes", @@ -118803,8 +119302,8 @@ "content-encoding": "gzip", "content-security-policy": "frame-ancestors https://diagoriente.beta.gouv.fr/ app.diagoriente.beta.gouv.fr diagoriente.beta.gouv.fr", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 04:58:59 GMT", - "etag": "\"2081b-nQfAdeWmTdZgKineh/IN9hLI/5s\"", + "date": "Sun, 14 Jan 2024 04:53:52 GMT", + "etag": "\"2081b-Fq9Kl7BzPOxBtujq3++Pi6gRGgY\"", "server": "nginx", "vary": "Accept-Encoding", "x-frame-options": "ALLOW-FROM diagoriente.beta.gouv.fr", @@ -118869,7 +119368,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.167.95", + "ip": "172.253.122.95", "geoip": { "continent": { "code": "NA", @@ -118889,7 +119388,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -118909,7 +119408,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -118923,15 +119422,8 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.31.94", + "ip": "172.253.63.94", "geoip": { - "city": { - "geoname_id": 4364745, - "names": { - "en": "Oxford", - "ru": "Оксфорд" - } - }, "continent": { "code": "NA", "geoname_id": 6255149, @@ -118950,7 +119442,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -118961,20 +119453,16 @@ } }, "location": { - "accuracy_radius": 50, - "latitude": 38.6828, - "longitude": -76.1563, - "metro_code": 512, - "time_zone": "America/New_York" - }, - "postal": { - "code": "21654" + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -118983,23 +119471,7 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 4361885, - "iso_code": "MD", - "names": { - "de": "Maryland", - "en": "Maryland", - "es": "Maryland", - "fr": "Maryland", - "ja": "メリーランド州", - "pt-BR": "Maryland", - "ru": "Мэриленд", - "zh-CN": "马里兰州" - } - } - ] + } } }, { @@ -119024,7 +119496,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -119044,7 +119516,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -119369,7 +119841,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 04:44:55", + "@generated": "Sun, 14 Jan 2024 04:49:48", "site": [ { "@name": "https://diagoriente.beta.gouv.fr", @@ -119544,22 +120016,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -119575,12 +120047,7 @@ "type": "dns", "host": "diagoriente.beta.gouv.fr.", "matched-at": "diagoriente.beta.gouv.fr", - "extracted-results": [ - "\"Sendinblue-code:bfa8bf448e49e98e49c09a8b8884e415\"", - "\"google-site-verification=PkpfLn7Waysjh0hEoTrjU0DV8h4zBuU2zXFIHRRleak\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"" - ], - "timestamp": "2024-01-07T05:01:09.784084181Z", + "timestamp": "2024-01-14T04:56:03.752582059Z", "matcher-status": true }, { @@ -119620,27 +120087,24 @@ "extracted-results": [ "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2024-01-07T05:01:09.86190144Z", + "timestamp": "2024-01-14T04:56:03.754652349Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -119655,7 +120119,11 @@ "type": "dns", "host": "diagoriente.beta.gouv.fr.", "matched-at": "diagoriente.beta.gouv.fr", - "timestamp": "2024-01-07T05:01:10.012741737Z", + "extracted-results": [ + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." + ], + "timestamp": "2024-01-14T04:56:03.841833593Z", "matcher-status": true }, { @@ -119694,24 +120162,27 @@ "extracted-results": [ "5 mx-mibc-fr-10.mailinblack.com." ], - "timestamp": "2024-01-07T05:01:10.096456903Z", + "timestamp": "2024-01-14T04:56:04.151758929Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -119727,10 +120198,11 @@ "host": "diagoriente.beta.gouv.fr.", "matched-at": "diagoriente.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "\"v=spf1 include:spf.sendinblue.com mx ~all\"", + "\"Sendinblue-code:bfa8bf448e49e98e49c09a8b8884e415\"", + "\"google-site-verification=PkpfLn7Waysjh0hEoTrjU0DV8h4zBuU2zXFIHRRleak\"" ], - "timestamp": "2024-01-07T05:01:10.161174241Z", + "timestamp": "2024-01-14T04:56:04.929960488Z", "matcher-status": true }, { @@ -119760,7 +120232,7 @@ "HEAD" ], "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:01:20.000810489Z", + "timestamp": "2024-01-14T04:56:14.131376551Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -119798,7 +120270,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:07.157765807Z", + "timestamp": "2024-01-14T04:56:59.926421636Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -119825,7 +120297,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:07.532780065Z", + "timestamp": "2024-01-14T04:57:00.301700528Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -119852,7 +120324,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:07.532813288Z", + "timestamp": "2024-01-14T04:57:00.301752915Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -119879,7 +120351,118 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:07.532832824Z", + "timestamp": "2024-01-14T04:57:00.301772241Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://diagoriente.beta.gouv.fr", + "matched-at": "https://diagoriente.beta.gouv.fr", + "ip": "141.94.175.156", + "timestamp": "2024-01-14T04:57:07.348287065Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://diagoriente.beta.gouv.fr", + "matched-at": "https://diagoriente.beta.gouv.fr", + "ip": "141.94.175.156", + "timestamp": "2024-01-14T04:57:07.348331838Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://diagoriente.beta.gouv.fr", + "matched-at": "https://diagoriente.beta.gouv.fr", + "ip": "141.94.175.156", + "timestamp": "2024-01-14T04:57:07.348342618Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -119916,7 +120499,118 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:14.719003998Z", + "timestamp": "2024-01-14T04:57:07.348353459Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://diagoriente.beta.gouv.fr", + "matched-at": "https://diagoriente.beta.gouv.fr", + "ip": "141.94.175.156", + "timestamp": "2024-01-14T04:57:07.348368416Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://diagoriente.beta.gouv.fr", + "matched-at": "https://diagoriente.beta.gouv.fr", + "ip": "141.94.175.156", + "timestamp": "2024-01-14T04:57:07.348384045Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://diagoriente.beta.gouv.fr", + "matched-at": "https://diagoriente.beta.gouv.fr", + "ip": "141.94.175.156", + "timestamp": "2024-01-14T04:57:07.348398082Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -119953,7 +120647,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:14.719045125Z", + "timestamp": "2024-01-14T04:57:07.348411276Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -119990,229 +120684,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:14.719055595Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://diagoriente.beta.gouv.fr", - "matched-at": "https://diagoriente.beta.gouv.fr", - "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:14.719071785Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://diagoriente.beta.gouv.fr", - "matched-at": "https://diagoriente.beta.gouv.fr", - "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:14.719092373Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://diagoriente.beta.gouv.fr", - "matched-at": "https://diagoriente.beta.gouv.fr", - "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:14.719108123Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://diagoriente.beta.gouv.fr", - "matched-at": "https://diagoriente.beta.gouv.fr", - "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:14.719121007Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://diagoriente.beta.gouv.fr", - "matched-at": "https://diagoriente.beta.gouv.fr", - "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:14.719136486Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://diagoriente.beta.gouv.fr", - "matched-at": "https://diagoriente.beta.gouv.fr", - "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:14.719156072Z", + "timestamp": "2024-01-14T04:57:07.348428869Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr'", "matcher-status": true }, @@ -120240,7 +120712,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr/robots.txt", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:29.057629955Z", + "timestamp": "2024-01-14T04:57:21.678547919Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -120280,7 +120752,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr/", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:48.858347688Z", + "timestamp": "2024-01-14T04:57:40.797473672Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: diagoriente.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr/'", "matcher-status": true }, @@ -120320,7 +120792,7 @@ "host": "https://diagoriente.beta.gouv.fr", "matched-at": "https://diagoriente.beta.gouv.fr/", "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:02:48.8584184Z", + "timestamp": "2024-01-14T04:57:40.797529606Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: diagoriente.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://diagoriente.beta.gouv.fr/'", "matcher-status": true }, @@ -120351,7 +120823,7 @@ "Let's Encrypt" ], "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:04:34.385546573Z", + "timestamp": "2024-01-14T04:59:18.675996238Z", "matcher-status": true }, { @@ -120381,7 +120853,7 @@ "diagoriente.beta.gouv.fr" ], "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:04:34.38565714Z", + "timestamp": "2024-01-14T04:59:18.676116332Z", "matcher-status": true }, { @@ -120412,7 +120884,7 @@ "tls12" ], "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:04:36.599643395Z", + "timestamp": "2024-01-14T04:59:21.649270442Z", "matcher-status": true }, { @@ -120443,7 +120915,7 @@ "tls13" ], "ip": "141.94.175.156", - "timestamp": "2024-01-07T05:04:36.78088018Z", + "timestamp": "2024-01-14T04:59:21.842205499Z", "matcher-status": true } ], @@ -120451,7 +120923,7 @@ { "requestedUrl": "https://diagoriente.beta.gouv.fr/", "finalUrl": "https://diagoriente.beta.gouv.fr/", - "fetchTime": "2024-01-07T04:45:08.987Z", + "fetchTime": "2024-01-14T04:50:02.215Z", "runWarnings": [], "categories": { "performance": { @@ -120514,53 +120986,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4547, + "numericValue": 5085, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2175, - "firstMeaningfulPaint": 2175, - "largestContentfulPaint": 2175, - "interactive": 4547, - "speedIndex": 2175, - "totalBlockingTime": 263, - "maxPotentialFID": 427, - "cumulativeLayoutShift": 0.1038579527537028, - "cumulativeLayoutShiftMainFrame": 0.1038579527537028, - "totalCumulativeLayoutShift": 0.1038579527537028, + "firstContentfulPaint": 2171, + "firstMeaningfulPaint": 2171, + "largestContentfulPaint": 2171, + "interactive": 5085, + "speedIndex": 2414, + "totalBlockingTime": 206, + "maxPotentialFID": 339, + "cumulativeLayoutShift": 0.09161858558654785, + "cumulativeLayoutShiftMainFrame": 0.09161858558654785, + "totalCumulativeLayoutShift": 0.09161858558654785, "observedTimeOrigin": 0, - "observedTimeOriginTs": 305673351, + "observedTimeOriginTs": 372217916, "observedNavigationStart": 0, - "observedNavigationStartTs": 305673351, - "observedFirstPaint": 445, - "observedFirstPaintTs": 306118637, - "observedFirstContentfulPaint": 445, - "observedFirstContentfulPaintTs": 306118637, - "observedFirstContentfulPaintAllFrames": 445, - "observedFirstContentfulPaintAllFramesTs": 306118637, - "observedFirstMeaningfulPaint": 445, - "observedFirstMeaningfulPaintTs": 306118637, - "observedLargestContentfulPaint": 445, - "observedLargestContentfulPaintTs": 306118637, - "observedLargestContentfulPaintAllFrames": 445, - "observedLargestContentfulPaintAllFramesTs": 306118637, - "observedTraceEnd": 3036, - "observedTraceEndTs": 308709286, - "observedLoad": 727, - "observedLoadTs": 306400682, - "observedDomContentLoaded": 713, - "observedDomContentLoadedTs": 306386783, - "observedCumulativeLayoutShift": 0.1038579527537028, - "observedCumulativeLayoutShiftMainFrame": 0.1038579527537028, - "observedTotalCumulativeLayoutShift": 0.1038579527537028, - "observedFirstVisualChange": 447, - "observedFirstVisualChangeTs": 306120351, - "observedLastVisualChange": 1064, - "observedLastVisualChangeTs": 306737351, - "observedSpeedIndex": 468, - "observedSpeedIndexTs": 306141754 + "observedNavigationStartTs": 372217916, + "observedFirstPaint": 805, + "observedFirstPaintTs": 373022972, + "observedFirstContentfulPaint": 805, + "observedFirstContentfulPaintTs": 373022972, + "observedFirstContentfulPaintAllFrames": 805, + "observedFirstContentfulPaintAllFramesTs": 373022972, + "observedFirstMeaningfulPaint": 805, + "observedFirstMeaningfulPaintTs": 373022972, + "observedLargestContentfulPaint": 805, + "observedLargestContentfulPaintTs": 373022972, + "observedLargestContentfulPaintAllFrames": 805, + "observedLargestContentfulPaintAllFramesTs": 373022972, + "observedTraceEnd": 5030, + "observedTraceEndTs": 377248269, + "observedLoad": 2721, + "observedLoadTs": 374939038, + "observedDomContentLoaded": 2308, + "observedDomContentLoadedTs": 374526149, + "observedCumulativeLayoutShift": 0.09161858558654785, + "observedCumulativeLayoutShiftMainFrame": 0.09161858558654785, + "observedTotalCumulativeLayoutShift": 0.09161858558654785, + "observedFirstVisualChange": 800, + "observedFirstVisualChangeTs": 373017916, + "observedLastVisualChange": 2317, + "observedLastVisualChangeTs": 374534916, + "observedSpeedIndex": 895, + "observedSpeedIndexTs": 373112742 }, { "lcpInvalidated": false @@ -120582,19 +121054,19 @@ "numScripts": 10, "numStylesheets": 3, "numFonts": 2, - "numTasks": 694, - "numTasksOver10ms": 3, - "numTasksOver25ms": 1, + "numTasks": 768, + "numTasksOver10ms": 5, + "numTasksOver25ms": 3, "numTasksOver50ms": 1, - "numTasksOver100ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 2.403, - "throughput": 12169768.63043311, - "maxRtt": 80.929, - "maxServerLatency": 101.78799999999998, - "totalByteWeight": 550644, - "totalTaskTime": 196.34200000000013, - "mainDocumentTransferSize": 32707 + "rtt": 6.217, + "throughput": 2025032.8369216404, + "maxRtt": 82.87, + "maxServerLatency": 52.259000000000015, + "totalByteWeight": 550592, + "totalTaskTime": 250.17700000000175, + "mainDocumentTransferSize": 32720 } ] } @@ -120690,15 +121162,16 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "apdex": 1, - "apdexGrade": "A", + "httpGrade": "C-", + "apdex": 0.958, + "apdexGrade": "E", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "B", "nmapOpenPortsCount": 3, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-02-07T11:45:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-04-07T15:12:00.000Z", "testsslGrade": "A", "cookiesGrade": "A", "cookiesCount": 0, @@ -120727,7 +121200,264 @@ "url": "https://dossierfacile.fr", "category": "startup", "betaId": "locatio", - "http": null, + "http": { + "url": "https://dossierfacile.fr", + "algorithm_version": 2, + "end_time": "Sun, 14 Jan 2024 04:53:18 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'none'; script-src 'self' *.dossierfacile.fr *.dossierfacile.logement.gouv.fr https://stats.beta.gouv.fr https://beacon-v2.helpscout.net 'unsafe-eval' 'unsafe-inline' ; style-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css 'unsafe-inline' fonts.googleapis.com ; img-src 'self' *.helpscout.net *.cloudfront.net data:; font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/ fonts.gstatic.com fonts.google.com fonts.googleapis.com data:; object-src 'none'; frame-src http://metabase.dossierfacile.logement.gouv.fr ; connect-src https://sentry.incubateur.net https://stats.beta.gouv.fr https://sheets.googleapis.com *.helpscout.net wss://ws-helpscout.pusher.com https://sockjs-helpscout.pusher.com *.cloudfront.net *.dossierfacile.fr *.dossierfacile.logement.gouv.fr", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 14 Jan 2024 04:53:16 GMT", + "ETag": "W/\"6581b4d3-2799c\"", + "Last-Modified": "Tue, 19 Dec 2023 15:20:51 GMT", + "Strict-Transport-Security": "max-age=31536000", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "deny", + "X-Request-ID": "af2592f5-6739-472a-8119-5a3cd863050e" + }, + "scan_id": 46454313, + "score": 55, + "start_time": "Sun, 14 Jan 2024 04:51:02 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 4, + "tests_passed": 8, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "connect-src": [ + "https://stats.beta.gouv.fr", + "https://sheets.googleapis.com", + "https://sentry.incubateur.net", + "*.dossierfacile.logement.gouv.fr", + "wss://ws-helpscout.pusher.com", + "*.helpscout.net", + "*.cloudfront.net", + "*.dossierfacile.fr", + "https://sockjs-helpscout.pusher.com" + ], + "default-src": [ + "'none'" + ], + "font-src": [ + "https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/", + "'self'", + "data:", + "fonts.gstatic.com", + "fonts.googleapis.com", + "fonts.google.com" + ], + "frame-src": [ + "http://metabase.dossierfacile.logement.gouv.fr" + ], + "img-src": [ + "'self'", + "*.helpscout.net", + "data:", + "*.cloudfront.net" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "https://stats.beta.gouv.fr", + "'self'", + "*.dossierfacile.logement.gouv.fr", + "'unsafe-inline'", + "*.dossierfacile.fr", + "'unsafe-eval'", + "https://beacon-v2.helpscout.net" + ], + "style-src": [ + "'self'", + "'unsafe-inline'", + "https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css", + "fonts.googleapis.com" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": true, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": true, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://www.dossierfacile.logement.gouv.fr/", + "redirects": true, + "route": [ + "http://dossierfacile.fr/", + "http://www.dossierfacile.logement.gouv.fr/", + "https://www.dossierfacile.logement.gouv.fr/" + ], + "status_code": 200 + }, + "pass": false, + "result": "redirection-not-to-https-on-initial-redirection", + "score_description": "Redirects to HTTPS eventually, but initial redirection is to another HTTP URL", + "score_modifier": -10 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": { + "https://beacon-v2.helpscout.net": { + "crossorigin": null, + "integrity": null + } + } + }, + "pass": false, + "result": "sri-not-implemented-but-external-scripts-loaded-securely", + "score_description": "Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS", + "score_modifier": -5 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "deny" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 + } + } + }, "updownio": { "token": "8633", "url": "https://dossierfacile.fr", @@ -120748,8 +121478,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T05:09:53Z", - "next_check_at": "2024-01-07T05:14:53Z", + "last_check_at": "2024-01-14T04:59:32Z", + "next_check_at": "2024-01-14T05:04:32Z", "created_at": "2021-04-22T19:54:05Z", "mute_until": null, "favicon_url": null, @@ -120757,7 +121487,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T04:30:02Z", + "tested_at": "2024-01-14T04:54:36Z", "expires_at": "2024-03-10T08:36:06Z", "valid": true, "error": null @@ -120765,12 +121495,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 463, - "namelookup": 222, - "connection": 106, - "handshake": 113, - "response": 109, - "total": 1013 + "redirect": 583, + "namelookup": 244, + "connection": 143, + "handshake": 148, + "response": 143, + "total": 1261 } }, "uptimeGrade": "A", @@ -121148,7 +121878,7 @@ "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "63 >= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", @@ -121351,7 +122081,7 @@ "ip": "dossierfacile.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704603828" + "finding": "1705208079" }, { "id": "HSTS", @@ -122109,7 +122839,7 @@ "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -122249,7 +122979,7 @@ "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "63 >= 30 days" + "finding": "56 >= 30 days" }, { "id": "cert_notBefore", @@ -122452,7 +123182,7 @@ "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704603923" + "finding": "1705208135" }, { "id": "HSTS", @@ -123008,7 +123738,7 @@ "ip": "dossierfacile.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "195" + "finding": "118" } ], "thirdparties": { @@ -123025,6 +123755,14 @@ "type": "unknown", "url": "https://beacon-v2.helpscout.net/" }, + { + "type": "unknown", + "url": "https://beacon-v2.helpscout.net/static/js/vendor.cd87fe5a.js" + }, + { + "type": "unknown", + "url": "https://beacon-v2.helpscout.net/static/js/main.b333a5f1.js" + }, { "type": "jsdelivr", "url": "https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.woff2?t=1690730386070", @@ -123033,14 +123771,6 @@ "message": "Host files locally" } }, - { - "type": "unknown", - "url": "https://beacon-v2.helpscout.net/static/js/vendor.69ce94b1.js" - }, - { - "type": "unknown", - "url": "https://beacon-v2.helpscout.net/static/js/main.e720f7e9.js" - }, { "type": "jsdelivr", "url": "https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.woff2?t=1690730386070", @@ -123049,6 +123779,10 @@ "message": "Host files locally" } }, + { + "type": "unknown", + "url": "https://beacon-v2.helpscout.net/static/js/full-beacon-init.bbbda94e.chunk.js" + }, { "type": "cloudfront", "url": "https://d3hb14vkzrxvla.cloudfront.net/v1/e9f4da7d-11be-4b40-9514-ac7ce3e68f67", @@ -123076,7 +123810,7 @@ "value": "fr", "domain": ".dossierfacile.logement.gouv.fr", "path": "/", - "expires": 1736139738, + "expires": 1736744021, "size": 6, "httpOnly": false, "secure": false, @@ -123091,14 +123825,14 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'none'; script-src 'self' *.dossierfacile.fr *.dossierfacile.logement.gouv.fr https://stats.beta.gouv.fr https://beacon-v2.helpscout.net 'unsafe-eval' 'unsafe-inline' ; style-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/remixicon.min.css 'unsafe-inline' fonts.googleapis.com ; img-src 'self' *.helpscout.net *.cloudfront.net data:; font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@3.5.0/fonts/ fonts.gstatic.com fonts.google.com fonts.googleapis.com data:; object-src 'none'; frame-src http://metabase.dossierfacile.logement.gouv.fr ; connect-src https://sentry.incubateur.net https://stats.beta.gouv.fr https://sheets.googleapis.com *.helpscout.net wss://ws-helpscout.pusher.com https://sockjs-helpscout.pusher.com *.cloudfront.net *.dossierfacile.fr *.dossierfacile.logement.gouv.fr", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 05:02:17 GMT", + "date": "Sun, 14 Jan 2024 04:53:40 GMT", "etag": "W/\"6581b4d3-2799c\"", "last-modified": "Tue, 19 Dec 2023 15:20:51 GMT", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "deny", - "x-request-id": "2c1f8402-7d3c-4a21-992c-7cec1dd7500b" + "x-request-id": "7b22670a-b557-4168-b4e4-d0773c230eb6" }, "endpoints": [ { @@ -123192,18 +123926,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "151.101.41.229", + "ip": "146.75.77.229", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 4887398, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -123224,7 +123959,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -123236,19 +123971,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, - "time_zone": "America/Los_Angeles" + "latitude": 41.8719, + "longitude": -87.6589, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "95141" + "code": "60607" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -123260,17 +123995,16 @@ }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -123278,7 +124012,7 @@ }, { "hostname": "beacon-v2.helpscout.net", - "ip": "18.238.192.64", + "ip": "3.162.174.51", "geoip": { "continent": { "code": "NA", @@ -123298,7 +124032,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -123318,7 +124052,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -123332,7 +124066,7 @@ }, { "hostname": "d3hb14vkzrxvla.cloudfront.net", - "ip": "18.155.204.229", + "ip": "54.230.209.202", "geoip": { "continent": { "code": "NA", @@ -123352,7 +124086,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -123372,7 +124106,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -123440,7 +124174,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -123576,7 +124310,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 04:48:01", + "@generated": "Sun, 14 Jan 2024 04:50:37", "site": [ { "@name": "https://dossierfacile.fr", @@ -123701,6 +124435,42 @@ ] }, "nuclei": [ + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "dossierfacile.fr.", + "matched-at": "dossierfacile.fr", + "extracted-results": [ + "dns17.ovh.net.", + "ns17.ovh.net." + ], + "timestamp": "2024-01-14T04:57:03.881095319Z", + "matcher-status": true + }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -123733,27 +124503,26 @@ "type": "dns", "host": "dossierfacile.fr.", "matched-at": "dossierfacile.fr", - "timestamp": "2024-01-07T05:07:10.070770815Z", + "timestamp": "2024-01-14T04:57:03.887606181Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -123770,13 +124539,18 @@ "host": "dossierfacile.fr.", "matched-at": "dossierfacile.fr", "extracted-results": [ - "5 ALT2.ASPMX.L.GOOGLE.COM.", - "5 ALT1.ASPMX.L.GOOGLE.COM.", - "10 ALT3.ASPMX.L.GOOGLE.COM.", - "1 ASPMX.L.GOOGLE.COM.", - "10 ALT4.ASPMX.L.GOOGLE.COM." + "\"google-site-verification=hFu6GQ0N694VDDEbLTACh4bw9Df4LjSW1_9zMZcseqA\"", + "\"google-site-verification=Uh5k_96PDJF9temMFbq1WKGWsclD2BXYPvKj7_xe1ag\"", + "\"v=spf1 mx include:_spf.google.com include:spf.sendinblue.com include:helpscoutemail.com include:9303710.spf05.hubspotemail.net ~all\"", + "\"google-site-verification=-slzh5L9JoxuwHA2BzSzUUSSWI2TStZ53U1eZc7VaDU\"", + "\"google-site-verification=nOSWR7SWUbzQqyy0Abhb5j6BXRZw5GV_hQ-XO7JbW0w\"", + "\"ZbD678MhF345\"", + "\"1|www.dossierfacile.fr\"", + "\"Sendinblue-code:045c66b329f70c18d43a77182e2afb74\"", + "\"**ZbD678MhF345**\"", + "\"google-site-verification=EDWoi4hgDsd2yp2_rPsUIsHZ_Dj14NfBH65NABwD8GA\"" ], - "timestamp": "2024-01-07T05:07:10.186595154Z", + "timestamp": "2024-01-14T04:57:03.963178804Z", "matcher-status": true }, { @@ -123816,71 +124590,28 @@ "extracted-results": [ "\"v=DMARC1; p=quarantine; rua=mailto:dmarc@dossierfacile.fr!10m; ruf=mailto:dmarc@dossierfacile.fr!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2024-01-07T05:07:10.333688512Z", + "timestamp": "2024-01-14T04:57:04.076054Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "dossierfacile.fr.", - "matched-at": "dossierfacile.fr", - "extracted-results": [ - "\"google-site-verification=EDWoi4hgDsd2yp2_rPsUIsHZ_Dj14NfBH65NABwD8GA\"", - "\"google-site-verification=nOSWR7SWUbzQqyy0Abhb5j6BXRZw5GV_hQ-XO7JbW0w\"", - "\"google-site-verification=hFu6GQ0N694VDDEbLTACh4bw9Df4LjSW1_9zMZcseqA\"", - "\"google-site-verification=Uh5k_96PDJF9temMFbq1WKGWsclD2BXYPvKj7_xe1ag\"", - "\"Sendinblue-code:045c66b329f70c18d43a77182e2afb74\"", - "\"1|www.dossierfacile.fr\"", - "\"**ZbD678MhF345**\"", - "\"ZbD678MhF345\"", - "\"google-site-verification=-slzh5L9JoxuwHA2BzSzUUSSWI2TStZ53U1eZc7VaDU\"", - "\"v=spf1 mx include:_spf.google.com include:spf.sendinblue.com include:helpscoutemail.com include:9303710.spf05.hubspotemail.net ~all\"" - ], - "timestamp": "2024-01-07T05:07:11.062261815Z", - "matcher-status": true - }, - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -123896,10 +124627,13 @@ "host": "dossierfacile.fr.", "matched-at": "dossierfacile.fr", "extracted-results": [ - "dns17.ovh.net.", - "ns17.ovh.net." + "5 ALT2.ASPMX.L.GOOGLE.COM.", + "5 ALT1.ASPMX.L.GOOGLE.COM.", + "10 ALT3.ASPMX.L.GOOGLE.COM.", + "1 ASPMX.L.GOOGLE.COM.", + "10 ALT4.ASPMX.L.GOOGLE.COM." ], - "timestamp": "2024-01-07T05:07:11.187065766Z", + "timestamp": "2024-01-14T04:57:04.874636868Z", "matcher-status": true }, { @@ -123936,15 +124670,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrantAddress", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "1ad87e27-d507-4a5e-9f85-990b44aa5519@u.o-w-o.info" + "Paris", + "75017", + "FR", + "159 avenue de Wagram" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.526949775Z", + "timestamp": "2024-01-14T04:58:07.554462538Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -123982,15 +124719,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "registrantCountry", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "+33.664928123" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.526994909Z", + "timestamp": "2024-01-14T04:58:07.554501661Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124036,7 +124773,7 @@ "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.527014365Z", + "timestamp": "2024-01-14T04:58:07.554512481Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124074,15 +124811,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "registrationDate", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "active" + "2019-08-26T12:33:33Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.527031126Z", + "timestamp": "2024-01-14T04:58:07.554524914Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124120,15 +124857,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "Dot Zero" + "2022-08-18T13:00:49Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.52704963Z", + "timestamp": "2024-01-14T04:58:07.55454436Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124174,7 +124911,7 @@ "2024-08-18T10:48:28Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.527061312Z", + "timestamp": "2024-01-14T04:58:07.554560801Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124212,15 +124949,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrantPhone", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "Dot Zero" + "+33.664928123" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.527072904Z", + "timestamp": "2024-01-14T04:58:07.554577041Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124258,18 +124995,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "nameServers", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "159 avenue de Wagram", - "Paris", - "75017", - "FR" + "dns17.ovh.net", + "ns17.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.527089084Z", + "timestamp": "2024-01-14T04:58:07.55459294Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124307,15 +125042,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "status", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "FR" + "active" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.527106667Z", + "timestamp": "2024-01-14T04:58:07.554608349Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124353,16 +125088,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantName", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "dns17.ovh.net", - "ns17.ovh.net" + "Dot Zero" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.527115773Z", + "timestamp": "2024-01-14T04:58:07.554623547Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124400,15 +125134,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "registrantOrg", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "2019-08-26T12:33:33Z" + "Dot Zero" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.52712493Z", + "timestamp": "2024-01-14T04:58:07.554638595Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124446,15 +125180,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantEmail", "type": "http", "host": "https://dossierfacile.fr", "matched-at": "https://rdap.nic.fr/domain/dossierfacile.fr", "extracted-results": [ - "2022-08-18T13:00:49Z" + "1ad87e27-d507-4a5e-9f85-990b44aa5519@u.o-w-o.info" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T05:08:40.527133537Z", + "timestamp": "2024-01-14T04:58:07.554653453Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/dossierfacile.fr'", "matcher-status": true }, @@ -124490,8 +125224,8 @@ "extracted-results": [ "https://beacon-v2.helpscout.net" ], - "ip": "5.104.101.30", - "timestamp": "2024-01-07T05:08:50.416470037Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T04:58:14.489892446Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: dossierfacile.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dossierfacile.fr/'", "matcher-status": true }, @@ -124521,8 +125255,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "5.104.101.30", - "timestamp": "2024-01-07T05:12:14.692133136Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T05:01:26.142964533Z", "matcher-status": true }, { @@ -124551,8 +125285,8 @@ "extracted-results": [ "dossierfacile.fr" ], - "ip": "5.104.101.30", - "timestamp": "2024-01-07T05:12:14.692237911Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T05:01:26.143085518Z", "matcher-status": true }, { @@ -124582,8 +125316,8 @@ "extracted-results": [ "tls12" ], - "ip": "5.104.101.30", - "timestamp": "2024-01-07T05:12:16.964323002Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T05:01:27.581338851Z", "matcher-status": true }, { @@ -124613,8 +125347,8 @@ "extracted-results": [ "tls13" ], - "ip": "5.104.101.30", - "timestamp": "2024-01-07T05:12:17.274996835Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T05:01:27.839773647Z", "matcher-status": true } ], @@ -124622,7 +125356,7 @@ { "requestedUrl": "https://dossierfacile.fr/", "finalUrl": "https://www.dossierfacile.logement.gouv.fr/", - "fetchTime": "2024-01-07T04:48:15.567Z", + "fetchTime": "2024-01-14T04:50:51.425Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://dossierfacile.fr/) was redirected to https://www.dossierfacile.logement.gouv.fr/. Try testing the second URL directly." ], @@ -124635,7 +125369,7 @@ "snapshot" ], "id": "performance", - "score": 0.4518106460571289 + "score": 0.42881088256835936 }, "accessibility": { "title": "Accessibility", @@ -124687,53 +125421,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11035, + "numericValue": 10288, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4238, - "firstMeaningfulPaint": 4238, - "largestContentfulPaint": 8793, - "interactive": 11035, - "speedIndex": 7381, - "totalBlockingTime": 349, - "maxPotentialFID": 416, + "firstContentfulPaint": 4195, + "firstMeaningfulPaint": 4195, + "largestContentfulPaint": 8640, + "interactive": 10288, + "speedIndex": 7162, + "totalBlockingTime": 200, + "maxPotentialFID": 183, "cumulativeLayoutShift": 0.00018017578125, "cumulativeLayoutShiftMainFrame": 0.00018017578125, "totalCumulativeLayoutShift": 0.00018017578125, "observedTimeOrigin": 0, - "observedTimeOriginTs": 303153430, + "observedTimeOriginTs": 287898324, "observedNavigationStart": 0, - "observedNavigationStartTs": 303153430, - "observedFirstPaint": 1571, - "observedFirstPaintTs": 304724432, - "observedFirstContentfulPaint": 1571, - "observedFirstContentfulPaintTs": 304724432, - "observedFirstContentfulPaintAllFrames": 1571, - "observedFirstContentfulPaintAllFramesTs": 304724432, - "observedFirstMeaningfulPaint": 1571, - "observedFirstMeaningfulPaintTs": 304724432, - "observedLargestContentfulPaint": 1861, - "observedLargestContentfulPaintTs": 305014823, - "observedLargestContentfulPaintAllFrames": 1861, - "observedLargestContentfulPaintAllFramesTs": 305014823, - "observedTraceEnd": 5216, - "observedTraceEndTs": 308369497, - "observedLoad": 2906, - "observedLoadTs": 306059816, - "observedDomContentLoaded": 1946, - "observedDomContentLoadedTs": 305099865, + "observedNavigationStartTs": 287898324, + "observedFirstPaint": 1102, + "observedFirstPaintTs": 289000195, + "observedFirstContentfulPaint": 1102, + "observedFirstContentfulPaintTs": 289000195, + "observedFirstContentfulPaintAllFrames": 1102, + "observedFirstContentfulPaintAllFramesTs": 289000195, + "observedFirstMeaningfulPaint": 1102, + "observedFirstMeaningfulPaintTs": 289000195, + "observedLargestContentfulPaint": 1304, + "observedLargestContentfulPaintTs": 289202414, + "observedLargestContentfulPaintAllFrames": 1304, + "observedLargestContentfulPaintAllFramesTs": 289202414, + "observedTraceEnd": 4137, + "observedTraceEndTs": 292035420, + "observedLoad": 1826, + "observedLoadTs": 289724668, + "observedDomContentLoaded": 1384, + "observedDomContentLoadedTs": 289282177, "observedCumulativeLayoutShift": 0.00018017578125, "observedCumulativeLayoutShiftMainFrame": 0.00018017578125, "observedTotalCumulativeLayoutShift": 0.00018017578125, - "observedFirstVisualChange": 1567, - "observedFirstVisualChangeTs": 304720430, - "observedLastVisualChange": 2684, - "observedLastVisualChangeTs": 305837430, - "observedSpeedIndex": 1818, - "observedSpeedIndexTs": 304971634 + "observedFirstVisualChange": 1106, + "observedFirstVisualChangeTs": 289004324, + "observedLastVisualChange": 3473, + "observedLastVisualChangeTs": 291371324, + "observedSpeedIndex": 1306, + "observedSpeedIndexTs": 289204098 }, { "lcpInvalidated": false @@ -124751,23 +125485,23 @@ "type": "debugdata", "items": [ { - "numRequests": 77, - "numScripts": 8, + "numRequests": 78, + "numScripts": 9, "numStylesheets": 3, "numFonts": 4, - "numTasks": 1245, - "numTasksOver10ms": 11, + "numTasks": 1334, + "numTasksOver10ms": 6, "numTasksOver25ms": 3, "numTasksOver50ms": 2, - "numTasksOver100ms": 2, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 11298067.070731154, - "maxRtt": 150.265, - "maxServerLatency": 89.48300000000002, - "totalByteWeight": 1301227, - "totalTaskTime": 542.8329999999985, - "mainDocumentTransferSize": 98846 + "throughput": 17532218.731599413, + "maxRtt": 100.712, + "maxServerLatency": 84.752, + "totalByteWeight": 1421812, + "totalTaskTime": 446.2069999999984, + "mainDocumentTransferSize": 98828 } ] } @@ -124863,6 +125597,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "C", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -124876,8 +125611,8 @@ "cookiesGrade": "B", "cookiesCount": 1, "trackersGrade": "C", - "trackersCount": 9, - "lighthouse_performance": 0.4518106460571289, + "trackersCount": 10, + "lighthouse_performance": 0.42881088256835936, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -124906,29 +125641,29 @@ "http": { "url": "https://emplois.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:07:18 GMT", + "end_time": "Sun, 14 Jan 2024 05:00:35 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "7366", - "Content-Security-Policy": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-tYhEDMS+Ja0+fVvDegWjEg=='; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-tYhEDMS+Ja0+fVvDegWjEg=='", + "Content-Length": "7402", + "Content-Security-Policy": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-MCQaj66getdnKC+l4Wy7iw=='; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-MCQaj66getdnKC+l4Wy7iw=='; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 05:07:16 GMT", + "Date": "Sun, 14 Jan 2024 05:00:32 GMT", "Referrer-Policy": "same-origin", - "Sozu-Id": "01HKH52V1C0BW8X633WS1F54NX", + "Sozu-Id": "01HM35FJ0MNDRXTMFAZM46KND1", "Strict-Transport-Security": "max-age=31536000; includeSubDomains", "Vary": "Cookie, Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "726b3a3f-79b0-425f-838f-7247ed9ef61c" + "X-Request-ID": "3876b4cb-3fac-4390-84d9-f8a79656e799" }, - "scan_id": 46228701, + "scan_id": 46454582, "score": 110, - "start_time": "Sun, 07 Jan 2024 04:56:48 GMT", + "start_time": "Sun, 14 Jan 2024 05:00:29 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -124944,69 +125679,69 @@ "'none'" ], "connect-src": [ - "*.sentry.io", - "*.hotjar.com", "'self'", + "*.sentry.io", + "*.hotjar.io", "wss://*.hotjar.com", - "https://matomo.inclusion.beta.gouv.fr/", - "*.hotjar.io" + "*.hotjar.com", + "https://matomo.inclusion.beta.gouv.fr/" ], "default-src": [ "'self'" ], "font-src": [ - "data:", - "'self'" + "'self'", + "data:" ], "frame-ancestors": [ "https://pilotage.inclusion.beta.gouv.fr" ], "frame-src": [ "https://inclusion.beta.gouv.fr", - "blob:", + "data:", "https://app.livestorm.co", - "https://stats.inclusion.beta.gouv.fr", + "blob:", "*.hotjar.com", - "https://pilotage.inclusion.beta.gouv.fr", - "https://communaute.inclusion.beta.gouv.fr", "https://tally.so", - "data:" + "https://stats.inclusion.beta.gouv.fr", + "https://communaute.inclusion.beta.gouv.fr", + "https://pilotage.inclusion.beta.gouv.fr" ], "img-src": [ + "https://*.tile.openstreetmap.org", + "'self'", "https://cdn.redoc.ly", + "data:", "*.hotjar.com", - "'self'", "https://tile.openstreetmap.org", - "https://matomo.inclusion.beta.gouv.fr/", - "https://*.tile.openstreetmap.org", - "data:" + "https://matomo.inclusion.beta.gouv.fr/" ], "object-src": [ "'none'" ], "script-src": [ - "https://stats.inclusion.beta.gouv.fr", - "*.hotjar.com", "'self'", - "https://matomo.inclusion.beta.gouv.fr/", + "'nonce-mcqaj66getdnkc+l4wy7iw=='", + "*.hotjar.com", "https://tally.so", - "'nonce-tyhedms+ja0+fvvdegwjeg=='" + "https://stats.inclusion.beta.gouv.fr", + "https://matomo.inclusion.beta.gouv.fr/" ], "script-src-elem": [ - "https://stats.inclusion.beta.gouv.fr", - "*.hotjar.com", "'self'", - "https://matomo.inclusion.beta.gouv.fr/", + "'nonce-mcqaj66getdnkc+l4wy7iw=='", + "*.hotjar.com", "https://tally.so", - "'nonce-tyhedms+ja0+fvvdegwjeg=='" + "https://stats.inclusion.beta.gouv.fr", + "https://matomo.inclusion.beta.gouv.fr/" ], "style-src": [ - "'unsafe-inline'", - "'self'" + "'self'", + "'unsafe-inline'" ], "worker-src": [ - "blob:", - "'self'" + "'self'", + "blob:" ] }, "http": true, @@ -125184,7 +125919,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-06T22:15:28Z", + "up_since": "2024-01-09T13:46:36Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -125196,8 +125931,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T05:28:25Z", - "next_check_at": "2024-01-07T05:33:24Z", + "last_check_at": "2024-01-14T05:21:21Z", + "next_check_at": "2024-01-14T05:26:18Z", "created_at": "2021-04-22T19:59:30Z", "mute_until": null, "favicon_url": "https://emplois.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", @@ -125205,7 +125940,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T05:03:27Z", + "tested_at": "2024-01-14T04:36:39Z", "expires_at": "2024-02-13T06:58:34Z", "valid": true, "error": null @@ -125213,12 +125948,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 569, + "redirect": 461, "namelookup": 0, - "connection": 126, - "handshake": 151, - "response": 147, - "total": 994 + "connection": 108, + "handshake": 115, + "response": 132, + "total": 816 } }, "uptimeGrade": "A", @@ -125303,7 +126038,8 @@ }, { "service": { - "name": "cpdlc", + "name": "http", + "product": "JBoss Enterprise Application Platform", "id": "5911", "vulnerabilities": [] } @@ -125330,70 +126066,70 @@ "testssl": [ { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -125401,7 +126137,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -125409,7 +126145,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -125417,7 +126153,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -125425,7 +126161,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -125433,7 +126169,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -125441,574 +126177,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1704604144" + "finding": "1705208553" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/" + "finding": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -126016,7 +126752,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -126025,7 +126761,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -126034,7 +126770,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -126043,7 +126779,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -126052,7 +126788,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -126060,7 +126796,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -126069,7 +126805,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -126078,7 +126814,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -126087,7 +126823,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -126096,14 +126832,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -126112,7 +126848,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -126121,7 +126857,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -126130,7 +126866,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -126139,7 +126875,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -126148,7 +126884,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -126157,7 +126893,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -126166,7 +126902,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -126175,7 +126911,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -126184,7 +126920,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -126193,385 +126929,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -126579,7 +127315,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -126587,7 +127323,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -126595,7 +127331,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -126603,7 +127339,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -126611,7 +127347,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -126619,574 +127355,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1704604243" + "finding": "1705208652" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/" + "finding": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -127194,7 +127930,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -127203,7 +127939,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -127212,7 +127948,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -127221,7 +127957,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -127230,7 +127966,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -127238,7 +127974,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -127247,7 +127983,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -127256,7 +127992,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -127265,7 +128001,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -127274,14 +128010,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -127290,7 +128026,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -127299,7 +128035,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -127308,7 +128044,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -127317,7 +128053,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -127326,7 +128062,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -127335,7 +128071,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -127344,7 +128080,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -127353,7 +128089,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -127362,7 +128098,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -127371,315 +128107,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" @@ -128038,7 +128774,7 @@ "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", @@ -128283,7 +129019,7 @@ "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1704604342" + "finding": "1705208751" }, { "id": "HSTS_time", @@ -128353,7 +129089,7 @@ "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/" + "finding": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'" }, { "id": "Referrer-Policy", @@ -128864,70 +129600,70 @@ }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128935,7 +129671,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128943,7 +129679,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128951,7 +129687,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -128959,7 +129695,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -128967,7 +129703,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -128975,574 +129711,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1704604441" + "finding": "1705208849" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/" + "finding": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -129550,7 +130286,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -129559,7 +130295,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -129568,7 +130304,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -129577,7 +130313,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -129586,7 +130322,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -129594,7 +130330,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -129603,7 +130339,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -129612,7 +130348,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -129621,7 +130357,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -129630,14 +130366,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -129646,7 +130382,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -129655,7 +130391,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -129664,7 +130400,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -129673,7 +130409,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -129682,7 +130418,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -129691,7 +130427,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -129700,7 +130436,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -129709,7 +130445,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -129718,7 +130454,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -129727,385 +130463,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", + "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130113,7 +130849,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130121,7 +130857,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130129,7 +130865,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -130137,7 +130873,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -130145,7 +130881,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -130153,574 +130889,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1704604540" + "finding": "1705208949" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/" + "finding": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -130728,7 +131464,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -130737,7 +131473,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -130746,7 +131482,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -130755,7 +131491,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -130764,7 +131500,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -130772,7 +131508,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -130781,7 +131517,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -130790,7 +131526,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -130799,7 +131535,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -130808,14 +131544,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -130824,7 +131560,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -130833,7 +131569,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -130842,7 +131578,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -130851,7 +131587,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -130860,7 +131596,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -130869,7 +131605,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -130878,7 +131614,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -130887,7 +131623,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -130896,7 +131632,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -130905,385 +131641,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -131291,7 +132027,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -131299,7 +132035,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -131307,7 +132043,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -131315,7 +132051,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -131323,7 +132059,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -131331,574 +132067,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCjCCA/KgAwIBAgISAy358ix7jYJNuGR0aaZBLoLOMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUwNjU4MzVaFw0yNDAyMTMwNjU4MzRaMCkxJzAlBgNVBAMTHmVtcGxvaXMuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAILa8QCc+ChdkLsSS/4tI0SdhWLjiJY+H550M/EMyliF5Aialln2HP8S8mnf1Efja8qQ6E16hXU1L+FgsO273r0vhwYlk2G63mvl76ieiamQSf9gqMPDJDyWJN1sm81YdK+e0TW6frBl9Zpjz5RC3r32qA3jgth8qUoVhB2z5640yM5ZMU/JroMxeI8Wwp9e829YOf0HaSoC5mq2rz6l78iwW9hilrG+ZYy6LurZpwNL3CbUT/VXXdel1w+KELOLLCYjpHDgue7OqLE9MW9ob39o4jfXUsibyKovB22M0PeOGTl8XY5t9ZSyLlD09sJgciyGSzitTy3EhTPEFrvojL0CAwEAAaOCAiEwggIdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUgYk69VyY6pP+XknLpf4UOmTsw1IwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeZW1wbG9pcy5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL0f07kgAABAMARzBFAiAVOnZy87H8NGJW1zrB5JniwVWL0wa7wrhxZFJYQ4XaTgIhAOGzZxnwaYISD2RLsUEA1K6OEr/VdUFavIW1LG9rCKagAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL0f07lgAABAMASDBGAiEA3ZNyaaKvlIU/Zd99Hef0hsXmyRAAs/Qi9B6OilqhuGkCIQDWCiXcQuBo4oLg6xUWYCkui0caEvmaSqbVUx0Xx10K7TANBgkqhkiG9w0BAQsFAAOCAQEAbUEAgu4yom6wrWJoPwst6j02qxEaog4arm/+5wZof3Pe2LB+8ARCXXWHfFCJ05RRrf1EmPopnEaj/2JL2qPo6ksemeZJbi/o+EPTXiAA+7fDsjR006nZo/X4NGOGrthTeBQKIZaQFYlajDndKpUkHy7vooJXCvgPcfeFKyVWuR3lMG4QA+sqxP18ZdHGNmlwU+0s8IdBz6raGeIgHQv5AAU2cfaGv5+SWJTsuZwwza+/p5GROX/mUyUrAe2Sw2qTqn1lW1luYnG638fDYNW+ZllKIJGxIBFNJxrBAqJHbwKs4QG80kDTlaaf2sBPdSffZRFMzt/VHZIkyhvIZoQ+gw==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1704604644" + "finding": "1705209049" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/" + "finding": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -131906,7 +132642,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -131915,7 +132651,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -131924,7 +132660,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -131933,7 +132669,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -131942,7 +132678,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -131950,7 +132686,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -131959,7 +132695,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -131968,7 +132704,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -131977,7 +132713,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -131986,14 +132722,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -132002,7 +132738,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -132011,7 +132747,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -132020,7 +132756,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -132029,7 +132765,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -132038,7 +132774,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -132047,7 +132783,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -132056,7 +132792,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -132065,7 +132801,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -132074,7 +132810,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -132083,385 +132819,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -132469,7 +133205,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -132477,7 +133213,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -132485,7 +133221,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -132493,7 +133229,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -132501,7 +133237,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -132509,574 +133245,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1704604743" + "finding": "1705209148" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/" + "finding": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -133084,7 +133820,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -133093,7 +133829,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -133102,7 +133838,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -133111,7 +133847,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -133120,7 +133856,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -133128,7 +133864,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -133137,7 +133873,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -133146,7 +133882,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -133155,7 +133891,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -133164,14 +133900,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -133180,7 +133916,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -133189,7 +133925,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -133198,7 +133934,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -133207,7 +133943,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -133216,7 +133952,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -133225,7 +133961,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -133234,7 +133970,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -133243,7 +133979,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -133252,7 +133988,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -133261,385 +133997,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133647,7 +134383,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133655,7 +134391,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133663,7 +134399,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -133671,7 +134407,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -133679,7 +134415,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -133687,574 +134423,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1704604842" + "finding": "1705209247" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/" + "finding": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -134262,7 +134998,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -134271,7 +135007,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -134280,7 +135016,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -134289,7 +135025,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -134298,7 +135034,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -134306,7 +135042,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -134315,7 +135051,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -134324,7 +135060,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -134333,7 +135069,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -134342,14 +135078,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -134358,7 +135094,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -134367,7 +135103,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -134376,7 +135112,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -134385,7 +135121,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -134394,7 +135130,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -134403,7 +135139,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -134412,7 +135148,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -134421,7 +135157,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -134430,7 +135166,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -134439,385 +135175,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.214", + "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134825,7 +135561,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134833,7 +135569,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134841,7 +135577,7 @@ }, { "id": "cipherlist_LOW", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -134849,7 +135585,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -134857,7 +135593,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -134865,574 +135601,574 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "032DF9F22C7B8D824DB8647469A6412E82CE" }, { "id": "cert_serialNumberLen", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "187A96E9C568F55EC407388B5E8B0DE91F0962FC" }, { "id": "cert_fingerprintSHA256", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "cert", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFCjCCA/KgAwIBAgISAy358ix7jYJNuGR0aaZBLoLOMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUwNjU4MzVaFw0yNDAyMTMwNjU4MzRaMCkxJzAlBgNVBAMTHmVtcGxvaXMuaW5jbHVzaW9uLmJldGEuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAILa8QCc+ChdkLsSS/4tI0SdhWLjiJY+H550M/EMyliF5Aialln2HP8S8mnf1Efja8qQ6E16hXU1L+FgsO273r0vhwYlk2G63mvl76ieiamQSf9gqMPDJDyWJN1sm81YdK+e0TW6frBl9Zpjz5RC3r32qA3jgth8qUoVhB2z5640yM5ZMU/JroMxeI8Wwp9e829YOf0HaSoC5mq2rz6l78iwW9hilrG+ZYy6LurZpwNL3CbUT/VXXdel1w+KELOLLCYjpHDgue7OqLE9MW9ob39o4jfXUsibyKovB22M0PeOGTl8XY5t9ZSyLlD09sJgciyGSzitTy3EhTPEFrvojL0CAwEAAaOCAiEwggIdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUgYk69VyY6pP+XknLpf4UOmTsw1IwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wKQYDVR0RBCIwIIIeZW1wbG9pcy5pbmNsdXNpb24uYmV0YS5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL0f07kgAABAMARzBFAiAVOnZy87H8NGJW1zrB5JniwVWL0wa7wrhxZFJYQ4XaTgIhAOGzZxnwaYISD2RLsUEA1K6OEr/VdUFavIW1LG9rCKagAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGL0f07lgAABAMASDBGAiEA3ZNyaaKvlIU/Zd99Hef0hsXmyRAAs/Qi9B6OilqhuGkCIQDWCiXcQuBo4oLg6xUWYCkui0caEvmaSqbVUx0Xx10K7TANBgkqhkiG9w0BAQsFAAOCAQEAbUEAgu4yom6wrWJoPwst6j02qxEaog4arm/+5wZof3Pe2LB+8ARCXXWHfFCJ05RRrf1EmPopnEaj/2JL2qPo6ksemeZJbi/o+EPTXiAA+7fDsjR006nZo/X4NGOGrthTeBQKIZaQFYlajDndKpUkHy7vooJXCvgPcfeFKyVWuR3lMG4QA+sqxP18ZdHGNmlwU+0s8IdBz6raGeIgHQv5AAU2cfaGv5+SWJTsuZwwza+/p5GROX/mUyUrAe2Sw2qTqn1lW1luYnG638fDYNW+ZllKIJGxIBFNJxrBAqJHbwKs4QG80kDTlaaf2sBPdSffZRFMzt/VHZIkyhvIZoQ+gw==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "cert_notAfter", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-13 06:58" }, { "id": "cert_extlifeSpan", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "7E40ED0D75EBE1D395CD068982432EE3A80CAD3289BB8320E426D2BF190C521F" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-15 06:58" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 06:58" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "emplois.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1704604941" + "finding": "1705209349" }, { "id": "HSTS_time", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/" + "finding": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -135440,7 +136176,7 @@ }, { "id": "heartbleed", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -135449,7 +136185,7 @@ }, { "id": "CCS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -135458,7 +136194,7 @@ }, { "id": "ticketbleed", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -135467,7 +136203,7 @@ }, { "id": "ROBOT", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -135476,7 +136212,7 @@ }, { "id": "secure_renego", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -135484,7 +136220,7 @@ }, { "id": "secure_client_renego", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -135493,7 +136229,7 @@ }, { "id": "CRIME_TLS", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -135502,7 +136238,7 @@ }, { "id": "BREACH", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -135511,7 +136247,7 @@ }, { "id": "POODLE_SSL", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -135520,14 +136256,14 @@ }, { "id": "fallback_SCSV", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -135536,7 +136272,7 @@ }, { "id": "FREAK", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -135545,7 +136281,7 @@ }, { "id": "DROWN", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -135554,7 +136290,7 @@ }, { "id": "DROWN_hint", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -135563,7 +136299,7 @@ }, { "id": "LOGJAM", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -135572,7 +136308,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -135581,7 +136317,7 @@ }, { "id": "BEAST", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -135590,7 +136326,7 @@ }, { "id": "LUCKY13", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -135599,7 +136335,7 @@ }, { "id": "winshock", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -135608,7 +136344,7 @@ }, { "id": "RC4", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -135617,322 +136353,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "emplois.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "emplois.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "899" @@ -135944,23 +136680,23 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "7357", - "content-security-policy": "font-src 'self' data:; style-src 'self' 'unsafe-inline'; base-uri 'none'; worker-src 'self' blob:; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'; img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-0qvDwTRRWYzT+Zgh5VgsTg=='; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-0qvDwTRRWYzT+Zgh5VgsTg=='", + "content-length": "7365", + "content-security-policy": "img-src 'self' data: https://tile.openstreetmap.org https://*.tile.openstreetmap.org *.hotjar.com https://cdn.redoc.ly https://matomo.inclusion.beta.gouv.fr/; script-src-elem 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-sLezDsMPnv2pF6Cb3h11Yg=='; worker-src 'self' blob:; font-src 'self' data:; script-src 'self' https://stats.inclusion.beta.gouv.fr *.hotjar.com https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-sLezDsMPnv2pF6Cb3h11Yg=='; connect-src 'self' *.sentry.io *.hotjar.com *.hotjar.io wss://*.hotjar.com https://matomo.inclusion.beta.gouv.fr/; object-src 'none'; frame-ancestors https://pilotage.inclusion.beta.gouv.fr; style-src 'self' 'unsafe-inline'; frame-src https://app.livestorm.co *.hotjar.com https://tally.so https://stats.inclusion.beta.gouv.fr https://pilotage.inclusion.beta.gouv.fr https://communaute.inclusion.beta.gouv.fr https://inclusion.beta.gouv.fr blob: data:; base-uri 'none'; default-src 'self'", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 05:07:36 GMT", + "date": "Sun, 14 Jan 2024 05:01:03 GMT", "referrer-policy": "same-origin", - "sozu-id": "01HKH53EAYPE1Z70CN35J0JHZC", + "sozu-id": "01HM35GG95H3PYA0FCVD5TAH16", "strict-transport-security": "max-age=31536000; includeSubDomains", "vary": "Cookie, Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "dd47e24b-6e66-467a-af2f-066f443c73e6" + "x-request-id": "d6f3f852-3a62-4cc3-8ee2-161e74c7d442" }, "endpoints": [ { "hostname": "emplois.inclusion.beta.gouv.fr", - "ip": "46.252.181.103", + "ip": "185.42.117.108", "geoip": { "continent": { "code": "EU", @@ -136240,7 +136976,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 04:56:22", + "@generated": "Sun, 14 Jan 2024 05:00:03", "site": [ { "@name": "https://emplois.inclusion.beta.gouv.fr", @@ -136453,7 +137189,7 @@ "extracted-results": [ "domain.par.clever-cloud.com." ], - "timestamp": "2024-01-07T05:21:12.29523125Z", + "timestamp": "2024-01-14T05:14:59.804908762Z", "matcher-status": true }, { @@ -136488,7 +137224,7 @@ "type": "dns", "host": "emplois.inclusion.beta.gouv.fr.", "matched-at": "emplois.inclusion.beta.gouv.fr", - "timestamp": "2024-01-07T05:21:12.448841971Z", + "timestamp": "2024-01-14T05:14:59.954645289Z", "matcher-status": true }, { @@ -136523,8 +137259,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:22:27.743702788Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:16:15.28120183Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -136560,8 +137296,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:22:27.743750377Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:16:15.28126632Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -136597,8 +137333,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:22:27.743770345Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:16:15.281285266Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -136634,8 +137370,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:22:27.743787547Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:16:15.281308419Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -136671,8 +137407,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:22:27.743801393Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:16:15.281324379Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -136709,8 +137445,8 @@ "extracted-results": [ " mailto:tech@inclusion.beta.gouv.fr" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:22:44.425650353Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:16:31.921599426Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr/.well-known/security.txt'", "matcher-status": true }, @@ -136749,8 +137485,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:23:06.836665521Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:16:54.299089056Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: emplois.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -136789,8 +137525,8 @@ "type": "http", "host": "https://emplois.inclusion.beta.gouv.fr", "matched-at": "https://emplois.inclusion.beta.gouv.fr/", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:23:06.836721957Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:16:54.299133719Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: emplois.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://emplois.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -136839,8 +137575,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "46.252.181.103", - "timestamp": "2024-01-07T05:25:15.20260023Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:19:36.495426706Z", "matcher-status": true }, { @@ -136869,8 +137605,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:25:43.886083357Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:19:44.85017877Z", "matcher-status": true }, { @@ -136899,8 +137635,8 @@ "extracted-results": [ "emplois.inclusion.beta.gouv.fr" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:25:43.886316513Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:19:44.850304344Z", "matcher-status": true }, { @@ -136930,8 +137666,8 @@ "extracted-results": [ "tls12" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:25:47.312725444Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:19:47.405853077Z", "matcher-status": true }, { @@ -136961,8 +137697,8 @@ "extracted-results": [ "tls13" ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T05:25:47.621494828Z", + "ip": "91.208.207.217", + "timestamp": "2024-01-14T05:19:47.721873484Z", "matcher-status": true } ], @@ -136970,7 +137706,7 @@ { "requestedUrl": "https://emplois.inclusion.beta.gouv.fr/", "finalUrl": "https://emplois.inclusion.beta.gouv.fr/search/employers", - "fetchTime": "2024-01-07T04:56:36.247Z", + "fetchTime": "2024-01-14T05:00:17.420Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://emplois.inclusion.beta.gouv.fr/) was redirected to https://emplois.inclusion.beta.gouv.fr/search/employers. Try testing the second URL directly." ], @@ -136983,7 +137719,7 @@ "snapshot" ], "id": "performance", - "score": 0.7740837097167969 + "score": 0.7740955352783203 }, "accessibility": { "title": "Accessibility", @@ -137035,53 +137771,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6436, + "numericValue": 6458, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 6436, - "firstMeaningfulPaint": 6436, - "largestContentfulPaint": 9382, - "interactive": 6436, - "speedIndex": 6436, + "firstContentfulPaint": 6458, + "firstMeaningfulPaint": 6458, + "largestContentfulPaint": 9431, + "interactive": 6458, + "speedIndex": 6458, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.03389550018310547, - "cumulativeLayoutShiftMainFrame": 0.03389550018310547, - "totalCumulativeLayoutShift": 0.03389550018310547, + "cumulativeLayoutShift": 0.030377438015407987, + "cumulativeLayoutShiftMainFrame": 0.030377438015407987, + "totalCumulativeLayoutShift": 0.030377438015407987, "observedTimeOrigin": 0, - "observedTimeOriginTs": 295570028, + "observedTimeOriginTs": 313075739, "observedNavigationStart": 0, - "observedNavigationStartTs": 295570028, - "observedFirstPaint": 963, - "observedFirstPaintTs": 296532676, - "observedFirstContentfulPaint": 963, - "observedFirstContentfulPaintTs": 296532676, - "observedFirstContentfulPaintAllFrames": 963, - "observedFirstContentfulPaintAllFramesTs": 296532676, - "observedFirstMeaningfulPaint": 963, - "observedFirstMeaningfulPaintTs": 296532676, - "observedLargestContentfulPaint": 963, - "observedLargestContentfulPaintTs": 296532676, - "observedLargestContentfulPaintAllFrames": 963, - "observedLargestContentfulPaintAllFramesTs": 296532676, - "observedTraceEnd": 4062, - "observedTraceEndTs": 299631725, - "observedLoad": 1529, - "observedLoadTs": 297098627, + "observedNavigationStartTs": 313075739, + "observedFirstPaint": 981, + "observedFirstPaintTs": 314056874, + "observedFirstContentfulPaint": 981, + "observedFirstContentfulPaintTs": 314056874, + "observedFirstContentfulPaintAllFrames": 981, + "observedFirstContentfulPaintAllFramesTs": 314056874, + "observedFirstMeaningfulPaint": 981, + "observedFirstMeaningfulPaintTs": 314056874, + "observedLargestContentfulPaint": 981, + "observedLargestContentfulPaintTs": 314056874, + "observedLargestContentfulPaintAllFrames": 981, + "observedLargestContentfulPaintAllFramesTs": 314056874, + "observedTraceEnd": 3929, + "observedTraceEndTs": 317004254, + "observedLoad": 1554, + "observedLoadTs": 314629366, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 295570566, - "observedCumulativeLayoutShift": 0.03389550018310547, - "observedCumulativeLayoutShiftMainFrame": 0.03389550018310547, - "observedTotalCumulativeLayoutShift": 0.03389550018310547, - "observedFirstVisualChange": 968, - "observedFirstVisualChangeTs": 296538028, - "observedLastVisualChange": 1968, - "observedLastVisualChangeTs": 297538028, - "observedSpeedIndex": 1227, - "observedSpeedIndexTs": 296796794 + "observedDomContentLoadedTs": 313076283, + "observedCumulativeLayoutShift": 0.030377438015407987, + "observedCumulativeLayoutShiftMainFrame": 0.030377438015407987, + "observedTotalCumulativeLayoutShift": 0.030377438015407987, + "observedFirstVisualChange": 978, + "observedFirstVisualChangeTs": 314053739, + "observedLastVisualChange": 1928, + "observedLastVisualChangeTs": 315003739, + "observedSpeedIndex": 1224, + "observedSpeedIndexTs": 314299594 }, { "lcpInvalidated": false @@ -137103,19 +137839,19 @@ "numScripts": 24, "numStylesheets": 3, "numFonts": 4, - "numTasks": 30, + "numTasks": 17, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 116.218, - "throughput": 18988928.515586365, - "maxRtt": 148.62199999999999, - "maxServerLatency": 147.852, - "totalByteWeight": 2233028, - "totalTaskTime": 4.933999999999998, - "mainDocumentTransferSize": 8896 + "rtt": 111.907, + "throughput": 16167695.928867798, + "maxRtt": 148.755, + "maxServerLatency": 147.75900000000001, + "totalByteWeight": 2232966, + "totalTaskTime": 5.165, + "mainDocumentTransferSize": 8843 } ] } @@ -137218,14 +137954,14 @@ "nmapGrade": "B", "nmapOpenPortsCount": 13, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, + "testsslExpireSoon": true, "testsslExpireDate": "2024-02-13T06:58:00.000Z", "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.7740837097167969, + "lighthouse_performance": 0.7740955352783203, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -137259,33 +137995,33 @@ "http": { "url": "https://entreprise.api.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:31:23 GMT", + "end_time": "Sun, 14 Jan 2024 02:35:07 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", - "Content-Length": "47005", + "Content-Length": "47070", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 02:31:21 GMT", + "Date": "Sun, 14 Jan 2024 02:34:56 GMT", "Server": "nginx", "Strict-Transport-Security": "max-age=63072000", "cache-control": "max-age=0, private, must-revalidate", - "etag": "W/\"1ea615a1cc8e138a2c1ed2399608d83e\"", + "etag": "W/\"3d80fc7c2ed5bf0038317c1084f75557\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=modulepreload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_admin_apientreprise_session=GTlqt89sJCa4EDhbgC%2Bs2KgT4MKxGXI%2F6ouBYr%2BwVImyyhqmzOEHK4lGzhbvi8wgcXn77sH4jOW%2B8r1L3EDjltid8DQv80zRMcWCOeILg7NqgRQNs2OcUgAm3U2ZKqBwsjHTw4OwLBxg1g1iwRMabgfpFm1TLRXn7JZZK3qRO6ppBZYsowWxeFehwlU09DDwEokYN7%2B4aTatGFhqK09Izwca2Rod2gApIhmK7KFH3%2Fw1BhUjWbTrv5TUUehxjMzh1VtX68ffo89lQa8Oll5RbowOhGfwAV2YgzMXSuu%2BQD7GFxUJ--B4RD46K91QSVdD%2BL--rCVwCHZt3XabvzemecfgMA%3D%3D; path=/; secure; httponly; SameSite=Lax", + "set-cookie": "_admin_apientreprise_session=%2FO2IAcZvMWfLI%2BNKycmTRmAeHGwriIbJARnmcb0oAAWUm9oyzEoYkaRRs%2BUw9LS%2FQAi%2FKwOtti2KQc6VTIgbpjFkmgitqITpGHBcR%2B3tz36VXbUU2uvYLVscA7JyNeVrt5xF5jSEch542U5AqPBiCQr8fJNF20NwIDifKyqsbHiyZohDSJMyWUEvZJcjSgiDGXnkFy6dkpXPppr7rXUEGyb8Pvp9qXwTW3OjmjhiIRr5YahQONRaFKJcAWsIKdorO%2FXcjke3FMXtwFkzfTUW5TnZXRu1WrYNwUoCEgnFwygv%2BfXA--MWFmw3MxooNBF9qc--6clcIBCKDy7%2F0Vdsj6TRuQ%3D%3D; path=/; secure; httponly; SameSite=Lax", "vary": "Accept, Origin", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "d23b955d-2145-4034-ac76-7ddd22634dfb", - "x-runtime": "0.094574", + "x-request-id": "f071ae4a-d8f4-43a8-921c-c9657a041934", + "x-runtime": "0.087319", "x-xss-protection": "0" }, - "scan_id": 46227220, + "scan_id": 46436088, "score": 60, - "start_time": "Sun, 07 Jan 2024 02:31:18 GMT", + "start_time": "Sun, 14 Jan 2024 02:34:47 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -137505,8 +138241,8 @@ "recipients": [ "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T05:19:05Z", - "next_check_at": "2024-01-07T05:24:05Z", + "last_check_at": "2024-01-14T05:14:39Z", + "next_check_at": "2024-01-14T05:19:37Z", "created_at": "2023-09-29T16:58:13Z", "mute_until": null, "favicon_url": "https://entreprise.api.gouv.fr/assets/favicons/favicon-ac3f5ac40d55bc86a12960f79dc3c51110fd7e924ab3e6b5934579f0732b2e55.ico", @@ -137514,7 +138250,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T04:44:16Z", + "tested_at": "2024-01-14T05:04:40Z", "expires_at": "2024-12-18T22:59:59Z", "valid": true, "error": null @@ -137523,11 +138259,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 26, + "namelookup": 21, "connection": 12, "handshake": 16, - "response": 109, - "total": 163 + "response": 108, + "total": 157 } }, "uptimeGrade": "A", @@ -137909,7 +138645,7 @@ "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "OK", - "finding": "346 >= 60 days" + "finding": "339 >= 60 days" }, { "id": "cert_notBefore", @@ -138063,14 +138799,14 @@ "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "1704604696" + "finding": "1705209136" }, { "id": "HSTS_time", @@ -138675,7 +139411,7 @@ "ip": "entreprise.api.gouv.fr/54.36.95.60", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "54" } ], "thirdparties": { @@ -138767,7 +139503,7 @@ "value": "1", "domain": "entreprise.api.gouv.fr", "path": "/", - "expires": 1704606436, + "expires": 1705210874, "size": 16, "httpOnly": false, "secure": false, @@ -138779,10 +139515,10 @@ }, { "name": "_pk_id.45.28f1", - "value": "269f8cc8c9ba95c8.1704604636.", + "value": "789160a5260e0579.1705209075.", "domain": "entreprise.api.gouv.fr", "path": "/", - "expires": 1738559836, + "expires": 1739164275, "size": 42, "httpOnly": false, "secure": false, @@ -138794,11 +139530,11 @@ }, { "name": "_admin_apientreprise_session", - "value": "RjWGnwPawRj2dIDUEwxNC3dKMTlyJCWzN%2F%2B063oBd14UyZA9icJVhynPEcD0O6%2BcZ7yY3XD1s0JQiYQoY7dUswk8CPff%2FGpq4A1mAL0gT%2Bq3M72wzIGlw8XMh2wRfFC%2FppsK%2BdId2n8w%2FQfY0k7C7QnpscB%2FVi0%2BdBpcMWkvEjRw82ypGZS1cj913%2BkT45Puwj%2B5AT%2FKwWKtFNlQB8RUhbvvKr1NVGz4ch%2B0jXOTPuukC0yu8DLOihe8RhBf%2F5hD4FtgltHVifeGEgxHQWMiZGq7RNTJLhXQ12a7TR%2F4jyvzpPGO--YLbJBX2216L1Qulh--o59wsDYfSWgWpOmkd%2BdoPQ%3D%3D", + "value": "whFYNjV2G3HvMVqsCXKQ85x9xR8XG093zFvb7nzhRVTt9LgMHT3wotRNr7HkICf3rjj0pIUsPIb5TZ5TEmhzBt6rFImsMqBj%2F0VZX%2B2Y2dxQCRmgH266lOjjyPde1HByjDbZbltURSk7TBjBubnG8mb%2FivBXt0yn%2FZ%2BiIf5TZD1miH98fULcLTbMnvoQzF9dQZ%2Bek2Z5s111dPT0bKdll%2BeubHuje9%2B8lW5AWtRU5npL5f4Vc8r1a7S4gVjSjubjI6xISIurTPRJrxhbRTZasYsL45xh1SryURXcMXq2V7%2FTENkB--RIUoyzxpHyy4IO%2Fm--aXWN%2F8Yihr7aXfcbwbZadg%3D%3D", "domain": "entreprise.api.gouv.fr", "path": "/", "expires": -1, - "size": 414, + "size": 402, "httpOnly": true, "secure": true, "session": true, @@ -138810,22 +139546,22 @@ ], "headers": { "connection": "keep-alive", - "content-length": "47284", + "content-length": "47457", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 05:17:15 GMT", + "date": "Sun, 14 Jan 2024 05:11:13 GMT", "server": "nginx", "strict-transport-security": "max-age=63072000", "cache-control": "max-age=0, private, must-revalidate", - "etag": "W/\"1d9ddb75811f914de58b88febbb63398\"", + "etag": "W/\"c4ffe3181946b155bacb3d79414eec81\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=modulepreload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_admin_apientreprise_session=RjWGnwPawRj2dIDUEwxNC3dKMTlyJCWzN%2F%2B063oBd14UyZA9icJVhynPEcD0O6%2BcZ7yY3XD1s0JQiYQoY7dUswk8CPff%2FGpq4A1mAL0gT%2Bq3M72wzIGlw8XMh2wRfFC%2FppsK%2BdId2n8w%2FQfY0k7C7QnpscB%2FVi0%2BdBpcMWkvEjRw82ypGZS1cj913%2BkT45Puwj%2B5AT%2FKwWKtFNlQB8RUhbvvKr1NVGz4ch%2B0jXOTPuukC0yu8DLOihe8RhBf%2F5hD4FtgltHVifeGEgxHQWMiZGq7RNTJLhXQ12a7TR%2F4jyvzpPGO--YLbJBX2216L1Qulh--o59wsDYfSWgWpOmkd%2BdoPQ%3D%3D; path=/; secure; httponly; SameSite=Lax", + "set-cookie": "_admin_apientreprise_session=whFYNjV2G3HvMVqsCXKQ85x9xR8XG093zFvb7nzhRVTt9LgMHT3wotRNr7HkICf3rjj0pIUsPIb5TZ5TEmhzBt6rFImsMqBj%2F0VZX%2B2Y2dxQCRmgH266lOjjyPde1HByjDbZbltURSk7TBjBubnG8mb%2FivBXt0yn%2FZ%2BiIf5TZD1miH98fULcLTbMnvoQzF9dQZ%2Bek2Z5s111dPT0bKdll%2BeubHuje9%2B8lW5AWtRU5npL5f4Vc8r1a7S4gVjSjubjI6xISIurTPRJrxhbRTZasYsL45xh1SryURXcMXq2V7%2FTENkB--RIUoyzxpHyy4IO%2Fm--aXWN%2F8Yihr7aXfcbwbZadg%3D%3D; path=/; secure; httponly; SameSite=Lax", "vary": "Origin", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "f40328ea-48cc-4646-a198-426101db7403", - "x-runtime": "0.098858", + "x-request-id": "5e6ea688-2708-431e-8b31-e60f13831fb5", + "x-runtime": "0.090666", "x-xss-protection": "0" }, "endpoints": [ @@ -138887,19 +139623,15 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.77.229", + "ip": "146.75.37.229", "geoip": { "city": { - "geoname_id": 4887398, + "geoname_id": 4781530, "names": { - "de": "Chicago", - "en": "Chicago", - "es": "Chicago", - "fr": "Chicago", - "ja": "シカゴ", - "pt-BR": "Chicago", - "ru": "Чикаго", - "zh-CN": "芝加哥" + "de": "Reston", + "en": "Reston", + "ja": "レストン", + "ru": "Рестон" } }, "continent": { @@ -138920,7 +139652,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -138932,19 +139664,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 41.8719, - "longitude": -87.6589, - "metro_code": 602, - "time_zone": "America/Chicago" + "latitude": 38.9609, + "longitude": -77.3429, + "metro_code": 511, + "time_zone": "America/New_York" }, "postal": { - "code": "60607" + "code": "20190" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -138956,16 +139688,15 @@ }, "subdivisions": [ { - "geoname_id": 4896861, - "iso_code": "IL", + "geoname_id": 6254928, + "iso_code": "VA", "names": { - "en": "Illinois", - "es": "Illinois", - "fr": "Illinois", - "ja": "イリノイ州", - "pt-BR": "Ilinóis", - "ru": "Иллинойс", - "zh-CN": "伊利诺伊州" + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" } } ] @@ -138973,13 +139704,13 @@ }, { "hostname": "unpkg.com", - "ip": "104.16.125.175", + "ip": "104.16.123.175", "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -139050,7 +139781,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -139077,7 +139808,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.190.10", + "ip": "172.253.122.95", "geoip": { "continent": { "code": "NA", @@ -139097,7 +139828,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -139117,7 +139848,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -139322,6 +140053,24 @@ ], "rootPath": true }, + { + "slug": "hubspot", + "name": "HubSpot", + "description": "HubSpot is a marketing and sales software that helps companies attract visitors, convert leads, and close customers.", + "confidence": 100, + "version": null, + "icon": "HubSpot.svg", + "website": "https://www.hubspot.com", + "cpe": null, + "categories": [ + { + "id": 32, + "slug": "marketing-automation", + "name": "Marketing automation" + } + ], + "rootPath": true + }, { "slug": "popper", "name": "Popper", @@ -139363,7 +140112,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 05:16:32", + "@generated": "Sun, 14 Jan 2024 05:10:32", "site": [ { "@name": "https://entreprise.api.gouv.fr", @@ -139580,26 +140329,26 @@ "extracted-results": [ "1 redirect.ovh.net." ], - "timestamp": "2024-01-07T05:19:26.019158864Z", + "timestamp": "2024-01-14T05:13:22.867201964Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -139615,30 +140364,26 @@ "type": "dns", "host": "entreprise.api.gouv.fr.", "matched-at": "entreprise.api.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com ?all\"", - "\"v=spf1 a mx a:watchdoge.entreprise.api.gouv.fr ?all\"" - ], - "timestamp": "2024-01-07T05:19:26.076909757Z", + "timestamp": "2024-01-14T05:13:23.026089995Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -139654,7 +140399,12 @@ "type": "dns", "host": "entreprise.api.gouv.fr.", "matched-at": "entreprise.api.gouv.fr", - "timestamp": "2024-01-07T05:19:26.179866827Z", + "extracted-results": [ + "\"v=spf1 include:143503609.spf02.hubspotemail.net\"", + "\"v=spf1 include:spf.mailjet.com ?all\"", + "\"v=spf1 a mx a:watchdoge.entreprise.api.gouv.fr ?all\"" + ], + "timestamp": "2024-01-14T05:13:23.867857706Z", "matcher-status": true }, { @@ -139689,7 +140439,7 @@ "algolia-search-key=\"d3e5b117cec579ddcbe5448c58a2048a\"" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:19:40.661374052Z", + "timestamp": "2024-01-14T05:13:35.548438714Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -139729,7 +140479,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:19:40.836000521Z", + "timestamp": "2024-01-14T05:13:35.724100423Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -139768,7 +140518,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:19:40.846839435Z", + "timestamp": "2024-01-14T05:13:35.73503905Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -139806,7 +140556,7 @@ "algolia-search-key=\"d3e5b117cec579ddcbe5448c58a2048a\"" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:10.803802977Z", + "timestamp": "2024-01-14T05:14:02.347464785Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -139833,7 +140583,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:11.091356745Z", + "timestamp": "2024-01-14T05:14:02.613236822Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -139860,7 +140610,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:11.091394074Z", + "timestamp": "2024-01-14T05:14:02.613272439Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -139892,12 +140642,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:21.378751938Z", + "timestamp": "2024-01-14T05:14:11.443440177Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -139929,12 +140679,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:21.378813292Z", + "timestamp": "2024-01-14T05:14:11.443494358Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -139966,12 +140716,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:21.378829622Z", + "timestamp": "2024-01-14T05:14:11.443510528Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140003,12 +140753,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:21.378843568Z", + "timestamp": "2024-01-14T05:14:11.443524374Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140040,12 +140790,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:21.378856783Z", + "timestamp": "2024-01-14T05:14:11.443536978Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140077,12 +140827,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:21.378869857Z", + "timestamp": "2024-01-14T05:14:11.443549722Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr'", "matcher-status": true }, @@ -140116,16 +140866,56 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr/", "extracted-results": [ - "https://cdn.jsdelivr.net/npm/algoliasearch@4.5.1/dist/algoliasearch-lite.umd.js", "https://cdn.jsdelivr.net/npm/instantsearch.js@4.8.3/dist/instantsearch.production.min.js", "https://unpkg.com/@popperjs/core@2.11.6/dist/umd/popper.min.js", - "https://app.mailjet.com/pas-nc-embedded-v1.js" + "https://app.mailjet.com/pas-nc-embedded-v1.js", + "https://cdn.jsdelivr.net/npm/algoliasearch@4.5.1/dist/algoliasearch-lite.umd.js" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:40.253178561Z", + "timestamp": "2024-01-14T05:14:27.486412316Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: entreprise.api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr/'", "matcher-status": true }, + { + "template": "http/technologies/waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/waf-detect", + "template-id": "waf-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", + "info": { + "name": "WAF Detection", + "author": [ + "dwisiswant0", + "lu4nx" + ], + "tags": [ + "waf", + "tech", + "misc" + ], + "description": "A web application firewall was detected.", + "reference": [ + "https://github.com/ekultek/whatwaf" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "matcher-name": "ats", + "type": "http", + "host": "https://entreprise.api.gouv.fr", + "matched-at": "https://entreprise.api.gouv.fr/", + "ip": "54.36.95.60", + "timestamp": "2024-01-14T05:14:35.343090901Z", + "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: entreprise.api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr/'", + "matcher-status": true + }, { "template": "http/technologies/waf-detect.yaml", "template-url": "https://templates.nuclei.sh/public/waf-detect", @@ -140162,7 +140952,7 @@ "host": "https://entreprise.api.gouv.fr", "matched-at": "https://entreprise.api.gouv.fr/", "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:20:49.200628993Z", + "timestamp": "2024-01-14T05:14:35.343142086Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: entreprise.api.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://entreprise.api.gouv.fr/'", "matcher-status": true }, @@ -140212,7 +141002,7 @@ "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:21:38.568072202Z", + "timestamp": "2024-01-14T05:15:21.200022871Z", "matcher-status": true }, { @@ -140242,7 +141032,7 @@ "DHIMYOTIS" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:22:27.572055911Z", + "timestamp": "2024-01-14T05:16:09.726432873Z", "matcher-status": true }, { @@ -140270,17 +141060,17 @@ "matched-at": "entreprise.api.gouv.fr:443", "extracted-results": [ "production1.entreprise.api.gouv.fr", - "production2.entreprise.api.gouv.fr", "status.entreprise.api.gouv.fr", + "staging2.entreprise.api.gouv.fr", "entreprise.api.gouv.fr", "staging1.entreprise.api.gouv.fr", "production.entreprise.api.gouv.fr", + "production2.entreprise.api.gouv.fr", "staging.entreprise.api.gouv.fr", - "storage.entreprise.api.gouv.fr", - "staging2.entreprise.api.gouv.fr" + "storage.entreprise.api.gouv.fr" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:22:27.572191162Z", + "timestamp": "2024-01-14T05:16:09.72657572Z", "matcher-status": true }, { @@ -140311,7 +141101,7 @@ "tls12" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:22:27.8986197Z", + "timestamp": "2024-01-14T05:16:12.161206302Z", "matcher-status": true }, { @@ -140342,7 +141132,7 @@ "tls13" ], "ip": "54.36.95.60", - "timestamp": "2024-01-07T05:22:28.965475581Z", + "timestamp": "2024-01-14T05:16:13.039251932Z", "matcher-status": true } ], @@ -140350,7 +141140,7 @@ { "requestedUrl": "https://entreprise.api.gouv.fr/", "finalUrl": "https://entreprise.api.gouv.fr/", - "fetchTime": "2024-01-07T05:16:46.506Z", + "fetchTime": "2024-01-14T05:10:46.221Z", "runWarnings": [], "categories": { "performance": { @@ -140361,7 +141151,7 @@ "snapshot" ], "id": "performance", - "score": 0.19203262329101561 + "score": 0.19197139739990235 }, "accessibility": { "title": "Accessibility", @@ -140413,53 +141203,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 14762, + "numericValue": 14256, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4022, - "firstMeaningfulPaint": 4145, - "largestContentfulPaint": 4393, - "interactive": 14762, - "speedIndex": 4022, - "totalBlockingTime": 276, - "maxPotentialFID": 494, - "cumulativeLayoutShift": 0.0155756778717041, - "cumulativeLayoutShiftMainFrame": 0.0155756778717041, - "totalCumulativeLayoutShift": 0.0155756778717041, + "firstContentfulPaint": 3949, + "firstMeaningfulPaint": 3949, + "largestContentfulPaint": 3949, + "interactive": 14256, + "speedIndex": 3949, + "totalBlockingTime": 321, + "maxPotentialFID": 587, + "cumulativeLayoutShift": 0.021112683190239803, + "cumulativeLayoutShiftMainFrame": 0.021112683190239803, + "totalCumulativeLayoutShift": 0.021112683190239803, "observedTimeOrigin": 0, - "observedTimeOriginTs": 1017141815, + "observedTimeOriginTs": 193832741, "observedNavigationStart": 0, - "observedNavigationStartTs": 1017141815, - "observedFirstPaint": 867, - "observedFirstPaintTs": 1018009030, - "observedFirstContentfulPaint": 907, - "observedFirstContentfulPaintTs": 1018048747, - "observedFirstContentfulPaintAllFrames": 907, - "observedFirstContentfulPaintAllFramesTs": 1018048747, - "observedFirstMeaningfulPaint": 907, - "observedFirstMeaningfulPaintTs": 1018048747, - "observedLargestContentfulPaint": 907, - "observedLargestContentfulPaintTs": 1018048747, - "observedLargestContentfulPaintAllFrames": 907, - "observedLargestContentfulPaintAllFramesTs": 1018048747, - "observedTraceEnd": 4181, - "observedTraceEndTs": 1021322665, - "observedLoad": 1874, - "observedLoadTs": 1019015901, - "observedDomContentLoaded": 1206, - "observedDomContentLoadedTs": 1018347942, - "observedCumulativeLayoutShift": 0.0155756778717041, - "observedCumulativeLayoutShiftMainFrame": 0.0155756778717041, - "observedTotalCumulativeLayoutShift": 0.0155756778717041, - "observedFirstVisualChange": 867, - "observedFirstVisualChangeTs": 1018008815, - "observedLastVisualChange": 1267, - "observedLastVisualChangeTs": 1018408815, - "observedSpeedIndex": 903, - "observedSpeedIndexTs": 1018044777 + "observedNavigationStartTs": 193832741, + "observedFirstPaint": 852, + "observedFirstPaintTs": 194684320, + "observedFirstContentfulPaint": 890, + "observedFirstContentfulPaintTs": 194722554, + "observedFirstContentfulPaintAllFrames": 890, + "observedFirstContentfulPaintAllFramesTs": 194722554, + "observedFirstMeaningfulPaint": 890, + "observedFirstMeaningfulPaintTs": 194722554, + "observedLargestContentfulPaint": 890, + "observedLargestContentfulPaintTs": 194722554, + "observedLargestContentfulPaintAllFrames": 890, + "observedLargestContentfulPaintAllFramesTs": 194722554, + "observedTraceEnd": 4022, + "observedTraceEndTs": 197855118, + "observedLoad": 1714, + "observedLoadTs": 195546680, + "observedDomContentLoaded": 1135, + "observedDomContentLoadedTs": 194967896, + "observedCumulativeLayoutShift": 0.021112683190239803, + "observedCumulativeLayoutShiftMainFrame": 0.021112683190239803, + "observedTotalCumulativeLayoutShift": 0.021112683190239803, + "observedFirstVisualChange": 859, + "observedFirstVisualChangeTs": 194691741, + "observedLastVisualChange": 1209, + "observedLastVisualChangeTs": 195041741, + "observedSpeedIndex": 889, + "observedSpeedIndexTs": 194721877 }, { "lcpInvalidated": false @@ -140481,19 +141271,19 @@ "numScripts": 16, "numStylesheets": 4, "numFonts": 6, - "numTasks": 1452, - "numTasksOver10ms": 7, - "numTasksOver25ms": 3, + "numTasks": 1403, + "numTasksOver10ms": 6, + "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.7390000000000003, - "throughput": 25809101.397007726, - "maxRtt": 100.877, - "maxServerLatency": 44.658, - "totalByteWeight": 2663212, - "totalTaskTime": 476.2969999999989, - "mainDocumentTransferSize": 48456 + "rtt": 5.212, + "throughput": 30464575.03775606, + "maxRtt": 85.524, + "maxServerLatency": 31.552, + "totalByteWeight": 2663533, + "totalTaskTime": 479.7369999999991, + "mainDocumentTransferSize": 48509 } ] } @@ -140534,10 +141324,15 @@ { "slug": "pc", "mention": "Données personnelles", - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "maxScore": 8, + "score": 6, + "missingWords": [ + "durée de conservation" + ], + "missingTrackers": [ + "googlefonts" + ], + "declarationUrl": "https://entreprise.api.gouv.fr/donnees_personnelles" } ], "betagouv": { @@ -140597,7 +141392,7 @@ "cookiesCount": 3, "trackersGrade": "C", "trackersCount": 10, - "lighthouse_performance": 0.19203262329101561, + "lighthouse_performance": 0.19197139739990235, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.9, "lighthouse_accessibilityGrade": "A", @@ -140612,7 +141407,7 @@ "budgetPageGrade": "F", "declaration-a11y": "C", "declaration-rgpd-ml": "A", - "declaration-rgpd-pc": "F" + "declaration-rgpd-pc": "D" } }, { @@ -140623,7 +141418,7 @@ "http": { "url": "https://eva.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:32:35 GMT", + "end_time": "Sun, 14 Jan 2024 05:14:09 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -140631,16 +141426,16 @@ "Connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 05:32:32 GMT", + "date": "Sun, 14 Jan 2024 05:14:04 GMT", "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", "server": "Apache", "transfer-encoding": "chunked", "vary": "Accept-Encoding", "via": "1.1 alproxy" }, - "scan_id": 46229186, + "scan_id": 46455076, "score": 15, - "start_time": "Sun, 07 Jan 2024 05:32:29 GMT", + "start_time": "Sun, 14 Jan 2024 05:14:01 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -140832,8 +141627,8 @@ "email:934467329", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T05:44:30Z", - "next_check_at": "2024-01-07T05:49:28Z", + "last_check_at": "2024-01-14T05:23:07Z", + "next_check_at": "2024-01-14T05:28:05Z", "created_at": "2021-04-22T19:59:30Z", "mute_until": null, "favicon_url": "https://eva.beta.gouv.fr/wp-content/uploads/fbrfg/favicon.ico", @@ -140841,24 +141636,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T05:24:34Z", + "tested_at": "2024-01-14T04:58:14Z", "expires_at": "2024-02-19T08:10:07Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.807, + "apdex": 0.966, "timings": { "redirect": 0, - "namelookup": 175, - "connection": 132, - "handshake": 137, - "response": 560, - "total": 1004 + "namelookup": 108, + "connection": 89, + "handshake": 93, + "response": 268, + "total": 558 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "D" }, "nmap": { "host": "eva.beta.gouv.fr", @@ -141233,7 +142028,7 @@ "ip": "eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "OK", - "finding": "43 >= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", @@ -141436,7 +142231,7 @@ "ip": "eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "1704605633" + "finding": "1705209366" }, { "id": "HSTS", @@ -141992,7 +142787,7 @@ "ip": "eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "57" + "finding": "108" } ], "thirdparties": { @@ -142093,10 +142888,6 @@ "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, - { - "type": "unknown", - "url": "https://jxtj.mjt.lu/wgt/jxtj/n9i/form?c=eb87c80a" - }, { "type": "google fonts", "url": "https://fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2", @@ -142105,6 +142896,10 @@ "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, + { + "type": "unknown", + "url": "https://jxtj.mjt.lu/wgt/jxtj/n9i/form?c=eb87c80a" + }, { "type": "youtube", "url": "https://www.youtube.com/iframe_api", @@ -142115,7 +142910,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/www-widgetapi.vflset/www-widgetapi.js", + "url": "https://www.youtube.com/s/player/80b90bfd/www-widgetapi.vflset/www-widgetapi.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142131,7 +142926,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/www-player.css", + "url": "https://www.youtube.com/s/player/80b90bfd/www-player.css", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142139,7 +142934,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/player_ias.vflset/en_US/embed.js", + "url": "https://www.youtube.com/s/player/80b90bfd/player_ias.vflset/en_US/embed.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142147,7 +142942,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/www-embed-player.vflset/www-embed-player.js", + "url": "https://www.youtube.com/s/player/80b90bfd/www-embed-player.vflset/www-embed-player.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142155,7 +142950,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/player_ias.vflset/en_US/base.js", + "url": "https://www.youtube.com/s/player/80b90bfd/player_ias.vflset/en_US/base.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142227,7 +143022,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/player_ias.vflset/en_US/remote.js", + "url": "https://www.youtube.com/s/player/80b90bfd/player_ias.vflset/en_US/remote.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142235,7 +143030,7 @@ }, { "type": "google", - "url": "https://www.google.com/js/th/q3ybFvLVurjIRsyeRT4FtV2O7nz4ZH1nHhTn1-npVcU.js", + "url": "https://www.google.com/js/th/UhAHYkQc59SMm3ILQvX2LV9pHtXm_t6HT06w3DJ-zT8.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -142291,7 +143086,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/generate_204?Eh3Pow", + "url": "https://www.youtube.com/generate_204?P50vfg", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -142312,7 +143107,7 @@ "value": "1", "domain": "eva.beta.gouv.fr", "path": "/", - "expires": 1704607384, + "expires": 1705211078, "size": 17, "httpOnly": false, "secure": false, @@ -142324,10 +143119,10 @@ }, { "name": "_pk_id.100.5821", - "value": "105c6112b2f7f7c0.1704605585.", + "value": "3d0575ab096cc44e.1705209279.", "domain": "eva.beta.gouv.fr", "path": "/", - "expires": 1738560785, + "expires": 1739164479, "size": 43, "httpOnly": false, "secure": false, @@ -142341,7 +143136,7 @@ "headers": { "content-encoding": "br", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 05:33:03 GMT", + "date": "Sun, 14 Jan 2024 05:14:36 GMT", "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", "server": "Apache", "vary": "Accept-Encoding", @@ -142406,7 +143201,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.16.95", + "ip": "142.250.189.234", "geoip": { "continent": { "code": "NA", @@ -142426,7 +143221,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142446,7 +143241,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142517,7 +143312,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142544,7 +143339,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "172.253.63.94", + "ip": "142.250.191.67", "geoip": { "continent": { "code": "NA", @@ -142564,7 +143359,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142584,7 +143379,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142655,7 +143450,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142682,7 +143477,7 @@ }, { "hostname": "www.youtube.com", - "ip": "142.251.16.136", + "ip": "142.250.191.78", "geoip": { "continent": { "code": "NA", @@ -142702,7 +143497,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142722,7 +143517,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142736,7 +143531,7 @@ }, { "hostname": "googleads.g.doubleclick.net", - "ip": "172.253.115.156", + "ip": "142.250.191.34", "geoip": { "continent": { "code": "NA", @@ -142756,7 +143551,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142776,7 +143571,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142790,7 +143585,7 @@ }, { "hostname": "static.doubleclick.net", - "ip": "172.253.63.148", + "ip": "142.250.189.198", "geoip": { "continent": { "code": "NA", @@ -142810,7 +143605,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142830,7 +143625,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142844,7 +143639,7 @@ }, { "hostname": "jnn-pa.googleapis.com", - "ip": "172.253.62.95", + "ip": "172.217.12.106", "geoip": { "continent": { "code": "NA", @@ -142864,7 +143659,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142884,7 +143679,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142898,7 +143693,7 @@ }, { "hostname": "www.google.com", - "ip": "142.251.163.99", + "ip": "142.251.46.164", "geoip": { "continent": { "code": "NA", @@ -142918,7 +143713,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142938,7 +143733,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142952,7 +143747,7 @@ }, { "hostname": "i.ytimg.com", - "ip": "142.251.111.119", + "ip": "142.251.46.246", "geoip": { "continent": { "code": "NA", @@ -142972,7 +143767,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -142992,7 +143787,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -143006,7 +143801,7 @@ }, { "hostname": "yt3.ggpht.com", - "ip": "172.253.122.132", + "ip": "142.251.46.225", "geoip": { "continent": { "code": "NA", @@ -143026,7 +143821,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -143046,7 +143841,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -143060,7 +143855,7 @@ }, { "hostname": "www.gstatic.com", - "ip": "142.251.163.94", + "ip": "142.250.191.67", "geoip": { "continent": { "code": "NA", @@ -143080,7 +143875,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -143100,7 +143895,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -143242,7 +144037,7 @@ "name": "Yoast SEO", "description": "Yoast SEO is a search engine optimisation plugin for WordPress and other platforms.", "confidence": 100, - "version": "21.7", + "version": "21.8", "icon": "Yoast SEO.png", "website": "https://yoast.com/wordpress/plugins/seo/", "cpe": null, @@ -143560,7 +144355,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 05:32:02", + "@generated": "Sun, 14 Jan 2024 05:13:33", "site": [ { "@name": "https://eva.beta.gouv.fr", @@ -143729,13 +144524,6 @@ "riskdesc": "Informational (Medium)", "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" }, - { - "name": "Non-Storable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" - }, { "name": "Re-examine Cache-control Directives", "riskcode": "0", @@ -143803,1632 +144591,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "eva.beta.gouv.fr.", - "matched-at": "eva.beta.gouv.fr", - "timestamp": "2024-01-07T05:35:13.523655448Z", - "matcher-status": true - }, - { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", - "info": { - "name": "MX Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "eva.beta.gouv.fr.", - "matched-at": "eva.beta.gouv.fr", - "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." - ], - "timestamp": "2024-01-07T05:35:13.53643224Z", - "matcher-status": true - }, - { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", - "info": { - "name": "DNS DMARC - Detect", - "author": [ - "juliosmelo" - ], - "tags": [ - "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "dns", - "host": "eva.beta.gouv.fr.", - "matched-at": "_dmarc.eva.beta.gouv.fr", - "extracted-results": [ - "\"v=DMARC1;p=none;\"" - ], - "timestamp": "2024-01-07T05:35:13.922987838Z", - "matcher-status": true - }, - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "eva.beta.gouv.fr.", - "matched-at": "eva.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2024-01-07T05:35:14.596755201Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "eva.beta.gouv.fr.", - "matched-at": "eva.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ?all\"" - ], - "timestamp": "2024-01-07T05:35:14.604137437Z", - "matcher-status": true - }, - { - "template": "http/cves/2017/CVE-2017-5487.yaml", - "template-url": "https://templates.nuclei.sh/public/CVE-2017-5487", - "template-id": "CVE-2017-5487", - "template-path": "/home/runner/nuclei-templates/http/cves/2017/CVE-2017-5487.yaml", - "info": { - "name": "WordPress Core <4.7.1 - Username Enumeration", - "author": [ - "manas_harsh", - "daffainfo", - "geeknik", - "dr0pd34d" - ], - "tags": [ - "cve", - "cve2017", - "wordpress", - "wp", - "edb" - ], - "description": "WordPress Core before 4.7.1 is susceptible to user enumeration because it does not properly restrict listings of post authors via wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php in the REST API, which allows a remote attacker to obtain sensitive information via a wp-json/wp/v2/users request.", - "reference": [ - "https://www.exploit-db.com/exploits/41497", - "https://www.wordfence.com/blog/2016/12/wordfence-blocks-username-harvesting-via-new-rest-api-wp-4-7/", - "https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/", - "https://nvd.nist.gov/vuln/detail/cve-2017-5487", - "http://www.openwall.com/lists/oss-security/2017/01/14/6" - ], - "severity": "medium", - "metadata": { - "max-request": 2, - "product": "wordpress", - "shodan-query": "http.component:\"WordPress\"", - "vendor": "wordpress", - "verified": true - }, - "classification": { - "cve-id": [ - "cve-2017-5487" - ], - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", - "cvss-score": 5.3, - "epss-score": 0.97179, - "epss-percentile": 0.99767, - "cpe": "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*" - }, - "remediation": "Update WordPress to version 4.7.1 or later\n" - }, - "extractor-name": "usernames", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/wp-json/wp/v2/users/", - "extracted-results": [ - "Pauline", - "gaelle", - "karel", - "pauline", - "veronique", - "Karel Cloarec" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:35:31.601411374Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-json/wp/v2/users/'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/addeventlistener-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/addeventlistener-detect", - "template-id": "addeventlistener-detect", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/addeventlistener-detect.yaml", - "info": { - "name": "DOM EventListener - Cross-Site Scripting", - "author": [ - "yavolo", - "dwisiswant0" - ], - "tags": [ - "xss", - "misc" - ], - "description": "EventListener contains a cross-site scripting vulnerability via the document object model (DOM). An attacker can execute arbitrary script which can then allow theft of cookie-based authentication credentials and launch of other attacks.", - "reference": [ - "https://portswigger.net/web-security/dom-based/controlling-the-web-message-source" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-79" - ], - "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N", - "cvss-score": 7.2 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:35:42.77439868Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/apache/apache-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/apache-detect", - "template-id": "apache-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/apache/apache-detect.yaml", - "info": { - "name": "Apache Detection", - "author": [ - "philippedelteil" - ], - "tags": [ - "tech", - "apache" - ], - "description": "Some Apache servers have the version on the response header. The OpenSSL version can be also obtained", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "extracted-results": [ - "Apache" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:35:42.9129712Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/wordpress/plugins/elementor.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-elementor", - "template-id": "wordpress-elementor", - "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/elementor.yaml", - "info": { - "name": "Elementor Website Builder – More than Just a Page Builder Detection", - "author": [ - "ricardomaia" - ], - "tags": [ - "tech", - "wordpress", - "wp-plugin", - "top-100", - "top-200" - ], - "reference": [ - "https://wordpress.org/plugins/elementor/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "plugin_namespace": "elementor", - "wpscan": "https://wpscan.com/plugin/elementor" - } - }, - "extractor-name": "detected_version", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/elementor/readme.txt", - "extracted-results": [ - "3.18.3" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:36:08.524920709Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/elementor/readme.txt'", - "matcher-status": true - }, - { - "template": "http/technologies/metatag-cms.yaml", - "template-url": "https://templates.nuclei.sh/public/metatag-cms", - "template-id": "metatag-cms", - "template-path": "/home/runner/nuclei-templates/http/technologies/metatag-cms.yaml", - "info": { - "name": "Metatag CMS Detection", - "author": [ - "dadevel" - ], - "tags": [ - "tech", - "cms" - ], - "description": "Generic CMS Detection using html meta generator tag", - "reference": [ - "https://www.w3schools.com/tags/att_meta_name.asp" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "extracted-results": [ - "WordPress 6.4.2", - "Elementor 3.18.3; features: e_dom_optimization, e_optimized_assets_loading, additional_custom_breakpoints, block_editor_assets_optimize, e_image_loading_optimization; settings: css_print_method-external, google_font-enabled, font_display-auto" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:36:54.105125478Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", - "info": { - "name": "Wappalyzer Technology Detection", - "author": [ - "hakluke" - ], - "tags": [ - "tech" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "elementor", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:36:54.429757623Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", - "info": { - "name": "Wappalyzer Technology Detection", - "author": [ - "hakluke" - ], - "tags": [ - "tech" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "font-awesome", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:36:54.429811994Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", - "info": { - "name": "Wappalyzer Technology Detection", - "author": [ - "hakluke" - ], - "tags": [ - "tech" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "google-font-api", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:36:54.429822925Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841496255Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841542031Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841553512Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841568009Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841580483Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841601211Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841614917Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841628312Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841640364Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.841653148Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:15.84166504Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/exposed-panels/wordpress-login.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-login", - "template-id": "wordpress-login", - "template-path": "/home/runner/nuclei-templates/http/exposed-panels/wordpress-login.yaml", - "info": { - "name": "WordPress Login Panel - Detect", - "author": [ - "its0x08" - ], - "tags": [ - "panel", - "wordpress" - ], - "description": "WordPress login panel was detected.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/wp-login.php", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:16.687479343Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-login.php'", - "matcher-status": true - }, - { - "template": "http/exposures/files/wget-hsts-list-exposure.yaml", - "template-url": "https://templates.nuclei.sh/public/wget-hsts-list-exposure", - "template-id": "wget-hsts-list-exposure", - "template-path": "/home/runner/nuclei-templates/http/exposures/files/wget-hsts-list-exposure.yaml", - "info": { - "name": "WGET HSTS List Exposure", - "author": [ - "dhiyaneshdk" - ], - "tags": [ - "devops", - "exposure", - "wget", - "files" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "shodan-query": "html:\".wget-hsts\"", - "verified": true - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/.wget-hsts", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:32.445313027Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/.wget-hsts'", - "matcher-status": true - }, - { - "template": "http/exposures/files/wordpress-readme-file.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-readme-file", - "template-id": "wordpress-readme-file", - "template-path": "/home/runner/nuclei-templates/http/exposures/files/wordpress-readme-file.yaml", - "info": { - "name": "WordPress Readme File", - "author": [ - "tess" - ], - "tags": [ - "exposure", - "wordpress", - "wp", - "readme", - "files" - ], - "severity": "info", - "metadata": { - "max-request": 3, - "shodan-query": "http.component:\"wordpress\"", - "verified": true - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/readme.html", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:32.54433992Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/readme.html'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/robots-txt-endpoint.yaml", - "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint", - "template-id": "robots-txt-endpoint", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml", - "info": { - "name": "robots.txt endpoint prober", - "author": [ - "caspergn", - "pdteam" - ], - "tags": [ - "misc", - "generic" - ], - "severity": "info", - "metadata": { - "max-request": 2 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/robots.txt", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:37.066532923Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/robots.txt'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/robots-txt.yaml", - "template-url": "https://templates.nuclei.sh/public/robots-txt", - "template-id": "robots-txt", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt.yaml", - "info": { - "name": "robots.txt file", - "author": [ - "caspergn", - "thezakman" - ], - "tags": [ - "misc", - "generic" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/robots.txt", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:37.09015647Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/robots.txt'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/missing-sri.yaml", - "template-url": "https://templates.nuclei.sh/public/missing-sri", - "template-id": "missing-sri", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", - "info": { - "name": "Missing Subresource Integrity", - "author": [ - "lucky0x0d", - "pulsesecurity.co.nz" - ], - "tags": [ - "compliance", - "js", - "sri", - "misconfig" - ], - "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/", - "extracted-results": [ - "https://eva.beta.gouv.fr/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1", - "https://eva.beta.gouv.fr/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2", - "https://eva.beta.gouv.fr/wp-includes/js/jquery/jquery.min.js?ver=3.7.1", - "https://eva.beta.gouv.fr/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.7.4", - "https://eva.beta.gouv.fr/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2", - "https://eva.beta.gouv.fr/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0", - "https://eva.beta.gouv.fr/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0", - "https://eva.beta.gouv.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1", - "https://eva.beta.gouv.fr/wp-includes/js/imagesloaded.min.js?ver=5.0.0", - "https://eva.beta.gouv.fr/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.18.1", - "https://eva.beta.gouv.fr/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.18.1", - "https://eva.beta.gouv.fr/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.18.3", - "https://app.mailjet.com/pas-nc-embedded-v1.js", - "https://eva.beta.gouv.fr/wp-content/plugins/mailjet-for-wordpress/src/widgetformbuilder/js/front-widget.js?ver=6.4.2", - "https://eva.beta.gouv.fr/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.18.1", - "https://eva.beta.gouv.fr/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.18.3", - "https://eva.beta.gouv.fr/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2", - "https://eva.beta.gouv.fr/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.18.3", - "https://eva.beta.gouv.fr/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:37:50.026051512Z", - "curl-command": "curl -X 'GET' -d '' -H 'Host: eva.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/'", - "matcher-status": true - }, - { - "template": "http/technologies/wordpress-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-detect", - "template-id": "wordpress-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress-detect.yaml", - "info": { - "name": "WordPress Detect", - "author": [ - "pdteam", - "daffainfo", - "ricardomaia", - "topscoder", - "adamcrosser" - ], - "tags": [ - "tech", - "wordpress", - "cms", - "wp" - ], - "severity": "info", - "metadata": { - "category": "cms", - "max-request": 4, - "product": "wordpress", - "shodan-query": "http.component:\"WordPress\"", - "vendor": "wordpress", - "verified": true - } - }, - "extractor-name": "version_by_js", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr", - "extracted-results": [ - "6.4.2" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:38:06.229082373Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "ats", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:38:06.923314284Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: eva.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "apachegeneric", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:38:06.923356372Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: eva.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/'", - "matcher-status": true - }, - { - "template": "http/technologies/wordpress/plugins/child-theme-configurator.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-child-theme-configurator", - "template-id": "wordpress-child-theme-configurator", - "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/child-theme-configurator.yaml", - "info": { - "name": "Child Theme Configurator Detection", - "author": [ - "ricardomaia" - ], - "tags": [ - "tech", - "wordpress", - "wp-plugin", - "top-200" - ], - "reference": [ - "https://wordpress.org/plugins/child-theme-configurator/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "plugin_namespace": "child-theme-configurator", - "wpscan": "https://wpscan.com/plugin/child-theme-configurator" - } - }, - "extractor-name": "detected_version", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/child-theme-configurator/readme.txt", - "extracted-results": [ - "2.6.3" - ], - "meta": { - "last_version": "2.6.3" - }, - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:38:07.369492539Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/child-theme-configurator/readme.txt'", - "matcher-status": true - }, - { - "template": "http/technologies/wordpress/plugins/duplicate-page.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-duplicate-page", - "template-id": "wordpress-duplicate-page", - "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/duplicate-page.yaml", - "info": { - "name": "Duplicate Page Detection", - "author": [ - "ricardomaia" - ], - "tags": [ - "tech", - "wordpress", - "wp-plugin", - "top-100", - "top-200" - ], - "reference": [ - "https://wordpress.org/plugins/duplicate-page/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "plugin_namespace": "duplicate-page", - "wpscan": "https://wpscan.com/plugin/duplicate-page" - } - }, - "extractor-name": "detected_version", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/duplicate-page/readme.txt", - "extracted-results": [ - "4.5.3" - ], - "meta": { - "last_version": "4.5.3" - }, - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:38:08.029174193Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/duplicate-page/readme.txt'", - "matcher-status": true - }, - { - "template": "http/technologies/wordpress/plugins/mailchimp-for-wp.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-mailchimp-for-wp", - "template-id": "wordpress-mailchimp-for-wp", - "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/mailchimp-for-wp.yaml", - "info": { - "name": "MC4WP' Mailchimp for WordPress Detection", - "author": [ - "ricardomaia" - ], - "tags": [ - "tech", - "wordpress", - "wp-plugin", - "top-100", - "top-200" - ], - "reference": [ - "https://wordpress.org/plugins/mailchimp-for-wp/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "plugin_namespace": "mailchimp-for-wp", - "wpscan": "https://wpscan.com/plugin/mailchimp-for-wp" - } - }, - "extractor-name": "detected_version", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/mailchimp-for-wp/readme.txt", - "extracted-results": [ - "4.9.10" - ], - "meta": { - "last_version": "4.9.10" - }, - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:38:10.17759293Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/mailchimp-for-wp/readme.txt'", - "matcher-status": true - }, - { - "template": "http/technologies/wordpress/plugins/wordpress-seo.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-wordpress-seo", - "template-id": "wordpress-wordpress-seo", - "template-path": "/home/runner/nuclei-templates/http/technologies/wordpress/plugins/wordpress-seo.yaml", - "info": { - "name": "Yoast SEO Detection", - "author": [ - "ricardomaia" - ], - "tags": [ - "tech", - "wordpress", - "wp-plugin", - "top-100", - "top-200" - ], - "reference": [ - "https://wordpress.org/plugins/wordpress-seo/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "plugin_namespace": "wordpress-seo", - "wpscan": "https://wpscan.com/plugin/wordpress-seo" - } - }, - "extractor-name": "detected_version", - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/wp-content/plugins/wordpress-seo/readme.txt", - "extracted-results": [ - "21.7" - ], - "meta": { - "last_version": "21.5" - }, - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:38:13.029762492Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/wp-content/plugins/wordpress-seo/readme.txt'", - "matcher-status": true - }, - { - "template": "http/vulnerabilities/wordpress/wordpress-rdf-user-enum.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-rdf-user-enum", - "template-id": "wordpress-rdf-user-enum", - "template-path": "/home/runner/nuclei-templates/http/vulnerabilities/wordpress/wordpress-rdf-user-enum.yaml", - "info": { - "name": "Wordpress RDF User Enumeration", - "author": [ - "r3dg33k" - ], - "tags": [ - "wordpress", - "enum" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/feed/rdf", - "extracted-results": [ - "gaelle", - "Pauline" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:41:50.438056158Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/feed/rdf'", - "matcher-status": true - }, - { - "template": "http/vulnerabilities/wordpress/wordpress-xmlrpc-listmethods.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-xmlrpc-listmethods", - "template-id": "wordpress-xmlrpc-listmethods", - "template-path": "/home/runner/nuclei-templates/http/vulnerabilities/wordpress/wordpress-xmlrpc-listmethods.yaml", - "info": { - "name": "Wordpress XML-RPC List System Methods", - "author": [ - "0ut0fb4nd" - ], - "tags": [ - "wordpress" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/xmlrpc.php", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:41:50.5608375Z", - "curl-command": "curl -X 'POST' -d 'system.listMethods' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/xmlrpc.php'", - "matcher-status": true - }, - { - "template": "http/vulnerabilities/wordpress/wp-license-file.yaml", - "template-url": "https://templates.nuclei.sh/public/wp-license-file", - "template-id": "wp-license-file", - "template-path": "/home/runner/nuclei-templates/http/vulnerabilities/wordpress/wp-license-file.yaml", - "info": { - "name": "WordPress license file disclosure", - "author": [ - "yashgoti" - ], - "tags": [ - "wordpress" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/license.txt", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:41:51.370758659Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/license.txt'", - "matcher-status": true - }, - { - "template": "http/vulnerabilities/wordpress/wp-xmlrpc.yaml", - "template-url": "https://templates.nuclei.sh/public/wordpress-xmlrpc-file", - "template-id": "wordpress-xmlrpc-file", - "template-path": "/home/runner/nuclei-templates/http/vulnerabilities/wordpress/wp-xmlrpc.yaml", - "info": { - "name": "WordPress xmlrpc", - "author": [ - "udit_thakkur" - ], - "tags": [ - "wordpress" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://eva.beta.gouv.fr", - "matched-at": "https://eva.beta.gouv.fr/xmlrpc.php", - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:41:53.242755011Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://eva.beta.gouv.fr/xmlrpc.php'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "eva.beta.gouv.fr", - "matched-at": "eva.beta.gouv.fr:443", - "extracted-results": [ - "Let's Encrypt" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:41:58.814827779Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "eva.beta.gouv.fr", - "matched-at": "eva.beta.gouv.fr:443", - "extracted-results": [ - "eva.beta.gouv.fr" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:41:58.81496727Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "eva.beta.gouv.fr", - "matched-at": "eva.beta.gouv.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:42:03.649425952Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "eva.beta.gouv.fr", - "matched-at": "eva.beta.gouv.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "185.31.40.19", - "timestamp": "2024-01-07T05:42:03.842712546Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://eva.beta.gouv.fr/", "finalUrl": "https://eva.beta.gouv.fr/", - "fetchTime": "2024-01-07T05:32:17.141Z", + "fetchTime": "2024-01-14T05:13:48.503Z", "runWarnings": [], "categories": { "performance": { @@ -145439,7 +144607,7 @@ "snapshot" ], "id": "performance", - "score": 0.3443868637084961 + "score": 0.34450225830078124 }, "accessibility": { "title": "Accessibility", @@ -145491,53 +144659,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 14769, + "numericValue": 15382, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2595, - "firstMeaningfulPaint": 3645, - "largestContentfulPaint": 5180, - "interactive": 14769, - "speedIndex": 8242, - "totalBlockingTime": 348, - "maxPotentialFID": 313, + "firstContentfulPaint": 3012, + "firstMeaningfulPaint": 4088, + "largestContentfulPaint": 5824, + "interactive": 15382, + "speedIndex": 9165, + "totalBlockingTime": 313, + "maxPotentialFID": 189, "cumulativeLayoutShift": 0.003851605733235677, "cumulativeLayoutShiftMainFrame": 0.003851605733235677, "totalCumulativeLayoutShift": 0.003851605733235677, "observedTimeOrigin": 0, - "observedTimeOriginTs": 444534284, + "observedTimeOriginTs": 385908155, "observedNavigationStart": 0, - "observedNavigationStartTs": 444534284, - "observedFirstPaint": 723, - "observedFirstPaintTs": 445256976, - "observedFirstContentfulPaint": 723, - "observedFirstContentfulPaintTs": 445256976, - "observedFirstContentfulPaintAllFrames": 723, - "observedFirstContentfulPaintAllFramesTs": 445256976, - "observedFirstMeaningfulPaint": 783, - "observedFirstMeaningfulPaintTs": 445317020, - "observedLargestContentfulPaint": 837, - "observedLargestContentfulPaintTs": 445371652, - "observedLargestContentfulPaintAllFrames": 837, - "observedLargestContentfulPaintAllFramesTs": 445371652, - "observedTraceEnd": 4129, - "observedTraceEndTs": 448662794, - "observedLoad": 1193, - "observedLoadTs": 445727565, - "observedDomContentLoaded": 855, - "observedDomContentLoadedTs": 445389170, + "observedNavigationStartTs": 385908155, + "observedFirstPaint": 1126, + "observedFirstPaintTs": 387034048, + "observedFirstContentfulPaint": 1126, + "observedFirstContentfulPaintTs": 387034048, + "observedFirstContentfulPaintAllFrames": 1126, + "observedFirstContentfulPaintAllFramesTs": 387034048, + "observedFirstMeaningfulPaint": 1164, + "observedFirstMeaningfulPaintTs": 387072079, + "observedLargestContentfulPaint": 1334, + "observedLargestContentfulPaintTs": 387242117, + "observedLargestContentfulPaintAllFrames": 1334, + "observedLargestContentfulPaintAllFramesTs": 387242117, + "observedTraceEnd": 4646, + "observedTraceEndTs": 390554296, + "observedLoad": 1851, + "observedLoadTs": 387759289, + "observedDomContentLoaded": 1353, + "observedDomContentLoadedTs": 387261040, "observedCumulativeLayoutShift": 0.003851605733235677, "observedCumulativeLayoutShiftMainFrame": 0.003851605733235677, "observedTotalCumulativeLayoutShift": 0.003851605733235677, - "observedFirstVisualChange": 731, - "observedFirstVisualChangeTs": 445265284, - "observedLastVisualChange": 1397, - "observedLastVisualChangeTs": 445931284, - "observedSpeedIndex": 845, - "observedSpeedIndexTs": 445378851 + "observedFirstVisualChange": 1126, + "observedFirstVisualChangeTs": 387034155, + "observedLastVisualChange": 1843, + "observedLastVisualChangeTs": 387751155, + "observedSpeedIndex": 1287, + "observedSpeedIndexTs": 387195345 }, { "lcpInvalidated": false @@ -145559,18 +144727,18 @@ "numScripts": 32, "numStylesheets": 16, "numFonts": 8, - "numTasks": 1472, - "numTasksOver10ms": 10, - "numTasksOver25ms": 6, + "numTasks": 1527, + "numTasksOver10ms": 15, + "numTasksOver25ms": 7, "numTasksOver50ms": 3, - "numTasksOver100ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.7330000000000005, - "throughput": 24813984.873569973, - "maxRtt": 85.738, - "maxServerLatency": 23.984, - "totalByteWeight": 1864437, - "totalTaskTime": 755.861000000002, + "rtt": 1.6879999999999997, + "throughput": 16931160.00876766, + "maxRtt": 151.56300000000002, + "maxServerLatency": 20.138, + "totalByteWeight": 1863832, + "totalTaskTime": 739.8870000000011, "mainDocumentTransferSize": 22571 } ] @@ -145665,8 +144833,8 @@ "sonarcloud": null, "summary": { "httpGrade": "F", - "apdex": 0.807, - "apdexGrade": "F", + "apdex": 0.966, + "apdexGrade": "D", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -145679,7 +144847,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 39, - "lighthouse_performance": 0.3443868637084961, + "lighthouse_performance": 0.34450225830078124, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.92, "lighthouse_accessibilityGrade": "A", @@ -145708,30 +144876,30 @@ "http": { "url": "https://forum.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:34:27 GMT", + "end_time": "Sun, 14 Jan 2024 05:27:21 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "8397", - "Content-Security-Policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-YGm2YT5V1byYcsjUX+Hluw=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-YGm2YT5V1byYcsjUX+Hluw=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'", + "Content-Length": "8222", + "Content-Security-Policy": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-hZSXCjX2CqKz37C8N5sojQ=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-hZSXCjX2CqKz37C8N5sojQ=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 05:34:24 GMT", + "Date": "Sun, 14 Jan 2024 05:27:18 GMT", "Permissions-Policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=1evEqZSEldsfmpqMtdKA5adpuIiznHNC; expires=Sun, 05 Jan 2025 05:34:24 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=bc91epb2xslbl76cwme3ibeoej6y81rw; expires=Sun, 21 Jan 2024 05:34:24 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "Sozu-Id": "01HKH6MH6DS9VTYTEKCK5VR58R", + "Set-Cookie": "csrftoken=TrW2QlA6SYpJfT1CDpyBQejUSLDRidlK; expires=Sun, 12 Jan 2025 05:27:18 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure, sessionid=s8fayrjabahtvp6dvfbv952x1wm1pluh; expires=Sun, 28 Jan 2024 05:27:18 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "Sozu-Id": "01HM370J306221CXPD19SMWV3P", "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", "Vary": "Cookie, Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 46229210, + "scan_id": 46455574, "score": 100, - "start_time": "Sun, 07 Jan 2024 05:34:21 GMT", + "start_time": "Sun, 14 Jan 2024 05:27:14 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -145745,56 +144913,56 @@ "data": { "connect-src": [ "*.sentry.io", - "https://matomo.inclusion.beta.gouv.fr/", - "'self'" + "'self'", + "https://matomo.inclusion.beta.gouv.fr/" ], "default-src": [ "'self'" ], "font-src": [ - "https://fonts.gstatic.com/", "data:", - "'self'" + "'self'", + "https://fonts.gstatic.com/" ], "frame-src": [ "https://tally.so", "'self'" ], "img-src": [ - "https://matomo.inclusion.beta.gouv.fr/", - "cellar-c2.services.clever-cloud.com", "data:", - "'self'" + "'self'", + "cellar-c2.services.clever-cloud.com", + "https://matomo.inclusion.beta.gouv.fr/" ], "script-src": [ + "'nonce-hzsxcjx2cqkz37c8n5sojq=='", "https://matomo.inclusion.beta.gouv.fr/", - "'self'", + "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "'nonce-ygm2yt5v1byycsjux+hluw=='", "https://tally.so", - "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js" + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", + "'self'" ], "script-src-elem": [ + "'nonce-hzsxcjx2cqkz37c8n5sojq=='", "https://matomo.inclusion.beta.gouv.fr/", - "'self'", + "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", "https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js", - "'nonce-ygm2yt5v1byycsjux+hluw=='", "https://tally.so", - "https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js", "https://cdn.jsdelivr.net/npm/chart.js@4.0.1", - "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js" + "https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js", + "'self'" ], "style-src": [ + "'self'", "https://fonts.googleapis.com", - "'unsafe-inline'", - "'self'" + "'unsafe-inline'" ], "style-src-elem": [ + "'self'", "https://fonts.googleapis.com", - "'unsafe-inline'", - "'self'" + "'unsafe-inline'" ] }, "http": true, @@ -145837,7 +145005,7 @@ "data": { "csrftoken": { "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1736055266, + "expires": 1736659640, "httponly": false, "max-age": null, "path": "/", @@ -145847,7 +145015,7 @@ }, "sessionid": { "domain": "communaute.inclusion.beta.gouv.fr", - "expires": 1705815264, + "expires": 1706419638, "httponly": true, "max-age": null, "path": "/", @@ -146009,7 +145177,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-06T19:55:47Z", + "up_since": "2024-01-14T04:33:50Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -146021,8 +145189,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T05:43:00Z", - "next_check_at": "2024-01-07T05:47:58Z", + "last_check_at": "2024-01-14T05:38:31Z", + "next_check_at": "2024-01-14T05:43:31Z", "created_at": "2021-04-22T19:59:31Z", "mute_until": null, "favicon_url": "https://communaute.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", @@ -146030,24 +145198,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T05:33:05Z", + "tested_at": "2024-01-14T04:58:49Z", "expires_at": "2024-02-19T07:55:53Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.939, + "apdex": 0.964, "timings": { - "redirect": 794, - "namelookup": 137, - "connection": 122, - "handshake": 130, - "response": 305, - "total": 1488 + "redirect": 884, + "namelookup": 135, + "connection": 152, + "handshake": 161, + "response": 1004, + "total": 2335 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "D" }, "nmap": { "host": "forum.inclusion.beta.gouv.fr", @@ -146423,7 +145591,7 @@ "ip": "forum.inclusion.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "OK", - "finding": "43 >= 30 days" + "finding": "36 >= 30 days" }, { "id": "cert_notBefore", @@ -146626,7 +145794,7 @@ "ip": "forum.inclusion.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "1704605767" + "finding": "1705210171" }, { "id": "HSTS", @@ -147182,7 +146350,7 @@ "ip": "forum.inclusion.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "97" } ], "thirdparties": { @@ -147227,10 +146395,10 @@ "cookies": [ { "name": "sessionid", - "value": "oap2uhx2gjb8u9qah7izzjbtrm70g67c", + "value": "atweaniu7s1yr53bvbmts8ls08vo42ro", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1705815299.136097, + "expires": 1706419670.40842, "size": 41, "httpOnly": true, "secure": true, @@ -147245,7 +146413,7 @@ "value": "1", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1704607499, + "expires": 1705211871, "size": 17, "httpOnly": false, "secure": false, @@ -147257,10 +146425,10 @@ }, { "name": "_pk_id.206.a786", - "value": "74d0e20c4c9b0cfd.1704605700.", + "value": "05930f0f187dfee9.1705210072.", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1738560900, + "expires": 1739165272, "size": 43, "httpOnly": false, "secure": false, @@ -147272,10 +146440,10 @@ }, { "name": "csrftoken", - "value": "vXCSOG8zP3iVSv4Ho4wuZ80La8Gposdd", + "value": "ibuxHMsZzYxIw6Y3wfyNHLGn6P8AKoea", "domain": "communaute.inclusion.beta.gouv.fr", "path": "/", - "expires": 1736055299.135994, + "expires": 1736659670.408328, "size": 41, "httpOnly": false, "secure": true, @@ -147289,15 +146457,15 @@ "headers": { "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "8461", - "content-security-policy": "script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-/nMO2f94abF6slWXRHKktA=='; font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-/nMO2f94abF6slWXRHKktA=='; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; default-src 'self'", + "content-length": "8305", + "content-security-policy": "font-src 'self' https://fonts.gstatic.com/ data:; style-src-elem 'self' https://fonts.googleapis.com 'unsafe-inline'; frame-src 'self' https://tally.so; default-src 'self'; script-src 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-EujnHGgv++MIg0DkIVivhQ=='; script-src-elem 'self' https://cdn.jsdelivr.net/npm/chart.js@4.0.1 https://cdn.jsdelivr.net/npm/jquery@3.6.1/dist/jquery.min.js https://cdn.jsdelivr.net/npm/@popperjs/core@2.11.8/dist/umd/popper.min.js https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.min.js https://tally.so https://matomo.inclusion.beta.gouv.fr/ 'nonce-EujnHGgv++MIg0DkIVivhQ=='; img-src 'self' data: cellar-c2.services.clever-cloud.com https://matomo.inclusion.beta.gouv.fr/; connect-src 'self' *.sentry.io https://matomo.inclusion.beta.gouv.fr/; style-src 'self' https://fonts.googleapis.com 'unsafe-inline'", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 05:34:59 GMT", + "date": "Sun, 14 Jan 2024 05:27:50 GMT", "permissions-policy": "accelerometer=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=vXCSOG8zP3iVSv4Ho4wuZ80La8Gposdd; expires=Sun, 05 Jan 2025 05:34:59 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=oap2uhx2gjb8u9qah7izzjbtrm70g67c; expires=Sun, 21 Jan 2024 05:34:59 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01HKH6NJS77FAPNJT7WS4SBTNE", + "set-cookie": "csrftoken=ibuxHMsZzYxIw6Y3wfyNHLGn6P8AKoea; expires=Sun, 12 Jan 2025 05:27:50 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure\nsessionid=atweaniu7s1yr53bvbmts8ls08vo42ro; expires=Sun, 28 Jan 2024 05:27:50 GMT; HttpOnly; Max-Age=1209600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01HM371H2AHMFN3VCXDY4PDM86", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "vary": "Cookie, Accept-Encoding", "x-content-type-options": "nosniff", @@ -147362,19 +146530,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.77.229", + "ip": "146.75.93.229", "geoip": { "city": { - "geoname_id": 4887398, + "geoname_id": 5368361, "names": { - "de": "Chicago", - "en": "Chicago", - "es": "Chicago", - "fr": "Chicago", - "ja": "シカゴ", - "pt-BR": "Chicago", - "ru": "Чикаго", - "zh-CN": "芝加哥" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -147395,7 +146563,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -147407,19 +146575,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 41.8719, - "longitude": -87.6589, - "metro_code": 602, - "time_zone": "America/Chicago" + "latitude": 34.0544, + "longitude": -118.244, + "metro_code": 803, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "60607" + "code": "90012" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -147431,16 +146599,17 @@ }, "subdivisions": [ { - "geoname_id": 4896861, - "iso_code": "IL", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Illinois", - "es": "Illinois", - "fr": "Illinois", - "ja": "イリノイ州", - "pt-BR": "Ilinóis", - "ru": "Иллинойс", - "zh-CN": "伊利诺伊州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -147448,13 +146617,47 @@ }, { "hostname": "tally.so", - "ip": "104.21.72.50", + "ip": "172.67.175.26", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -147468,7 +146671,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.190.10", + "ip": "142.250.68.74", "geoip": { "continent": { "code": "NA", @@ -147488,7 +146691,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -147508,7 +146711,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -147553,7 +146756,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 05:33:55", + "@generated": "Sun, 14 Jan 2024 05:26:47", "site": [ { "@name": "https://forum.inclusion.beta.gouv.fr", @@ -147582,13 +146785,6 @@ "riskdesc": "Medium (High)", "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, - { - "name": "Source Code Disclosure - ActiveVFP", - "riskcode": "2", - "confidence": "2", - "riskdesc": "Medium (Medium)", - "desc": "

Application Source Code was disclosed by the web server - ActiveVFP

" - }, { "name": "Sub Resource Integrity Attribute Missing", "riskcode": "2", @@ -147696,7 +146892,7 @@ { "requestedUrl": "https://forum.inclusion.beta.gouv.fr/", "finalUrl": "https://communaute.inclusion.beta.gouv.fr/", - "fetchTime": "2024-01-07T05:34:09.839Z", + "fetchTime": "2024-01-14T05:27:01.194Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://forum.inclusion.beta.gouv.fr/) was redirected to https://communaute.inclusion.beta.gouv.fr/. Try testing the second URL directly." ], @@ -147709,7 +146905,7 @@ "snapshot" ], "id": "performance", - "score": 0.8992208480834961 + "score": 0.8441106796264648 }, "accessibility": { "title": "Accessibility", @@ -147761,53 +146957,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8244, + "numericValue": 8588, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8244, - "firstMeaningfulPaint": 8244, - "largestContentfulPaint": 10750, - "interactive": 8244, - "speedIndex": 8244, + "firstContentfulPaint": 8588, + "firstMeaningfulPaint": 8588, + "largestContentfulPaint": 10930, + "interactive": 8588, + "speedIndex": 8588, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.005801510281032986, - "cumulativeLayoutShiftMainFrame": 0.005801510281032986, - "totalCumulativeLayoutShift": 0.005801510281032986, + "cumulativeLayoutShift": 0.0057958204481336805, + "cumulativeLayoutShiftMainFrame": 0.0057958204481336805, + "totalCumulativeLayoutShift": 0.0057958204481336805, "observedTimeOrigin": 0, - "observedTimeOriginTs": 934395275, + "observedTimeOriginTs": 312448940, "observedNavigationStart": 0, - "observedNavigationStartTs": 934395275, - "observedFirstPaint": 701, - "observedFirstPaintTs": 935096633, - "observedFirstContentfulPaint": 701, - "observedFirstContentfulPaintTs": 935096633, - "observedFirstContentfulPaintAllFrames": 701, - "observedFirstContentfulPaintAllFramesTs": 935096633, - "observedFirstMeaningfulPaint": 701, - "observedFirstMeaningfulPaintTs": 935096633, - "observedLargestContentfulPaint": 701, - "observedLargestContentfulPaintTs": 935096633, - "observedLargestContentfulPaintAllFrames": 701, - "observedLargestContentfulPaintAllFramesTs": 935096633, - "observedTraceEnd": 3288, - "observedTraceEndTs": 937682907, - "observedLoad": 980, - "observedLoadTs": 935375521, + "observedNavigationStartTs": 312448940, + "observedFirstPaint": 947, + "observedFirstPaintTs": 313395677, + "observedFirstContentfulPaint": 947, + "observedFirstContentfulPaintTs": 313395677, + "observedFirstContentfulPaintAllFrames": 947, + "observedFirstContentfulPaintAllFramesTs": 313395677, + "observedFirstMeaningfulPaint": 947, + "observedFirstMeaningfulPaintTs": 313395677, + "observedLargestContentfulPaint": 947, + "observedLargestContentfulPaintTs": 313395677, + "observedLargestContentfulPaintAllFrames": 947, + "observedLargestContentfulPaintAllFramesTs": 313395677, + "observedTraceEnd": 4649, + "observedTraceEndTs": 317098216, + "observedLoad": 1504, + "observedLoadTs": 313953073, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 934395795, - "observedCumulativeLayoutShift": 0.005801510281032986, - "observedCumulativeLayoutShiftMainFrame": 0.005801510281032986, - "observedTotalCumulativeLayoutShift": 0.005801510281032986, - "observedFirstVisualChange": 667, - "observedFirstVisualChangeTs": 935062275, - "observedLastVisualChange": 1000, - "observedLastVisualChangeTs": 935395275, - "observedSpeedIndex": 681, - "observedSpeedIndexTs": 935075929 + "observedDomContentLoadedTs": 312449455, + "observedCumulativeLayoutShift": 0.0057958204481336805, + "observedCumulativeLayoutShiftMainFrame": 0.0057958204481336805, + "observedTotalCumulativeLayoutShift": 0.0057958204481336805, + "observedFirstVisualChange": 955, + "observedFirstVisualChangeTs": 313403940, + "observedLastVisualChange": 1938, + "observedLastVisualChangeTs": 314386940, + "observedSpeedIndex": 991, + "observedSpeedIndexTs": 313440295 }, { "lcpInvalidated": false @@ -147825,8 +147021,8 @@ "type": "debugdata", "items": [ { - "numRequests": 29, - "numScripts": 11, + "numRequests": 35, + "numScripts": 15, "numStylesheets": 5, "numFonts": 4, "numTasks": 17, @@ -147835,13 +147031,13 @@ "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.6380000000000003, - "throughput": 14496131.3891272, - "maxRtt": 101.764, - "maxServerLatency": 145.18400000000003, - "totalByteWeight": 1576949, - "totalTaskTime": 4.457, - "mainDocumentTransferSize": 10529 + "rtt": 8.373000000000001, + "throughput": 9749556.64986018, + "maxRtt": 137.49499999999998, + "maxServerLatency": 181.01000000000002, + "totalByteWeight": 1865885, + "totalTaskTime": 5.705, + "mainDocumentTransferSize": 10355 } ] } @@ -147937,8 +147133,8 @@ "sonarcloud": null, "summary": { "httpGrade": "A+", - "apdex": 0.939, - "apdexGrade": "F", + "apdex": 0.964, + "apdexGrade": "D", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -147951,7 +147147,7 @@ "cookiesCount": 4, "trackersGrade": "C", "trackersCount": 5, - "lighthouse_performance": 0.8992208480834961, + "lighthouse_performance": 0.8441106796264648, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -147977,47 +147173,96 @@ "http": { "url": "https://histologe.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 04:05:06 GMT", - "grade": "C", + "end_time": "Sun, 14 Jan 2024 04:03:59 GMT", + "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Cache-Control": "max-age=0, must-revalidate, private", "Connection": "keep-alive", "Content-Encoding": "gzip", + "Content-Security-Policy": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud https://unpkg.com; style-src 'self' 'unsafe-inline' https://unpkg.com; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://unpkg.com https://jedonnemonavis.numerique.gouv.fr; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://koumoul.com; font-src 'self';", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 07 Jan 2024 04:05:05 GMT", - "Expires": "Sun, 07 Jan 2024 04:05:05 GMT", - "Set-Cookie": "PHPSESSID=040dd81c5e88ee31bef141a1eb8d878b; path=/; httponly; samesite=lax", + "Date": "Sun, 14 Jan 2024 04:03:58 GMT", + "Expires": "Sun, 14 Jan 2024 04:03:58 GMT", + "Set-Cookie": "PHPSESSID=57fa03a176e7017567e827c90437bdba; path=/; secure; httponly; samesite=lax", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", + "X-Content-Type-Options": ": nosniff", "X-Frame-Options": "deny", - "X-Request-ID": "15c8cc04-d29e-4359-9f7e-95c0535413f1" + "X-Request-ID": "5b4444a4-76d8-4c25-9eaf-236fb517223b", + "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46228150, - "score": 50, - "start_time": "Sun, 07 Jan 2024 04:05:02 GMT", + "scan_id": 46437654, + "score": 75, + "start_time": "Sun, 14 Jan 2024 04:03:55 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 4, - "tests_passed": 8, + "tests_failed": 2, + "tests_passed": 10, "tests_quantity": 12, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": null, - "http": false, + "data": { + "connect-src": [ + "https://koumoul.com", + "'self'", + "https://cdn.matomo.cloud", + "https://api-adresse.data.gouv.fr" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "'self'" + ], + "img-src": [ + "https://*.tile.openstreetmap.org", + "https://unpkg.com", + "data:", + "blob:", + "https://jedonnemonavis.numerique.gouv.fr", + "https://voxusagers.numerique.gouv.fr", + "'self'" + ], + "script-src": [ + "'unsafe-eval'", + "https://unpkg.com", + "'unsafe-inline'", + "https://cdn.matomo.cloud", + "'self'" + ], + "style-src": [ + "'self'", + "https://unpkg.com", + "'unsafe-inline'" + ] + }, + "http": true, "meta": false, - "numPolicies": 0, - "policy": null + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": true, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": false + } }, "pass": false, - "result": "csp-not-implemented", - "score_description": "Content Security Policy (CSP) header not implemented", - "score_modifier": -25 + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 }, "contribute": { "expectation": "contribute-json-only-required-on-mozilla-properties", @@ -148043,15 +147288,15 @@ "path": "/", "port": null, "samesite": "Lax", - "secure": false + "secure": true } }, - "sameSite": null + "sameSite": true }, - "pass": false, - "result": "cookies-session-without-secure-flag-but-protected-by-hsts", - "score_description": "Session cookie set without the Secure flag, but transmission over HTTP prevented by HSTS", - "score_modifier": -10 + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 }, "cross-origin-resource-sharing": { "expectation": "cross-origin-resource-sharing-not-implemented", @@ -148143,11 +147388,11 @@ "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": null + "data": ": nosniff" }, "pass": false, - "result": "x-content-type-options-not-implemented", - "score_description": "X-Content-Type-Options header not implemented", + "result": "x-content-type-options-header-invalid", + "score_description": "X-Content-Type-Options header cannot be recognized", "score_modifier": -5 }, "x-frame-options": { @@ -148165,12 +147410,12 @@ "expectation": "x-xss-protection-1-mode-block", "name": "x-xss-protection", "output": { - "data": null + "data": "1; mode=block" }, - "pass": false, - "result": "x-xss-protection-not-implemented", - "score_description": "X-XSS-Protection header not implemented", - "score_modifier": -10 + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 } } }, @@ -148194,8 +147439,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T05:51:24Z", - "next_check_at": "2024-01-07T05:56:22Z", + "last_check_at": "2024-01-14T05:50:14Z", + "next_check_at": "2024-01-14T05:55:12Z", "created_at": "2021-04-22T19:59:31Z", "mute_until": null, "favicon_url": "https://histologe.beta.gouv.fr/favicon.ico", @@ -148203,7 +147448,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T05:16:39Z", + "tested_at": "2024-01-14T05:40:16Z", "expires_at": "2024-03-24T07:34:07Z", "valid": true, "error": null @@ -148212,11 +147457,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 189, - "connection": 133, - "handshake": 139, - "response": 279, - "total": 740 + "namelookup": 140, + "connection": 142, + "handshake": 146, + "response": 277, + "total": 706 } }, "uptimeGrade": "A", @@ -148247,6 +147492,1156 @@ "dependabot": null, "codescan": null, "testssl": [ + { + "id": "service", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2023-12-25 07:34" + }, + { + "id": "cert_notAfter", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2024-03-24 07:34" + }, + { + "id": "cert_extlifeSpan", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "1705210792" + }, + { + "id": "HSTS_time", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "deny" + }, + { + "id": "X-Content-Type-Options", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": ": nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud https://unpkg.com; style-src 'self' 'unsafe-inline' https://unpkg.com; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://unpkg.com https://jedonnemonavis.numerique.gouv.fr; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://koumoul.com; font-src 'self';" + }, + { + "id": "X-XSS-Protection", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" + }, + { + "id": "Cache-Control", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "max-age=0, must-revalidate, private" + }, + { + "id": "banner_reverseproxy", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=04774F5C62AE2D869BAD27599E0744472CF000ACB63283575CF5915FF30560CC" + }, + { + "id": "LOGJAM", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "histologe.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "A+" + }, { "id": "service", "ip": "histologe.beta.gouv.fr/5.104.101.30", @@ -148594,7 +148989,7 @@ "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -148797,7 +149192,7 @@ "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704606212" + "finding": "1705210854" }, { "id": "HSTS_time", @@ -148852,8 +149247,8 @@ "id": "cookie_secure", "ip": "histologe.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", @@ -148869,6 +149264,27 @@ "severity": "OK", "finding": "deny" }, + { + "id": "X-Content-Type-Options", + "ip": "histologe.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": ": nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "histologe.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud https://unpkg.com; style-src 'self' 'unsafe-inline' https://unpkg.com; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://unpkg.com https://jedonnemonavis.numerique.gouv.fr; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://koumoul.com; font-src 'self';" + }, + { + "id": "X-XSS-Protection", + "ip": "histologe.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" + }, { "id": "Cache-Control", "ip": "histologe.beta.gouv.fr/5.104.101.30", @@ -149583,7 +149999,7 @@ "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -149723,7 +150139,7 @@ "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -149926,7 +150342,7 @@ "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704606266" + "finding": "1705210914" }, { "id": "HSTS_time", @@ -149981,8 +150397,8 @@ "id": "cookie_secure", "ip": "histologe.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", @@ -149998,6 +150414,27 @@ "severity": "OK", "finding": "deny" }, + { + "id": "X-Content-Type-Options", + "ip": "histologe.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": ": nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "histologe.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud https://unpkg.com; style-src 'self' 'unsafe-inline' https://unpkg.com; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://unpkg.com https://jedonnemonavis.numerique.gouv.fr; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://koumoul.com; font-src 'self';" + }, + { + "id": "X-XSS-Protection", + "ip": "histologe.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" + }, { "id": "Cache-Control", "ip": "histologe.beta.gouv.fr/148.253.75.120", @@ -150852,7 +151289,7 @@ "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -151055,7 +151492,7 @@ "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704606321" + "finding": "1705210974" }, { "id": "HSTS_time", @@ -151110,8 +151547,8 @@ "id": "cookie_secure", "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" + "severity": "OK", + "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", @@ -151127,6 +151564,27 @@ "severity": "OK", "finding": "deny" }, + { + "id": "X-Content-Type-Options", + "ip": "histologe.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": ": nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "histologe.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud https://unpkg.com; style-src 'self' 'unsafe-inline' https://unpkg.com; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://unpkg.com https://jedonnemonavis.numerique.gouv.fr; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://koumoul.com; font-src 'self';" + }, + { + "id": "X-XSS-Protection", + "ip": "histologe.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" + }, { "id": "Cache-Control", "ip": "histologe.beta.gouv.fr/109.232.236.90", @@ -151634,1141 +152092,12 @@ "severity": "OK", "finding": "A+" }, - { - "id": "service", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "2023-12-25 07:34" - }, - { - "id": "cert_notAfter", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "2024-03-24 07:34" - }, - { - "id": "cert_extlifeSpan", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "1704606377" - }, - { - "id": "HSTS_time", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "deny" - }, - { - "id": "Cache-Control", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "max-age=0, must-revalidate, private" - }, - { - "id": "banner_reverseproxy", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=04774F5C62AE2D869BAD27599E0744472CF000ACB63283575CF5915FF30560CC" - }, - { - "id": "LOGJAM", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "histologe.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "OK", - "finding": "A+" - }, { "id": "scanTime", - "ip": "histologe.beta.gouv.fr/109.232.233.130", + "ip": "histologe.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "222" + "finding": "245" } ], "thirdparties": { @@ -152776,10 +152105,6 @@ { "type": "unknown", "url": "https://cdn.matomo.cloud/histologe.matomo.cloud/matomo.js" - }, - { - "type": "unknown", - "url": "https://histologe.matomo.cloud/matomo.php?action_name=Histologe%20-%20Un%20service%20public%20pour%20les%20locataires%20et%20propri%C3%A9taires&idsite=7&rec=1&r=735663&h=5&m=42&s=33&url=https%3A%2F%2Fhistologe.beta.gouv.fr%2F&_id=a047ca7e57b2e1c0&_idn=1&send_image=0&_refts=0&pv_id=iG5ABR&fa_pv=1&fa_fp[0][fa_vid]=tNd9Ix&fa_fp[0][fa_id]=front_postalcodesearch&fa_fp[0][fa_name]=postal_code_search&fa_fp[0][fa_fv]=1&pf_net=181&pf_srv=225&pf_tfr=1&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D&cookie=1&res=800x600" } ], "cookies": [ @@ -152788,10 +152113,10 @@ "value": "1", "domain": "histologe.beta.gouv.fr", "path": "/", - "expires": 1704607953, + "expires": 1705212528, "size": 15, "httpOnly": false, - "secure": false, + "secure": true, "session": false, "sameSite": "Lax", "sameParty": false, @@ -152800,13 +152125,13 @@ }, { "name": "_pk_id.7.fa00", - "value": "a047ca7e57b2e1c0.1704606153.", + "value": "e1cde22fb0563085.1705210729.", "domain": "histologe.beta.gouv.fr", "path": "/", - "expires": 1738561353, + "expires": 1739165929, "size": 41, "httpOnly": false, - "secure": false, + "secure": true, "session": false, "sameSite": "Lax", "sameParty": false, @@ -152815,13 +152140,13 @@ }, { "name": "PHPSESSID", - "value": "88bea2d873c7b6c8751886d20f81510a", + "value": "8e0f1189dada8742499f0fa7b10c751a", "domain": "histologe.beta.gouv.fr", "path": "/", "expires": -1, "size": 41, "httpOnly": true, - "secure": false, + "secure": true, "session": true, "sameSite": "Lax", "sameParty": false, @@ -152832,14 +152157,17 @@ "headers": { "cache-control": "max-age=0, must-revalidate, private", "content-encoding": "gzip", + "content-security-policy": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.matomo.cloud https://unpkg.com; style-src 'self' 'unsafe-inline' https://unpkg.com; img-src 'self' data: blob: https://voxusagers.numerique.gouv.fr https://*.tile.openstreetmap.org https://unpkg.com https://jedonnemonavis.numerique.gouv.fr; connect-src 'self' https://api-adresse.data.gouv.fr https://cdn.matomo.cloud https://koumoul.com; font-src 'self';", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 05:42:32 GMT", - "expires": "Sun, 07 Jan 2024 05:42:32 GMT", - "set-cookie": "PHPSESSID=88bea2d873c7b6c8751886d20f81510a; path=/; httponly; samesite=lax", + "date": "Sun, 14 Jan 2024 05:38:48 GMT", + "expires": "Sun, 14 Jan 2024 05:38:48 GMT", + "set-cookie": "PHPSESSID=8e0f1189dada8742499f0fa7b10c751a; path=/; secure; httponly; samesite=lax", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", + "x-content-type-options": ": nosniff", "x-frame-options": "deny", - "x-request-id": "b89b25c7-12af-463f-891d-daf178af2973" + "x-request-id": "47181fa2-5301-4b2a-b68c-25b9946c79e2", + "x-xss-protection": "1; mode=block" }, "endpoints": [ { @@ -152900,7 +152228,7 @@ }, { "hostname": "cdn.matomo.cloud", - "ip": "3.162.125.38", + "ip": "13.249.85.9", "geoip": { "continent": { "code": "NA", @@ -152920,7 +152248,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -152940,7 +152268,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -152951,90 +152279,6 @@ } } } - }, - { - "hostname": "histologe.matomo.cloud", - "ip": "18.195.235.189", - "geoip": { - "city": { - "geoname_id": 2925533, - "names": { - "de": "Frankfurt am Main", - "en": "Frankfurt am Main", - "es": "Francfort", - "fr": "Francfort-sur-le-Main", - "ja": "フランクフルト・アム・マイン", - "pt-BR": "Frankfurt am Main", - "ru": "Франкфурт", - "zh-CN": "法兰克福" - } - }, - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 2921044, - "is_in_european_union": true, - "iso_code": "DE", - "names": { - "de": "Deutschland", - "en": "Germany", - "es": "Alemania", - "fr": "Allemagne", - "ja": "ドイツ連邦共和国", - "pt-BR": "Alemanha", - "ru": "ФРГ", - "zh-CN": "德国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 50.1188, - "longitude": 8.6843, - "time_zone": "Europe/Berlin" - }, - "postal": { - "code": "60313" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 2905330, - "iso_code": "HE", - "names": { - "de": "Hessen", - "en": "Hesse", - "es": "Hessen", - "fr": "Hesse", - "ru": "Гессен" - } - } - ] - } } ] }, @@ -153163,7 +152407,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 05:41:51", + "@generated": "Sun, 14 Jan 2024 05:38:06", "site": [ { "@name": "https://histologe.beta.gouv.fr", @@ -153179,11 +152423,32 @@ "desc": "

No Anti-CSRF tokens were found in a HTML submission form.

A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.

CSRF attacks are effective in a number of situations, including:

* The victim has an active session on the target site.

* The victim is authenticated via HTTP auth on the target site.

* The victim is on the same local network as the target site.

CSRF has primarily been used to perform an action against a target site using the victim's privileges, but recent techniques have been discovered to disclose information by gaining access to the response. The risk of information disclosure is dramatically increased when the target site is vulnerable to XSS, because XSS can be used as a platform for CSRF, allowing the attack to operate within the bounds of the same-origin policy.

" }, { - "name": "Content Security Policy (CSP) Header Not Set", + "name": "CSP: Wildcard Directive", "riskcode": "2", "confidence": "3", "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "CSP: script-src unsafe-eval", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "CSP: script-src unsafe-inline", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "CSP: style-src unsafe-inline", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, { "name": "Vulnerable JS Library", @@ -153192,13 +152457,6 @@ "riskdesc": "Medium (Medium)", "desc": "

The identified library tinyMCE, version 6.0.0 is vulnerable.

" }, - { - "name": "Cookie Without Secure Flag", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

A cookie has been set without the secure flag, which means that the cookie can be accessed via unencrypted connections.

" - }, { "name": "Dangerous JS Functions", "riskcode": "1", @@ -153324,23 +152582,23 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -153350,36 +152608,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "histologe.beta.gouv.fr.", - "matched-at": "_dmarc.histologe.beta.gouv.fr", + "matched-at": "histologe.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2024-01-07T05:47:41.229858047Z", + "timestamp": "2024-01-14T05:44:25.777719061Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -153395,28 +152653,28 @@ "type": "dns", "host": "histologe.beta.gouv.fr.", "matched-at": "histologe.beta.gouv.fr", - "timestamp": "2024-01-07T05:47:41.315136902Z", + "extracted-results": [ + "\"sendinblue-code:3a8b4748e42ece708821ec6aa8d41eb6\"", + "\"v=spf1 include:spf.sendinblue.com mx ~all\"" + ], + "timestamp": "2024-01-14T05:44:25.884832024Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -153432,27 +152690,30 @@ "host": "histologe.beta.gouv.fr.", "matched-at": "histologe.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T05:47:41.323563096Z", + "timestamp": "2024-01-14T05:44:26.156770344Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -153467,30 +152728,27 @@ "type": "dns", "host": "histologe.beta.gouv.fr.", "matched-at": "histologe.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2024-01-07T05:47:42.389596898Z", + "timestamp": "2024-01-14T05:44:26.731197175Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "txt" + "dmarc" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -153500,17 +152758,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "histologe.beta.gouv.fr.", - "matched-at": "histologe.beta.gouv.fr", + "matched-at": "_dmarc.histologe.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:spf.sendinblue.com mx ~all\"", - "\"sendinblue-code:3a8b4748e42ece708821ec6aa8d41eb6\"" + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T05:47:42.393391789Z", + "timestamp": "2024-01-14T05:44:26.852961088Z", "matcher-status": true }, { @@ -153547,8 +152805,49 @@ "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:47:56.227210335Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:44:42.787205067Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/xss-deprecated-header.yaml", + "template-url": "https://templates.nuclei.sh/public/xss-deprecated-header", + "template-id": "xss-deprecated-header", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/xss-deprecated-header.yaml", + "info": { + "name": "XSS-Protection Header - Cross-Site Scripting", + "author": [ + "joshlarsen" + ], + "tags": [ + "xss", + "misconfig", + "generic" + ], + "description": "Setting the XSS-Protection header is deprecated. Setting the header to anything other than `0` can actually introduce an XSS vulnerability.", + "reference": [ + "https://developer.mozilla.org/en-us/docs/web/http/headers/x-xss-protection", + "https://owasp.org/www-project-secure-headers/#x-xss-protection" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": null, + "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "http", + "host": "https://histologe.beta.gouv.fr", + "matched-at": "https://histologe.beta.gouv.fr", + "extracted-results": [ + "1; mode=block" + ], + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:44:42.813012942Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153576,8 +152875,8 @@ "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:47:56.260379985Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:44:42.820379383Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153603,8 +152902,8 @@ "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:25.440017076Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:16.391400567Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153636,12 +152935,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:35.185963579Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:28.149477859Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153673,12 +152972,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:35.186016116Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:28.14952649Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153710,12 +153009,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:35.186034991Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:28.149537991Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153747,12 +153046,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:35.186049579Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:28.149546687Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153788,8 +153087,8 @@ "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:35.186082994Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:28.149556125Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153825,82 +153124,8 @@ "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:35.186105065Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://histologe.beta.gouv.fr", - "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:35.186121576Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://histologe.beta.gouv.fr", - "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:35.186167168Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:28.149571343Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153932,12 +153157,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:35.186189289Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:28.149586231Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr'", "matcher-status": true }, @@ -153963,8 +153188,8 @@ "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr/.htaccess", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:46.117065062Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:41.827498571Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr/.htaccess'", "matcher-status": true }, @@ -153991,8 +153216,8 @@ "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr/robots.txt", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:48:46.252625218Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:41.95871819Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -154031,8 +153256,8 @@ "type": "http", "host": "https://histologe.beta.gouv.fr", "matched-at": "https://histologe.beta.gouv.fr/", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:49:02.016714549Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:45:59.967675218Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: histologe.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://histologe.beta.gouv.fr/'", "matcher-status": true }, @@ -154062,8 +153287,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:54:44.879208726Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:51:46.078638461Z", "matcher-status": true }, { @@ -154092,8 +153317,8 @@ "extracted-results": [ "histologe.beta.gouv.fr" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:54:44.879415591Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:51:46.078766058Z", "matcher-status": true }, { @@ -154123,8 +153348,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:54:46.245120513Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:51:47.46409155Z", "matcher-status": true }, { @@ -154154,8 +153379,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T05:54:46.433101368Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T05:51:47.677012908Z", "matcher-status": true } ], @@ -154163,7 +153388,7 @@ { "requestedUrl": "https://histologe.beta.gouv.fr/", "finalUrl": "https://histologe.beta.gouv.fr/", - "fetchTime": "2024-01-07T05:42:06.525Z", + "fetchTime": "2024-01-14T05:38:21.054Z", "runWarnings": [], "categories": { "performance": { @@ -154195,7 +153420,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 0.75 }, "seo": { "title": "SEO", @@ -154226,53 +153451,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3757, + "numericValue": 3846, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1940, - "firstMeaningfulPaint": 1940, - "largestContentfulPaint": 2053, - "interactive": 3757, - "speedIndex": 2035, - "totalBlockingTime": 65, - "maxPotentialFID": 113, + "firstContentfulPaint": 1894, + "firstMeaningfulPaint": 1894, + "largestContentfulPaint": 2891, + "interactive": 3846, + "speedIndex": 3025, + "totalBlockingTime": 103, + "maxPotentialFID": 146, "cumulativeLayoutShift": 0.0023753255208333337, "cumulativeLayoutShiftMainFrame": 0.0023753255208333337, "totalCumulativeLayoutShift": 0.0023753255208333337, "observedTimeOrigin": 0, - "observedTimeOriginTs": 293986541, + "observedTimeOriginTs": 243598592, "observedNavigationStart": 0, - "observedNavigationStartTs": 293986541, - "observedFirstPaint": 708, - "observedFirstPaintTs": 294694841, - "observedFirstContentfulPaint": 708, - "observedFirstContentfulPaintTs": 294694841, - "observedFirstContentfulPaintAllFrames": 708, - "observedFirstContentfulPaintAllFramesTs": 294694841, - "observedFirstMeaningfulPaint": 708, - "observedFirstMeaningfulPaintTs": 294694841, - "observedLargestContentfulPaint": 708, - "observedLargestContentfulPaintTs": 294694841, - "observedLargestContentfulPaintAllFrames": 708, - "observedLargestContentfulPaintAllFramesTs": 294694841, - "observedTraceEnd": 3197, - "observedTraceEndTs": 297183219, - "observedLoad": 890, - "observedLoadTs": 294876233, - "observedDomContentLoaded": 889, - "observedDomContentLoadedTs": 294875884, + "observedNavigationStartTs": 243598592, + "observedFirstPaint": 1280, + "observedFirstPaintTs": 244878775, + "observedFirstContentfulPaint": 1280, + "observedFirstContentfulPaintTs": 244878775, + "observedFirstContentfulPaintAllFrames": 1280, + "observedFirstContentfulPaintAllFramesTs": 244878775, + "observedFirstMeaningfulPaint": 1280, + "observedFirstMeaningfulPaintTs": 244878775, + "observedLargestContentfulPaint": 1280, + "observedLargestContentfulPaintTs": 244878775, + "observedLargestContentfulPaintAllFrames": 1280, + "observedLargestContentfulPaintAllFramesTs": 244878775, + "observedTraceEnd": 3818, + "observedTraceEndTs": 247416955, + "observedLoad": 1509, + "observedLoadTs": 245107856, + "observedDomContentLoaded": 1509, + "observedDomContentLoadedTs": 245107486, "observedCumulativeLayoutShift": 0.0023753255208333337, "observedCumulativeLayoutShiftMainFrame": 0.0023753255208333337, "observedTotalCumulativeLayoutShift": 0.0023753255208333337, - "observedFirstVisualChange": 718, - "observedFirstVisualChangeTs": 294704541, - "observedLastVisualChange": 1334, - "observedLastVisualChangeTs": 295320541, - "observedSpeedIndex": 731, - "observedSpeedIndexTs": 294717711 + "observedFirstVisualChange": 1274, + "observedFirstVisualChangeTs": 244872592, + "observedLastVisualChange": 1891, + "observedLastVisualChangeTs": 245489592, + "observedSpeedIndex": 1288, + "observedSpeedIndexTs": 244886371 }, { "lcpInvalidated": false @@ -154290,23 +153515,23 @@ "type": "debugdata", "items": [ { - "numRequests": 46, + "numRequests": 45, "numScripts": 6, "numStylesheets": 12, "numFonts": 4, "numTasks": 963, - "numTasksOver10ms": 3, + "numTasksOver10ms": 5, "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.990000000000002, - "throughput": 25028838.174284227, - "maxRtt": 90.114, - "maxServerLatency": 52.596999999999994, - "totalByteWeight": 603195, - "totalTaskTime": 215.0969999999991, - "mainDocumentTransferSize": 6677 + "rtt": 1.7530000000000001, + "throughput": 14854290.716958936, + "maxRtt": 100.95500000000004, + "maxServerLatency": 98.66199999999998, + "totalByteWeight": 603398, + "totalTaskTime": 258.4679999999988, + "mainDocumentTransferSize": 7083 } ] } @@ -154396,7 +153621,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "C", + "httpGrade": "B", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -154410,13 +153635,13 @@ "cookiesGrade": "C", "cookiesCount": 3, "trackersGrade": "B", - "trackersCount": 2, + "trackersCount": 1, "lighthouse_performance": 1, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", + "lighthouse_best-practices": 0.75, + "lighthouse_best-practicesGrade": "B", "lighthouse_seo": 1, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.2, @@ -154437,7 +153662,7 @@ "http": { "url": "https://immersion-facile.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:55:49 GMT", + "end_time": "Sun, 14 Jan 2024 05:43:52 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -154446,19 +153671,19 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com 'unsafe-inline' 'unsafe-eval'", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 05:55:47 GMT", - "ETag": "W/\"6596bbd7-9ff\"", - "Last-Modified": "Thu, 04 Jan 2024 14:08:23 GMT", + "Date": "Sun, 14 Jan 2024 05:43:51 GMT", + "ETag": "W/\"65a1620c-9ff\"", + "Last-Modified": "Fri, 12 Jan 2024 16:00:12 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff", - "X-Request-ID": "be125cae-8ae8-4cb4-b69a-47cc1ad427dd", + "X-Request-ID": "b682b670-b172-44ed-841b-89acc7bb3b1f", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46229542, + "scan_id": 46456201, "score": 60, - "start_time": "Sun, 07 Jan 2024 05:55:13 GMT", + "start_time": "Sun, 14 Jan 2024 05:42:12 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -154471,21 +153696,21 @@ "output": { "data": { "default-src": [ - "https://px.ads.linkedin.com", - "'unsafe-eval'", - "wss://client.relay.crisp.chat/w/9d/", - "https://immersion.cellar-c2.services.clever-cloud.com", "'self'", "https://matomo.inclusion.beta.gouv.fr", - "https://user-images.githubusercontent.com", - "blob:", - "https://snap.licdn.com", - "https://tally.so", + "data:", + "https://px.ads.linkedin.com", + "https://client.crisp.chat", "https://metabase.immersion-facile.beta.gouv.fr", + "blob:", "'unsafe-inline'", "https://sentry.gip-inclusion.cloud-ed.fr", - "data:", - "https://client.crisp.chat" + "https://snap.licdn.com", + "https://immersion.cellar-c2.services.clever-cloud.com", + "https://tally.so", + "wss://client.relay.crisp.chat/w/9d/", + "https://user-images.githubusercontent.com", + "'unsafe-eval'" ] }, "http": true, @@ -154674,8 +153899,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T06:05:05Z", - "next_check_at": "2024-01-07T06:10:05Z", + "last_check_at": "2024-01-14T05:55:30Z", + "next_check_at": "2024-01-14T06:00:28Z", "created_at": "2022-09-01T22:02:15Z", "mute_until": null, "favicon_url": "https://immersion-facile.beta.gouv.fr/dsfr/favicon/favicon.ico", @@ -154683,7 +153908,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T05:50:13Z", + "tested_at": "2024-01-14T05:25:43Z", "expires_at": "2024-03-29T03:56:07Z", "valid": true, "error": null @@ -154692,11 +153917,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 185, - "connection": 149, - "handshake": 158, - "response": 150, - "total": 642 + "namelookup": 152, + "connection": 105, + "handshake": 112, + "response": 106, + "total": 474 } }, "uptimeGrade": "A", @@ -154729,77 +153954,77 @@ "testssl": [ { "id": "service", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -154807,7 +154032,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -154815,7 +154040,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -154823,7 +154048,7 @@ }, { "id": "cipherlist_LOW", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -154831,7 +154056,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -154839,7 +154064,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -154847,511 +154072,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-30 03:56" }, { "id": "cert_notAfter", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-29 03:56" }, { "id": "cert_extlifeSpan", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704607036" + "finding": "1705211115" }, { "id": "HSTS_time", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com 'unsafe-inline' 'unsafe-eval'" }, { "id": "X-XSS-Protection", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -155359,7 +154584,7 @@ }, { "id": "heartbleed", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -155368,7 +154593,7 @@ }, { "id": "CCS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -155377,7 +154602,7 @@ }, { "id": "ticketbleed", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -155386,7 +154611,7 @@ }, { "id": "ROBOT", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -155395,7 +154620,7 @@ }, { "id": "secure_renego", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -155403,7 +154628,7 @@ }, { "id": "secure_client_renego", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -155412,7 +154637,7 @@ }, { "id": "CRIME_TLS", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -155421,7 +154646,7 @@ }, { "id": "BREACH", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -155430,7 +154655,7 @@ }, { "id": "POODLE_SSL", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -155439,14 +154664,14 @@ }, { "id": "fallback_SCSV", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -155455,7 +154680,7 @@ }, { "id": "FREAK", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -155464,7 +154689,7 @@ }, { "id": "DROWN", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -155473,7 +154698,7 @@ }, { "id": "DROWN_hint", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -155482,7 +154707,7 @@ }, { "id": "LOGJAM", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -155491,7 +154716,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -155500,7 +154725,7 @@ }, { "id": "BEAST", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -155509,7 +154734,7 @@ }, { "id": "LUCKY13", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -155518,7 +154743,7 @@ }, { "id": "winshock", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -155527,7 +154752,7 @@ }, { "id": "RC4", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -155536,392 +154761,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", + "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -155929,7 +155154,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -155937,7 +155162,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -155945,7 +155170,7 @@ }, { "id": "cipherlist_LOW", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -155953,7 +155178,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -155961,7 +155186,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -155969,511 +155194,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-30 03:56" }, { "id": "cert_notAfter", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-29 03:56" }, { "id": "cert_extlifeSpan", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704607091" + "finding": "1705211170" }, { "id": "HSTS_time", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com 'unsafe-inline' 'unsafe-eval'" }, { "id": "X-XSS-Protection", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -156481,7 +155706,7 @@ }, { "id": "heartbleed", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -156490,7 +155715,7 @@ }, { "id": "CCS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -156499,7 +155724,7 @@ }, { "id": "ticketbleed", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -156508,7 +155733,7 @@ }, { "id": "ROBOT", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -156517,7 +155742,7 @@ }, { "id": "secure_renego", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -156525,7 +155750,7 @@ }, { "id": "secure_client_renego", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -156534,7 +155759,7 @@ }, { "id": "CRIME_TLS", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -156543,7 +155768,7 @@ }, { "id": "BREACH", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -156552,7 +155777,7 @@ }, { "id": "POODLE_SSL", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -156561,14 +155786,14 @@ }, { "id": "fallback_SCSV", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -156577,7 +155802,7 @@ }, { "id": "FREAK", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -156586,7 +155811,7 @@ }, { "id": "DROWN", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -156595,7 +155820,7 @@ }, { "id": "DROWN_hint", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -156604,7 +155829,7 @@ }, { "id": "LOGJAM", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -156613,7 +155838,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -156622,7 +155847,7 @@ }, { "id": "BEAST", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -156631,7 +155856,7 @@ }, { "id": "LUCKY13", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -156640,7 +155865,7 @@ }, { "id": "winshock", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -156649,7 +155874,7 @@ }, { "id": "RC4", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -156658,392 +155883,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "immersion-facile.beta.gouv.fr/80.247.12.255", + "ip": "immersion-facile.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -157051,7 +156276,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -157059,7 +156284,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -157067,7 +156292,7 @@ }, { "id": "cipherlist_LOW", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -157075,7 +156300,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -157083,7 +156308,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -157091,511 +156316,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-30 03:56" }, { "id": "cert_notAfter", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-29 03:56" }, { "id": "cert_extlifeSpan", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704607145" + "finding": "1705211224" }, { "id": "HSTS_time", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com 'unsafe-inline' 'unsafe-eval'" }, { "id": "X-XSS-Protection", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -157603,7 +156828,7 @@ }, { "id": "heartbleed", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -157612,7 +156837,7 @@ }, { "id": "CCS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -157621,7 +156846,7 @@ }, { "id": "ticketbleed", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -157630,7 +156855,7 @@ }, { "id": "ROBOT", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -157639,7 +156864,7 @@ }, { "id": "secure_renego", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -157647,7 +156872,7 @@ }, { "id": "secure_client_renego", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -157656,7 +156881,7 @@ }, { "id": "CRIME_TLS", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -157665,7 +156890,7 @@ }, { "id": "BREACH", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -157674,7 +156899,7 @@ }, { "id": "POODLE_SSL", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -157683,14 +156908,14 @@ }, { "id": "fallback_SCSV", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -157699,7 +156924,7 @@ }, { "id": "FREAK", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -157708,7 +156933,7 @@ }, { "id": "DROWN", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -157717,7 +156942,7 @@ }, { "id": "DROWN_hint", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -157726,7 +156951,7 @@ }, { "id": "LOGJAM", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -157735,7 +156960,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -157744,7 +156969,7 @@ }, { "id": "BEAST", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -157753,7 +156978,7 @@ }, { "id": "LUCKY13", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -157762,7 +156987,7 @@ }, { "id": "winshock", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -157771,7 +156996,7 @@ }, { "id": "RC4", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -157780,392 +157005,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", + "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -158173,7 +157398,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -158181,7 +157406,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -158189,7 +157414,7 @@ }, { "id": "cipherlist_LOW", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -158197,7 +157422,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -158205,7 +157430,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -158213,511 +157438,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-30 03:56" }, { "id": "cert_notAfter", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-29 03:56" }, { "id": "cert_extlifeSpan", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704607200" + "finding": "1705211279" }, { "id": "HSTS_time", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Content-Type-Options", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com 'unsafe-inline' 'unsafe-eval'" }, { "id": "X-XSS-Protection", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -158725,7 +157950,7 @@ }, { "id": "heartbleed", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -158734,7 +157959,7 @@ }, { "id": "CCS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -158743,7 +157968,7 @@ }, { "id": "ticketbleed", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -158752,7 +157977,7 @@ }, { "id": "ROBOT", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -158761,7 +157986,7 @@ }, { "id": "secure_renego", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -158769,7 +157994,7 @@ }, { "id": "secure_client_renego", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -158778,7 +158003,7 @@ }, { "id": "CRIME_TLS", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -158787,7 +158012,7 @@ }, { "id": "BREACH", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -158796,7 +158021,7 @@ }, { "id": "POODLE_SSL", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -158805,14 +158030,14 @@ }, { "id": "fallback_SCSV", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -158821,7 +158046,7 @@ }, { "id": "FREAK", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -158830,7 +158055,7 @@ }, { "id": "DROWN", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -158839,7 +158064,7 @@ }, { "id": "DROWN_hint", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -158848,7 +158073,7 @@ }, { "id": "LOGJAM", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -158857,7 +158082,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -158866,7 +158091,7 @@ }, { "id": "BEAST", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -158875,7 +158100,7 @@ }, { "id": "LUCKY13", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -158884,7 +158109,7 @@ }, { "id": "winshock", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -158893,7 +158118,7 @@ }, { "id": "RC4", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -158902,325 +158127,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "immersion-facile.beta.gouv.fr/80.247.13.145", + "ip": "immersion-facile.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "221" + "finding": "220" } ], "thirdparties": { @@ -159233,21 +158458,25 @@ "type": "unknown", "url": "https://immersion.cellar-c2.services.clever-cloud.com/video_immersion_en_entreprise_poster.webp" }, + { + "type": "unknown", + "url": "https://immersion.cellar-c2.services.clever-cloud.com/logo_semaine_du_numerique.svg" + }, { "type": "unknown", "url": "https://client.crisp.chat/l.js" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/73e7c214-2a82-4903-a8f7-e004f9358570/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-5-56" + "url": "https://client.crisp.chat/settings/website/73e7c214-2a82-4903-a8f7-e004f9358570/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-5-44" }, { "type": "unknown", @@ -159255,11 +158484,15 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5115506&time=1704606974679&url=https%3A%2F%2Fimmersion-facile.beta.gouv.fr%2F" + "url": "https://snap.licdn.com/li.lms-analytics/insight.beta.min.js" + }, + { + "type": "unknown", + "url": "https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5115506&time=1705211053808&url=https%3A%2F%2Fimmersion-facile.beta.gouv.fr%2F" }, { "type": "unknown", @@ -159267,15 +158500,15 @@ }, { "type": "unknown", - "url": "https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5115506&time=1704606974679&url=https%3A%2F%2Fimmersion-facile.beta.gouv.fr%2F&cookiesTest=true" + "url": "https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=5115506&time=1705211053808&url=https%3A%2F%2Fimmersion-facile.beta.gouv.fr%2F&cookiesTest=true" }, { "type": "unknown", - "url": "https://px.ads.linkedin.com/wa/" + "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?0a15717" + "url": "https://px.ads.linkedin.com/wa/" } ], "cookies": [], @@ -159283,19 +158516,19 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self' https://user-images.githubusercontent.com https://tally.so https://px.ads.linkedin.com https://snap.licdn.com https://metabase.immersion-facile.beta.gouv.fr https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr wss://client.relay.crisp.chat/w/9d/ https://client.crisp.chat data: blob: https://immersion.cellar-c2.services.clever-cloud.com 'unsafe-inline' 'unsafe-eval'", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 05:56:11 GMT", - "etag": "W/\"6596bbd7-9ff\"", - "last-modified": "Thu, 04 Jan 2024 14:08:23 GMT", + "date": "Sun, 14 Jan 2024 05:44:11 GMT", + "etag": "W/\"65a1620c-9ff\"", + "last-modified": "Fri, 12 Jan 2024 16:00:12 GMT", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", - "x-request-id": "1ad54fe4-d1e1-4354-b69b-e7ef1a51ab36", + "x-request-id": "57cbc2ca-2382-483b-891f-62f95ffd64bc", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "immersion-facile.beta.gouv.fr", - "ip": "80.247.12.255", + "ip": "80.247.13.145", "geoip": { "continent": { "code": "EU", @@ -159405,7 +158638,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -159441,7 +158674,7 @@ }, { "hostname": "immersion.cellar-c2.services.clever-cloud.com", - "ip": "91.208.207.148", + "ip": "91.208.207.149", "geoip": { "continent": { "code": "EU", @@ -159503,7 +158736,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -159517,7 +158750,7 @@ }, { "hostname": "snap.licdn.com", - "ip": "23.15.9.17", + "ip": "23.205.105.17", "geoip": { "city": { "geoname_id": 4744870, @@ -159544,7 +158777,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -159568,7 +158801,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -159616,7 +158849,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -159636,7 +158869,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -159882,7 +159115,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 05:54:46", + "@generated": "Sun, 14 Jan 2024 05:41:47", "site": [ { "@name": "https://immersion-facile.beta.gouv.fr", @@ -160015,23 +159248,23 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -160041,34 +159274,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "immersion-facile.beta.gouv.fr.", - "matched-at": "immersion-facile.beta.gouv.fr", + "matched-at": "_dmarc.immersion-facile.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T06:01:26.354114474Z", + "timestamp": "2024-01-14T05:49:22.626033116Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -160083,30 +159319,26 @@ "type": "dns", "host": "immersion-facile.beta.gouv.fr.", "matched-at": "immersion-facile.beta.gouv.fr", - "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." - ], - "timestamp": "2024-01-07T06:01:26.363816193Z", + "timestamp": "2024-01-14T05:49:22.85732962Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -160122,26 +159354,32 @@ "type": "dns", "host": "immersion-facile.beta.gouv.fr.", "matched-at": "immersion-facile.beta.gouv.fr", - "timestamp": "2024-01-07T06:01:26.505612065Z", + "extracted-results": [ + "\"google-site-verification=63F_x8CwmWxagHBfglqIaDnDgWGOMeiZ7rwHcAKrwMo\"", + "\"v=spf1 include:_spf.alwaysdata.com ~all\"", + "\"brevo-code:4b6916e51c3db65d7f88d56a5456c101\"" + ], + "timestamp": "2024-01-14T05:49:22.889268071Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -160158,32 +159396,27 @@ "host": "immersion-facile.beta.gouv.fr.", "matched-at": "immersion-facile.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"", - "\"brevo-code:4b6916e51c3db65d7f88d56a5456c101\"", - "\"google-site-verification=63F_x8CwmWxagHBfglqIaDnDgWGOMeiZ7rwHcAKrwMo\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T06:01:27.51367991Z", + "timestamp": "2024-01-14T05:49:23.018509598Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -160192,17 +159425,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "immersion-facile.beta.gouv.fr.", - "matched-at": "_dmarc.immersion-facile.beta.gouv.fr", + "matched-at": "immersion-facile.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T06:01:27.587630802Z", + "timestamp": "2024-01-14T05:49:23.788984326Z", "matcher-status": true }, { @@ -160242,7 +159475,192 @@ "1; mode=block" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:01:37.526830559Z", + "timestamp": "2024-01-14T05:49:33.750496097Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://immersion-facile.beta.gouv.fr", + "matched-at": "https://immersion-facile.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T05:50:05.024257441Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://immersion-facile.beta.gouv.fr", + "matched-at": "https://immersion-facile.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T05:50:05.024295532Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://immersion-facile.beta.gouv.fr", + "matched-at": "https://immersion-facile.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T05:50:05.024306612Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://immersion-facile.beta.gouv.fr", + "matched-at": "https://immersion-facile.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T05:50:05.024317242Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://immersion-facile.beta.gouv.fr", + "matched-at": "https://immersion-facile.beta.gouv.fr", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T05:50:05.02433234Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -160279,7 +159697,7 @@ "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:02:09.22341311Z", + "timestamp": "2024-01-14T05:50:05.024376382Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -160316,7 +159734,7 @@ "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:02:09.223449799Z", + "timestamp": "2024-01-14T05:50:05.02439135Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -160353,192 +159771,7 @@ "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr", "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:02:09.223467763Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://immersion-facile.beta.gouv.fr", - "matched-at": "https://immersion-facile.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:02:09.223486518Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://immersion-facile.beta.gouv.fr", - "matched-at": "https://immersion-facile.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:02:09.223501195Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://immersion-facile.beta.gouv.fr", - "matched-at": "https://immersion-facile.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:02:09.223513959Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://immersion-facile.beta.gouv.fr", - "matched-at": "https://immersion-facile.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:02:09.223547702Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://immersion-facile.beta.gouv.fr", - "matched-at": "https://immersion-facile.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:02:09.223566167Z", + "timestamp": "2024-01-14T05:50:05.024404734Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr'", "matcher-status": true }, @@ -160578,7 +159811,7 @@ "host": "https://immersion-facile.beta.gouv.fr", "matched-at": "https://immersion-facile.beta.gouv.fr/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:02:31.637536051Z", + "timestamp": "2024-01-14T05:50:27.063610334Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: immersion-facile.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://immersion-facile.beta.gouv.fr/'", "matcher-status": true }, @@ -160609,7 +159842,7 @@ "Let's Encrypt" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:08:11.248973769Z", + "timestamp": "2024-01-14T05:56:06.322082874Z", "matcher-status": true }, { @@ -160639,7 +159872,7 @@ "immersion-facile.beta.gouv.fr" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:08:11.249090137Z", + "timestamp": "2024-01-14T05:56:06.322192087Z", "matcher-status": true }, { @@ -160670,7 +159903,7 @@ "tls12" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:08:12.816198678Z", + "timestamp": "2024-01-14T05:56:07.643082073Z", "matcher-status": true }, { @@ -160701,7 +159934,7 @@ "tls13" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T06:08:13.006128929Z", + "timestamp": "2024-01-14T05:56:07.830734644Z", "matcher-status": true } ], @@ -160709,7 +159942,7 @@ { "requestedUrl": "https://immersion-facile.beta.gouv.fr/", "finalUrl": "https://immersion-facile.beta.gouv.fr/", - "fetchTime": "2024-01-07T05:55:01.491Z", + "fetchTime": "2024-01-14T05:42:00.908Z", "runWarnings": [], "categories": { "performance": { @@ -160720,7 +159953,7 @@ "snapshot" ], "id": "performance", - "score": 0.9200279235839843 + "score": 0.9154016494750976 }, "accessibility": { "title": "Accessibility", @@ -160772,53 +160005,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 10104, + "numericValue": 10081, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 6866, - "firstMeaningfulPaint": 6944, - "largestContentfulPaint": 7726, - "interactive": 10104, - "speedIndex": 6866, - "totalBlockingTime": 1085, - "maxPotentialFID": 1026, - "cumulativeLayoutShift": 0.03384845987955729, - "cumulativeLayoutShiftMainFrame": 0.03384845987955729, - "totalCumulativeLayoutShift": 0.03384845987955729, + "firstContentfulPaint": 6986, + "firstMeaningfulPaint": 7101, + "largestContentfulPaint": 7829, + "interactive": 10081, + "speedIndex": 6986, + "totalBlockingTime": 968, + "maxPotentialFID": 1059, + "cumulativeLayoutShift": 0.03908591715494792, + "cumulativeLayoutShiftMainFrame": 0.03908591715494792, + "totalCumulativeLayoutShift": 0.03908591715494792, "observedTimeOrigin": 0, - "observedTimeOriginTs": 349696801, + "observedTimeOriginTs": 263639040, "observedNavigationStart": 0, - "observedNavigationStartTs": 349696801, - "observedFirstPaint": 1283, - "observedFirstPaintTs": 350979628, - "observedFirstContentfulPaint": 1283, - "observedFirstContentfulPaintTs": 350979628, - "observedFirstContentfulPaintAllFrames": 1283, - "observedFirstContentfulPaintAllFramesTs": 350979628, - "observedFirstMeaningfulPaint": 1283, - "observedFirstMeaningfulPaintTs": 350979628, - "observedLargestContentfulPaint": 1283, - "observedLargestContentfulPaintTs": 350979628, - "observedLargestContentfulPaintAllFrames": 1283, - "observedLargestContentfulPaintAllFramesTs": 350979628, - "observedTraceEnd": 4180, - "observedTraceEndTs": 353876972, - "observedLoad": 1193, - "observedLoadTs": 350889356, - "observedDomContentLoaded": 1128, - "observedDomContentLoadedTs": 350824816, - "observedCumulativeLayoutShift": 0.03384845987955729, - "observedCumulativeLayoutShiftMainFrame": 0.03384845987955729, - "observedTotalCumulativeLayoutShift": 0.03384845987955729, - "observedFirstVisualChange": 1289, - "observedFirstVisualChangeTs": 350985801, - "observedLastVisualChange": 1439, - "observedLastVisualChangeTs": 351135801, - "observedSpeedIndex": 1299, - "observedSpeedIndexTs": 350996126 + "observedNavigationStartTs": 263639040, + "observedFirstPaint": 1287, + "observedFirstPaintTs": 264926508, + "observedFirstContentfulPaint": 1287, + "observedFirstContentfulPaintTs": 264926508, + "observedFirstContentfulPaintAllFrames": 1287, + "observedFirstContentfulPaintAllFramesTs": 264926508, + "observedFirstMeaningfulPaint": 1287, + "observedFirstMeaningfulPaintTs": 264926508, + "observedLargestContentfulPaint": 1287, + "observedLargestContentfulPaintTs": 264926508, + "observedLargestContentfulPaintAllFrames": 1287, + "observedLargestContentfulPaintAllFramesTs": 264926508, + "observedTraceEnd": 4208, + "observedTraceEndTs": 267846927, + "observedLoad": 1191, + "observedLoadTs": 264830164, + "observedDomContentLoaded": 1130, + "observedDomContentLoadedTs": 264768980, + "observedCumulativeLayoutShift": 0.03908591715494792, + "observedCumulativeLayoutShiftMainFrame": 0.03908591715494792, + "observedTotalCumulativeLayoutShift": 0.03908591715494792, + "observedFirstVisualChange": 1300, + "observedFirstVisualChangeTs": 264939040, + "observedLastVisualChange": 1417, + "observedLastVisualChangeTs": 265056040, + "observedSpeedIndex": 1308, + "observedSpeedIndexTs": 264947235 }, { "lcpInvalidated": false @@ -160836,22 +160069,22 @@ "type": "debugdata", "items": [ { - "numRequests": 48, - "numScripts": 8, + "numRequests": 50, + "numScripts": 9, "numStylesheets": 4, "numFonts": 4, - "numTasks": 1355, - "numTasksOver10ms": 10, + "numTasks": 1165, + "numTasksOver10ms": 9, "numTasksOver25ms": 5, "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 0.8490000000000002, - "throughput": 21859029.44226813, - "maxRtt": 84.958, - "maxServerLatency": 27.302999999999997, - "totalByteWeight": 1467860, - "totalTaskTime": 742.3509999999965, + "rtt": 0.9319999999999999, + "throughput": 22058711.077745557, + "maxRtt": 87.18900000000001, + "maxServerLatency": 73.028, + "totalByteWeight": 1492115, + "totalTaskTime": 724.2039999999956, "mainDocumentTransferSize": 1659 } ] @@ -160952,8 +160185,8 @@ "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "F", - "trackersCount": 13, - "lighthouse_performance": 0.9200279235839843, + "trackersCount": 15, + "lighthouse_performance": 0.9154016494750976, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -160979,7 +160212,7 @@ "http": { "url": "https://portail-rse.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:57:50 GMT", + "end_time": "Sun, 14 Jan 2024 05:51:32 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -160988,18 +160221,18 @@ "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 05:57:49 GMT", + "Date": "Sun, 14 Jan 2024 05:51:31 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "2853b72a-0c72-4029-afa6-1b777a5bbcb1" + "X-Request-ID": "27d6fbee-ad0f-4944-9d91-4d20105cdc9e" }, - "scan_id": 46229578, + "scan_id": 46456497, "score": 65, - "start_time": "Sun, 07 Jan 2024 05:57:46 GMT", + "start_time": "Sun, 14 Jan 2024 05:51:28 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -161193,77 +160426,77 @@ "testssl": [ { "id": "service", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -161271,7 +160504,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -161279,7 +160512,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -161287,7 +160520,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -161295,7 +160528,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -161303,7 +160536,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -161311,511 +160544,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "69 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-24 07:37" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-23 07:37" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704607164" + "finding": "1705211619" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -161823,7 +161056,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -161832,7 +161065,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -161841,7 +161074,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -161850,7 +161083,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -161859,7 +161092,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -161867,7 +161100,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -161876,7 +161109,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -161885,7 +161118,7 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -161894,7 +161127,7 @@ }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -161903,14 +161136,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -161919,7 +161152,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -161928,7 +161161,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -161937,7 +161170,7 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -161946,7 +161179,7 @@ }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -161955,7 +161188,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -161964,7 +161197,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -161973,7 +161206,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -161982,7 +161215,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -161991,7 +161224,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -162000,392 +161233,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/80.247.12.255", + "ip": "portail-rse.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -162393,7 +161626,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -162401,7 +161634,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -162409,7 +161642,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -162417,7 +161650,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -162425,7 +161658,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -162433,511 +161666,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "69 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-24 07:37" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-23 07:37" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704607219" + "finding": "1705211719" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -162945,7 +162178,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -162954,7 +162187,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -162963,7 +162196,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -162972,7 +162205,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -162981,7 +162214,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -162989,7 +162222,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -162998,7 +162231,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -163007,7 +162240,7 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -163016,7 +162249,7 @@ }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -163025,14 +162258,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -163041,7 +162274,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -163050,7 +162283,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -163059,7 +162292,7 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -163068,7 +162301,7 @@ }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -163077,7 +162310,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -163086,7 +162319,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -163095,7 +162328,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -163104,7 +162337,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -163113,7 +162346,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -163122,392 +162355,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/148.253.96.193", + "ip": "portail-rse.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163515,7 +162748,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163523,7 +162756,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163531,7 +162764,7 @@ }, { "id": "cipherlist_LOW", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -163539,7 +162772,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -163547,7 +162780,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -163555,511 +162788,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "69 >= 30 days" }, { "id": "cert_notBefore", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-24 07:37" }, { "id": "cert_notAfter", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-23 07:37" }, { "id": "cert_extlifeSpan", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704607275" + "finding": "1705211818" }, { "id": "HSTS_time", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -164067,7 +163300,7 @@ }, { "id": "heartbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -164076,7 +163309,7 @@ }, { "id": "CCS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -164085,7 +163318,7 @@ }, { "id": "ticketbleed", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -164094,7 +163327,7 @@ }, { "id": "ROBOT", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -164103,7 +163336,7 @@ }, { "id": "secure_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -164111,7 +163344,7 @@ }, { "id": "secure_client_renego", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -164120,7 +163353,7 @@ }, { "id": "CRIME_TLS", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -164129,7 +163362,7 @@ }, { "id": "BREACH", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -164138,7 +163371,7 @@ }, { "id": "POODLE_SSL", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -164147,14 +163380,14 @@ }, { "id": "fallback_SCSV", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -164163,7 +163396,7 @@ }, { "id": "FREAK", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -164172,7 +163405,7 @@ }, { "id": "DROWN", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -164181,7 +163414,7 @@ }, { "id": "DROWN_hint", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -164190,7 +163423,7 @@ }, { "id": "LOGJAM", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -164199,7 +163432,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -164208,7 +163441,7 @@ }, { "id": "BEAST", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -164217,7 +163450,7 @@ }, { "id": "LUCKY13", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -164226,7 +163459,7 @@ }, { "id": "winshock", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -164235,7 +163468,7 @@ }, { "id": "RC4", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -164244,315 +163477,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "portail-rse.beta.gouv.fr/80.247.13.145", + "ip": "portail-rse.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" @@ -164764,7 +163997,7 @@ "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -164904,7 +164137,7 @@ "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "76 >= 30 days" + "finding": "69 >= 30 days" }, { "id": "cert_notBefore", @@ -165107,7 +164340,7 @@ "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704607332" + "finding": "1705211918" }, { "id": "HSTS_time", @@ -165684,7 +164917,7 @@ "ip": "portail-rse.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "225" + "finding": "402" } ], "thirdparties": { @@ -165692,10 +164925,10 @@ "cookies": [ { "name": "_pk_id.274.f943", - "value": "6e9d270add3f22c7.1704607106.", + "value": "fc6c40b4ad1603c1.1705211525.", "domain": "portail-rse.beta.gouv.fr", "path": "/", - "expires": 1738562306, + "expires": 1739166725, "size": 43, "httpOnly": false, "secure": false, @@ -165710,7 +164943,7 @@ "value": "1", "domain": "portail-rse.beta.gouv.fr", "path": "/", - "expires": 1704608906, + "expires": 1705213325, "size": 16, "httpOnly": false, "secure": false, @@ -165725,7 +164958,7 @@ "value": "1", "domain": "portail-rse.beta.gouv.fr", "path": "/", - "expires": 1704608906, + "expires": 1705213325, "size": 17, "httpOnly": false, "secure": false, @@ -165737,10 +164970,10 @@ }, { "name": "_pk_id.16.f943", - "value": "db649ecfa982446d.1704607106.", + "value": "d90b5fe34cfa9251.1705211525.", "domain": "portail-rse.beta.gouv.fr", "path": "/", - "expires": 1738562306, + "expires": 1739166725, "size": 42, "httpOnly": false, "secure": false, @@ -165755,13 +164988,13 @@ "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 05:58:25 GMT", + "date": "Sun, 14 Jan 2024 05:52:03 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "Cookie", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "1fc65e4d-b479-4c52-bdf4-1890b7ecf5ac" + "x-request-id": "7e0e8f53-5654-4601-9964-3cf10e5573d6" }, "endpoints": [ { @@ -165888,7 +165121,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 05:57:21", + "@generated": "Sun, 14 Jan 2024 05:51:02", "site": [ { "@name": "https://portail-rse.beta.gouv.fr", @@ -166042,20 +165275,24 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "ns" + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -166064,37 +165301,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "portail-rse.beta.gouv.fr.", - "matched-at": "portail-rse.beta.gouv.fr", + "matched-at": "_dmarc.portail-rse.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "\"v=DMARC1; p=none\"" ], - "timestamp": "2024-01-07T06:03:36.148120583Z", + "timestamp": "2024-01-14T06:00:28.357746952Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -166110,30 +165346,27 @@ "type": "dns", "host": "portail-rse.beta.gouv.fr.", "matched-at": "portail-rse.beta.gouv.fr", - "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." - ], - "timestamp": "2024-01-07T06:03:36.157395976Z", + "timestamp": "2024-01-14T06:00:28.377665167Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -166149,28 +165382,28 @@ "type": "dns", "host": "portail-rse.beta.gouv.fr.", "matched-at": "portail-rse.beta.gouv.fr", - "timestamp": "2024-01-07T06:03:36.157566841Z", + "extracted-results": [ + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2024-01-14T06:00:28.644303582Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -166179,17 +165412,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "portail-rse.beta.gouv.fr.", - "matched-at": "_dmarc.portail-rse.beta.gouv.fr", + "matched-at": "portail-rse.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T06:03:36.46019764Z", + "timestamp": "2024-01-14T06:00:29.347532205Z", "matcher-status": true }, { @@ -166228,7 +165461,7 @@ "\"brevo-code:34ab33afe09a6dc7f32ee46cc31c0e31\"", "\"v=spf1 include:_spf.alwaysdata.com include:spf.brevo.com ~all\"" ], - "timestamp": "2024-01-07T06:03:37.072174225Z", + "timestamp": "2024-01-14T06:00:29.372892137Z", "matcher-status": true }, { @@ -166259,12 +165492,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:04:18.70622206Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:01:39.67633987Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -166296,12 +165529,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:04:18.706276001Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:01:39.676378803Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -166333,12 +165566,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:04:18.706286961Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:01:39.676395113Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -166370,12 +165603,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:04:18.706296018Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:01:39.676443233Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -166407,12 +165640,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:04:18.706306207Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:01:39.67647916Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -166444,12 +165677,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:04:18.706320764Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:01:39.67649541Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr'", "matcher-status": true }, @@ -166488,8 +165721,8 @@ "type": "http", "host": "https://portail-rse.beta.gouv.fr", "matched-at": "https://portail-rse.beta.gouv.fr/", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:04:40.874246054Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:02:18.302291626Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: portail-rse.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://portail-rse.beta.gouv.fr/'", "matcher-status": true }, @@ -166519,8 +165752,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:10:20.301358891Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:08:10.501591217Z", "matcher-status": true }, { @@ -166549,8 +165782,8 @@ "extracted-results": [ "portail-rse.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:10:20.301512968Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:08:10.501702214Z", "matcher-status": true }, { @@ -166580,8 +165813,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:10:21.765747709Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:08:12.977238891Z", "matcher-status": true }, { @@ -166611,8 +165844,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:10:21.953769688Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T06:08:13.286582904Z", "matcher-status": true } ], @@ -166620,7 +165853,7 @@ { "requestedUrl": "https://portail-rse.beta.gouv.fr/", "finalUrl": "https://portail-rse.beta.gouv.fr/", - "fetchTime": "2024-01-07T05:57:36.034Z", + "fetchTime": "2024-01-14T05:51:16.199Z", "runWarnings": [], "categories": { "performance": { @@ -166683,53 +165916,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1411, + "numericValue": 1531, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1411, - "firstMeaningfulPaint": 1411, - "largestContentfulPaint": 1786, - "interactive": 1411, - "speedIndex": 1411, + "firstContentfulPaint": 1531, + "firstMeaningfulPaint": 1531, + "largestContentfulPaint": 1607, + "interactive": 1531, + "speedIndex": 1531, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.004839192708333333, - "cumulativeLayoutShiftMainFrame": 0.004839192708333333, - "totalCumulativeLayoutShift": 0.004839192708333333, + "cumulativeLayoutShift": 0.004385416666666667, + "cumulativeLayoutShiftMainFrame": 0.004385416666666667, + "totalCumulativeLayoutShift": 0.004385416666666667, "observedTimeOrigin": 0, - "observedTimeOriginTs": 324424092, + "observedTimeOriginTs": 215223618, "observedNavigationStart": 0, - "observedNavigationStartTs": 324424092, - "observedFirstPaint": 313, - "observedFirstPaintTs": 324736751, - "observedFirstContentfulPaint": 313, - "observedFirstContentfulPaintTs": 324736751, - "observedFirstContentfulPaintAllFrames": 313, - "observedFirstContentfulPaintAllFramesTs": 324736751, - "observedFirstMeaningfulPaint": 313, - "observedFirstMeaningfulPaintTs": 324736751, - "observedLargestContentfulPaint": 313, - "observedLargestContentfulPaintTs": 324736751, - "observedLargestContentfulPaintAllFrames": 313, - "observedLargestContentfulPaintAllFramesTs": 324736751, - "observedTraceEnd": 3084, - "observedTraceEndTs": 327507888, - "observedLoad": 774, - "observedLoadTs": 325198029, + "observedNavigationStartTs": 215223618, + "observedFirstPaint": 513, + "observedFirstPaintTs": 215736439, + "observedFirstContentfulPaint": 513, + "observedFirstContentfulPaintTs": 215736439, + "observedFirstContentfulPaintAllFrames": 513, + "observedFirstContentfulPaintAllFramesTs": 215736439, + "observedFirstMeaningfulPaint": 513, + "observedFirstMeaningfulPaintTs": 215736439, + "observedLargestContentfulPaint": 513, + "observedLargestContentfulPaintTs": 215736439, + "observedLargestContentfulPaintAllFrames": 513, + "observedLargestContentfulPaintAllFramesTs": 215736439, + "observedTraceEnd": 3849, + "observedTraceEndTs": 219072232, + "observedLoad": 1541, + "observedLoadTs": 216764915, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 324424792, - "observedCumulativeLayoutShift": 0.004839192708333333, - "observedCumulativeLayoutShiftMainFrame": 0.004839192708333333, - "observedTotalCumulativeLayoutShift": 0.004839192708333333, - "observedFirstVisualChange": 312, - "observedFirstVisualChangeTs": 324736092, - "observedLastVisualChange": 662, - "observedLastVisualChangeTs": 325086092, - "observedSpeedIndex": 325, - "observedSpeedIndexTs": 324748843 + "observedDomContentLoadedTs": 215224150, + "observedCumulativeLayoutShift": 0.004385416666666667, + "observedCumulativeLayoutShiftMainFrame": 0.004385416666666667, + "observedTotalCumulativeLayoutShift": 0.004385416666666667, + "observedFirstVisualChange": 517, + "observedFirstVisualChangeTs": 215740618, + "observedLastVisualChange": 867, + "observedLastVisualChangeTs": 216090618, + "observedSpeedIndex": 528, + "observedSpeedIndexTs": 215751703 }, { "lcpInvalidated": false @@ -166751,19 +165984,19 @@ "numScripts": 3, "numStylesheets": 3, "numFonts": 3, - "numTasks": 13, + "numTasks": 27, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.97, - "throughput": 12781533.551064162, - "maxRtt": 85.562, - "maxServerLatency": 60.58300000000003, - "totalByteWeight": 776868, - "totalTaskTime": 1.6400000000000001, - "mainDocumentTransferSize": 5315 + "rtt": 146.009, + "throughput": 7304105.789010386, + "maxRtt": 148.78799999999998, + "maxServerLatency": 23.751000000000005, + "totalByteWeight": 776746, + "totalTaskTime": 2.2969999999999993, + "mainDocumentTransferSize": 5308 } ] } @@ -166861,7 +166094,7 @@ "http": { "url": "https://impactco2.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:36:20 GMT", + "end_time": "Sun, 14 Jan 2024 01:35:27 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -166869,17 +166102,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 01:36:17 GMT", - "ETag": "\"155r38hfe1x3zx4\"", + "Date": "Sun, 14 Jan 2024 01:35:25 GMT", + "ETag": "\"7tm2rvn8om400u\"", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js", - "X-Request-ID": "288f8e0f-4991-4a79-a20d-5663d6053976" + "X-Request-ID": "a8aabf90-11fd-467f-b21d-4cfce61dce07" }, - "scan_id": 46226429, + "scan_id": 46435087, "score": 40, - "start_time": "Sun, 07 Jan 2024 01:36:15 GMT", + "start_time": "Sun, 14 Jan 2024 01:35:22 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -167072,8 +166305,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T06:19:11Z", - "next_check_at": "2024-01-07T06:24:08Z", + "last_check_at": "2024-01-14T06:18:12Z", + "next_check_at": "2024-01-14T06:23:11Z", "created_at": "2023-11-21T09:26:28Z", "mute_until": null, "favicon_url": "https://impactco2.fr/favicon-16x16.png", @@ -167081,7 +166314,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T05:59:17Z", + "tested_at": "2024-01-14T05:33:27Z", "expires_at": "2024-03-03T13:49:08Z", "valid": true, "error": null @@ -167090,11 +166323,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 37, - "connection": 23, - "handshake": 28, - "response": 42, - "total": 130 + "namelookup": 39, + "connection": 21, + "handshake": 27, + "response": 31, + "total": 117 } }, "uptimeGrade": "A", @@ -167127,77 +166360,77 @@ "testssl": [ { "id": "service", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167205,7 +166438,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167213,7 +166446,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167221,7 +166454,7 @@ }, { "id": "cipherlist_LOW", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -167229,7 +166462,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -167237,7 +166470,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -167245,497 +166478,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-04 13:49" }, { "id": "cert_notAfter", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-03 13:49" }, { "id": "cert_extlifeSpan", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704607712" + "finding": "1705212355" }, { "id": "HSTS_time", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -167743,7 +166976,7 @@ }, { "id": "heartbleed", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -167752,7 +166985,7 @@ }, { "id": "CCS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -167761,7 +166994,7 @@ }, { "id": "ticketbleed", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -167770,7 +167003,7 @@ }, { "id": "ROBOT", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -167779,7 +167012,7 @@ }, { "id": "secure_renego", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -167787,7 +167020,7 @@ }, { "id": "secure_client_renego", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -167796,7 +167029,7 @@ }, { "id": "CRIME_TLS", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -167805,7 +167038,7 @@ }, { "id": "BREACH", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -167814,7 +167047,7 @@ }, { "id": "POODLE_SSL", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -167823,14 +167056,14 @@ }, { "id": "fallback_SCSV", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -167839,7 +167072,7 @@ }, { "id": "FREAK", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -167848,7 +167081,7 @@ }, { "id": "DROWN", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -167857,7 +167090,7 @@ }, { "id": "DROWN_hint", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -167866,7 +167099,7 @@ }, { "id": "LOGJAM", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -167875,7 +167108,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -167884,7 +167117,7 @@ }, { "id": "BEAST", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -167893,7 +167126,7 @@ }, { "id": "LUCKY13", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -167902,7 +167135,7 @@ }, { "id": "winshock", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -167911,7 +167144,7 @@ }, { "id": "RC4", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -167920,392 +167153,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "impactco2.fr/148.253.75.120", + "ip": "impactco2.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -168313,7 +167546,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -168321,7 +167554,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -168329,7 +167562,7 @@ }, { "id": "cipherlist_LOW", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -168337,7 +167570,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -168345,7 +167578,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -168353,497 +167586,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-12-04 13:49" }, { "id": "cert_notAfter", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-03-03 13:49" }, { "id": "cert_extlifeSpan", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704607766" + "finding": "1705212451" }, { "id": "HSTS_time", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -168851,7 +168084,7 @@ }, { "id": "heartbleed", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -168860,7 +168093,7 @@ }, { "id": "CCS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -168869,7 +168102,7 @@ }, { "id": "ticketbleed", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -168878,7 +168111,7 @@ }, { "id": "ROBOT", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -168887,7 +168120,7 @@ }, { "id": "secure_renego", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -168895,7 +168128,7 @@ }, { "id": "secure_client_renego", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -168904,7 +168137,7 @@ }, { "id": "CRIME_TLS", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -168913,7 +168146,7 @@ }, { "id": "BREACH", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -168922,7 +168155,7 @@ }, { "id": "POODLE_SSL", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -168931,14 +168164,14 @@ }, { "id": "fallback_SCSV", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -168947,7 +168180,7 @@ }, { "id": "FREAK", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -168956,7 +168189,7 @@ }, { "id": "DROWN", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -168965,7 +168198,7 @@ }, { "id": "DROWN_hint", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -168974,7 +168207,7 @@ }, { "id": "LOGJAM", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -168983,7 +168216,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -168992,7 +168225,7 @@ }, { "id": "BEAST", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -169001,7 +168234,7 @@ }, { "id": "LUCKY13", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -169010,7 +168243,7 @@ }, { "id": "winshock", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -169019,7 +168252,7 @@ }, { "id": "RC4", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -169028,392 +168261,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "impactco2.fr/109.232.236.90", + "ip": "impactco2.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -169421,7 +168654,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -169429,7 +168662,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -169437,7 +168670,7 @@ }, { "id": "cipherlist_LOW", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -169445,7 +168678,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -169453,7 +168686,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -169461,497 +168694,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-12-04 13:49" }, { "id": "cert_notAfter", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-03-03 13:49" }, { "id": "cert_extlifeSpan", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704607821" + "finding": "1705212549" }, { "id": "HSTS_time", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "security_headers", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -169959,7 +169192,7 @@ }, { "id": "heartbleed", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -169968,7 +169201,7 @@ }, { "id": "CCS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -169977,7 +169210,7 @@ }, { "id": "ticketbleed", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -169986,7 +169219,7 @@ }, { "id": "ROBOT", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -169995,7 +169228,7 @@ }, { "id": "secure_renego", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -170003,7 +169236,7 @@ }, { "id": "secure_client_renego", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -170012,7 +169245,7 @@ }, { "id": "CRIME_TLS", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -170021,7 +169254,7 @@ }, { "id": "BREACH", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -170030,7 +169263,7 @@ }, { "id": "POODLE_SSL", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -170039,14 +169272,14 @@ }, { "id": "fallback_SCSV", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -170055,7 +169288,7 @@ }, { "id": "FREAK", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -170064,7 +169297,7 @@ }, { "id": "DROWN", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -170073,7 +169306,7 @@ }, { "id": "DROWN_hint", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -170082,7 +169315,7 @@ }, { "id": "LOGJAM", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -170091,7 +169324,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -170100,7 +169333,7 @@ }, { "id": "BEAST", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -170109,7 +169342,7 @@ }, { "id": "LUCKY13", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -170118,7 +169351,7 @@ }, { "id": "winshock", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -170127,7 +169360,7 @@ }, { "id": "RC4", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -170136,315 +169369,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "impactco2.fr/5.104.101.30", + "ip": "impactco2.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" @@ -170796,7 +170029,7 @@ "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "56 >= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", @@ -170999,7 +170232,7 @@ "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704607875" + "finding": "1705212646" }, { "id": "HSTS_time", @@ -171562,7 +170795,7 @@ "ip": "impactco2.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "220" + "finding": "392" } ], "thirdparties": { @@ -171570,22 +170803,49 @@ { "type": "unknown", "url": "https://sentry.incubateur.net/api/126/envelope/?sentry_key=5f49b5bd47a14581b39e8c7dff792758&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.88.0" + } + ], + "cookies": [ + { + "name": "_pk_ses.156.f473", + "value": "1", + "domain": "impactco2.fr", + "path": "/", + "expires": 1705214063, + "size": 17, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 }, { - "type": "unknown", - "url": "https://sentry.incubateur.net/api/126/envelope/?sentry_key=5f49b5bd47a14581b39e8c7dff792758&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.88.0" + "name": "_pk_id.156.f473", + "value": "fff8cb1b0535370f.1705212263.", + "domain": "impactco2.fr", + "path": "/", + "expires": 1739167463, + "size": 43, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 } ], - "cookies": [], "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 06:07:34 GMT", - "etag": "\"155r38hfe1x3zx4\"", + "date": "Sun, 14 Jan 2024 06:04:21 GMT", + "etag": "\"7tm2rvn8om400u\"", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-powered-by": "Next.js", - "x-request-id": "88bc516e-2dd1-4e87-9084-c4b80b42118f" + "x-request-id": "089af887-28cf-45ba-9a44-3f087a0e95f9" }, "endpoints": [ { @@ -171700,7 +170960,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -171962,7 +171222,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 06:06:52", + "@generated": "Sun, 14 Jan 2024 06:03:40", "site": [ { "@name": "https://impactco2.fr", @@ -172114,1371 +171374,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "impactco2.fr.", - "matched-at": "impactco2.fr", - "timestamp": "2024-01-07T06:12:40.113084912Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "impactco2.fr.", - "matched-at": "impactco2.fr", - "extracted-results": [ - "\"v=spf1 include:_mailcust.gandi.net ?all\"", - "\"google-site-verification=_JTbdWm21IJVs9RRaH1M4Qm7bviHvuiJfvz5Eb8y2YU\"" - ], - "timestamp": "2024-01-07T06:12:40.11648866Z", - "matcher-status": true - }, - { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", - "info": { - "name": "MX Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "impactco2.fr.", - "matched-at": "impactco2.fr", - "extracted-results": [ - "50 fb.mail.gandi.net.", - "10 spool.mail.gandi.net." - ], - "timestamp": "2024-01-07T06:12:41.026703628Z", - "matcher-status": true - }, - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "impactco2.fr.", - "matched-at": "impactco2.fr", - "extracted-results": [ - "ns-129-c.gandi.net.", - "ns-53-b.gandi.net.", - "ns-29-a.gandi.net." - ], - "timestamp": "2024-01-07T06:12:41.18473863Z", - "matcher-status": true - }, - { - "template": "http/miscellaneous/options-method.yaml", - "template-url": "https://templates.nuclei.sh/public/options-method", - "template-id": "options-method", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/options-method.yaml", - "info": { - "name": "Allowed Options Method", - "author": [ - "pdteam" - ], - "tags": [ - "misc", - "generic" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "extracted-results": [ - "GET", - "HEAD" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:12:50.09479412Z", - "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", - "info": { - "name": "Wappalyzer Technology Detection", - "author": [ - "hakluke" - ], - "tags": [ - "tech" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "next.js", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:37.802916712Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.480865093Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.480898495Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.480908273Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.480925656Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.480935193Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.480948398Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.48142171Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.481442669Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.481454561Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:43.481562011Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/robots-txt-endpoint.yaml", - "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint", - "template-id": "robots-txt-endpoint", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml", - "info": { - "name": "robots.txt endpoint prober", - "author": [ - "caspergn", - "pdteam" - ], - "tags": [ - "misc", - "generic" - ], - "severity": "info", - "metadata": { - "max-request": 2 - } - }, - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr/robots.txt", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:58.153447124Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr/robots.txt'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/sitemap-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/sitemap-detect", - "template-id": "sitemap-detect", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/sitemap-detect.yaml", - "info": { - "name": "Sitemap Detection", - "author": [ - "houdinis" - ], - "tags": [ - "misc", - "generic", - "sitemap" - ], - "description": "A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.\n", - "severity": "info", - "metadata": { - "google-query": "intext:\"sitemap\" filetype:txt,filetype:xml inurl:sitemap,inurl:\"/sitemap.xsd\" ext:xsd", - "max-request": 3, - "verified": true - } - }, - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr/sitemap.xml", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:13:58.207877283Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr/sitemap.xml'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "secureDNS", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "false" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.79109157Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "lastChangeDate", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "2023-08-20T05:55:26.86023Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791128318Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantOrg", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "AGCE L ENVIRON MAITRISE L ENERGIE" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791139609Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantEmail", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "27fd404c02e5c14767e0170401286d0f-38250255@contact.gandi.net" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791154076Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantAddress", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "49004", - "FR", - "20 avenue du Gresille", - "Angers" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791170507Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantCountry", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "FR" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791186397Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "nameServers", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "ns-129-c.gandi.net", - "ns-29-a.gandi.net", - "ns-53-b.gandi.net" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.79119917Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "status", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "active" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791214819Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrationDate", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "2022-09-15T08:45:46Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791227694Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "expirationDate", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "2024-09-15T08:45:46Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791240287Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantName", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "AGCE L ENVIRON MAITRISE L ENERGIE" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791254043Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantPhone", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://rdap.nic.fr/domain/impactco2.fr", - "extracted-results": [ - "+33.241204120", - "+33.146383141" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T06:13:58.791270814Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/impactco2.fr'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "ats", - "type": "http", - "host": "https://impactco2.fr", - "matched-at": "https://impactco2.fr/", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:14:19.024619954Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: impactco2.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://impactco2.fr/'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "impactco2.fr", - "matched-at": "impactco2.fr:443", - "extracted-results": [ - "Let's Encrypt" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:20:06.357235637Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "impactco2.fr", - "matched-at": "impactco2.fr:443", - "extracted-results": [ - "impactco2.fr" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:20:06.357357264Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "impactco2.fr", - "matched-at": "impactco2.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:20:07.750190996Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "impactco2.fr", - "matched-at": "impactco2.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T06:20:07.946482969Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://impactco2.fr/", "finalUrl": "https://impactco2.fr/", - "fetchTime": "2024-01-07T06:07:06.568Z", + "fetchTime": "2024-01-14T06:03:54.078Z", "runWarnings": [], "categories": { "performance": { @@ -173489,7 +171390,7 @@ "snapshot" ], "id": "performance", - "score": 0.9861936569213867 + "score": 0.9865531921386719 }, "accessibility": { "title": "Accessibility", @@ -173500,7 +171401,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.97 + "score": 1 }, "best-practices": { "title": "Best Practices", @@ -173541,53 +171442,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6067, + "numericValue": 6223, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1202, - "firstMeaningfulPaint": 1202, - "largestContentfulPaint": 4224, - "interactive": 6067, - "speedIndex": 1560, - "totalBlockingTime": 260, - "maxPotentialFID": 224, - "cumulativeLayoutShift": 0.003187350802951389, - "cumulativeLayoutShiftMainFrame": 0.003187350802951389, - "totalCumulativeLayoutShift": 0.003187350802951389, + "firstContentfulPaint": 1272, + "firstMeaningfulPaint": 1272, + "largestContentfulPaint": 4381, + "interactive": 6223, + "speedIndex": 2207, + "totalBlockingTime": 265, + "maxPotentialFID": 240, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 288277416, + "observedTimeOriginTs": 344045083, "observedNavigationStart": 0, - "observedNavigationStartTs": 288277416, - "observedFirstPaint": 729, - "observedFirstPaintTs": 289006763, - "observedFirstContentfulPaint": 729, - "observedFirstContentfulPaintTs": 289006763, - "observedFirstContentfulPaintAllFrames": 729, - "observedFirstContentfulPaintAllFramesTs": 289006763, - "observedFirstMeaningfulPaint": 729, - "observedFirstMeaningfulPaintTs": 289006763, - "observedLargestContentfulPaint": 729, - "observedLargestContentfulPaintTs": 289006763, - "observedLargestContentfulPaintAllFrames": 729, - "observedLargestContentfulPaintAllFramesTs": 289006763, - "observedTraceEnd": 4515, - "observedTraceEndTs": 292792580, - "observedLoad": 850, - "observedLoadTs": 289127564, - "observedDomContentLoaded": 808, - "observedDomContentLoadedTs": 289085316, - "observedCumulativeLayoutShift": 0.003187350802951389, - "observedCumulativeLayoutShiftMainFrame": 0.003187350802951389, - "observedTotalCumulativeLayoutShift": 0.003187350802951389, - "observedFirstVisualChange": 727, - "observedFirstVisualChangeTs": 289004416, - "observedLastVisualChange": 1327, - "observedLastVisualChangeTs": 289604416, - "observedSpeedIndex": 735, - "observedSpeedIndexTs": 289012439 + "observedNavigationStartTs": 344045083, + "observedFirstPaint": 1152, + "observedFirstPaintTs": 345196689, + "observedFirstContentfulPaint": 1152, + "observedFirstContentfulPaintTs": 345196689, + "observedFirstContentfulPaintAllFrames": 1152, + "observedFirstContentfulPaintAllFramesTs": 345196689, + "observedFirstMeaningfulPaint": 1152, + "observedFirstMeaningfulPaintTs": 345196689, + "observedLargestContentfulPaint": 1152, + "observedLargestContentfulPaintTs": 345196689, + "observedLargestContentfulPaintAllFrames": 1152, + "observedLargestContentfulPaintAllFramesTs": 345196689, + "observedTraceEnd": 4185, + "observedTraceEndTs": 348229841, + "observedLoad": 1878, + "observedLoadTs": 345922718, + "observedDomContentLoaded": 1220, + "observedDomContentLoadedTs": 345265252, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 1157, + "observedFirstVisualChangeTs": 345202083, + "observedLastVisualChange": 1774, + "observedLastVisualChangeTs": 345819083, + "observedSpeedIndex": 1164, + "observedSpeedIndexTs": 345209024 }, { "lcpInvalidated": false @@ -173605,23 +171506,23 @@ "type": "debugdata", "items": [ { - "numRequests": 44, - "numScripts": 17, + "numRequests": 42, + "numScripts": 16, "numStylesheets": 1, "numFonts": 10, - "numTasks": 470, - "numTasksOver10ms": 3, + "numTasks": 443, + "numTasksOver10ms": 4, "numTasksOver25ms": 3, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 85.1, - "throughput": 16880449.20723873, - "maxRtt": 89.33999999999999, - "maxServerLatency": 67.544, - "totalByteWeight": 1120961, - "totalTaskTime": 246.36099999999934, - "mainDocumentTransferSize": 61499 + "rtt": 132.306, + "throughput": 12816831.399676766, + "maxRtt": 148.844, + "maxServerLatency": 133.405, + "totalByteWeight": 1119076, + "totalTaskTime": 237.39699999999937, + "mainDocumentTransferSize": 61332 } ] } @@ -173729,13 +171630,13 @@ "testsslExpireSoon": false, "testsslExpireDate": "2024-03-03T13:49:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 2, "trackersGrade": "B", - "trackersCount": 2, - "lighthouse_performance": 0.9861936569213867, + "trackersCount": 1, + "lighthouse_performance": 0.9865531921386719, "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 0.97, + "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", @@ -173759,7 +171660,7 @@ "http": { "url": "https://kelrisks.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 06:21:42 GMT", + "end_time": "Sun, 14 Jan 2024 06:09:15 GMT", "grade": "D-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -173769,15 +171670,15 @@ "Content-Language": "en-US", "Content-Length": "3116", "Content-Type": "text/html;charset=UTF-8", - "Date": "Sun, 07 Jan 2024 06:21:41 GMT", + "Date": "Sun, 14 Jan 2024 06:09:13 GMT", "Last-Modified": "Thu, 01 Jan 1970 00:00:01 GMT", - "Set-Cookie": "TS01fba31b=01ce77d60074a81f090a97e9c2e2071e277f0c4e835e2286c26dc05b40db27b9918133390ca86c2ab40b27fd453f611fac15638d12; Path=/; Domain=.errial.georisques.gouv.fr", + "Set-Cookie": "TS01fba31b=01ce77d600a06177da47a2765f52e8622ac4910af0fdc71dc88a38d9c72bf074ca222d6b9d4fc1c943c5bd82bdb509a273d0abda0c; Path=/; Domain=.errial.georisques.gouv.fr", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", "Vary": "Origin, Access-Control-Request-Method, Access-Control-Request-Headers" }, - "scan_id": 46230083, + "scan_id": 46456802, "score": 25, - "start_time": "Sun, 07 Jan 2024 06:20:49 GMT", + "start_time": "Sun, 14 Jan 2024 06:07:50 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 7, @@ -173967,7 +171868,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-01T05:02:57Z", + "up_since": "2024-01-10T16:33:26Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -173979,8 +171880,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T06:33:19Z", - "next_check_at": "2024-01-07T06:38:16Z", + "last_check_at": "2024-01-14T06:20:26Z", + "next_check_at": "2024-01-14T06:25:23Z", "created_at": "2021-04-22T19:59:31Z", "mute_until": null, "favicon_url": "https://errial.georisques.gouv.fr/images/favicons/favicon-32x32.png", @@ -173988,7 +171889,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T06:03:27Z", + "tested_at": "2024-01-14T05:55:36Z", "expires_at": "2024-03-13T06:39:06Z", "valid": true, "error": null @@ -173996,12 +171897,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 319, - "namelookup": 417, - "connection": 99, - "handshake": 208, - "response": 107, - "total": 1150 + "redirect": 394, + "namelookup": 341, + "connection": 111, + "handshake": 230, + "response": 118, + "total": 1194 } }, "uptimeGrade": "A", @@ -174034,77 +171935,77 @@ "testssl": [ { "id": "service", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -174112,7 +172013,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -174120,7 +172021,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -174128,7 +172029,7 @@ }, { "id": "cipherlist_LOW", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -174136,7 +172037,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -174144,7 +172045,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -174152,483 +172053,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-12-14 06:39" }, { "id": "cert_notAfter", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-03-13 06:39" }, { "id": "cert_extlifeSpan", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704608602" + "finding": "1705212651" }, { "id": "HSTS", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -174636,7 +172537,7 @@ }, { "id": "heartbleed", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -174645,7 +172546,7 @@ }, { "id": "CCS", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -174654,7 +172555,7 @@ }, { "id": "ticketbleed", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -174663,7 +172564,7 @@ }, { "id": "ROBOT", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -174672,7 +172573,7 @@ }, { "id": "secure_renego", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -174680,7 +172581,7 @@ }, { "id": "secure_client_renego", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -174689,7 +172590,7 @@ }, { "id": "CRIME_TLS", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -174698,7 +172599,7 @@ }, { "id": "BREACH", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -174707,7 +172608,7 @@ }, { "id": "POODLE_SSL", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -174716,14 +172617,14 @@ }, { "id": "fallback_SCSV", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -174732,7 +172633,7 @@ }, { "id": "FREAK", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -174741,7 +172642,7 @@ }, { "id": "DROWN", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -174750,7 +172651,7 @@ }, { "id": "DROWN_hint", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -174759,7 +172660,7 @@ }, { "id": "LOGJAM", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -174768,7 +172669,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -174777,7 +172678,7 @@ }, { "id": "BEAST", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -174786,7 +172687,7 @@ }, { "id": "LUCKY13", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -174795,7 +172696,7 @@ }, { "id": "winshock", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -174804,7 +172705,7 @@ }, { "id": "RC4", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -174813,399 +172714,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "kelrisks.beta.gouv.fr/148.253.75.120", + "ip": "kelrisks.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -175213,7 +173114,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -175221,7 +173122,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -175229,7 +173130,7 @@ }, { "id": "cipherlist_LOW", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -175237,7 +173138,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -175245,7 +173146,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -175253,483 +173154,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-12-14 06:39" }, { "id": "cert_notAfter", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-03-13 06:39" }, { "id": "cert_extlifeSpan", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704608660" + "finding": "1705212702" }, { "id": "HSTS", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -175737,7 +173638,7 @@ }, { "id": "heartbleed", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -175746,7 +173647,7 @@ }, { "id": "CCS", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -175755,7 +173656,7 @@ }, { "id": "ticketbleed", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -175764,7 +173665,7 @@ }, { "id": "ROBOT", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -175773,7 +173674,7 @@ }, { "id": "secure_renego", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -175781,7 +173682,7 @@ }, { "id": "secure_client_renego", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -175790,7 +173691,7 @@ }, { "id": "CRIME_TLS", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -175799,7 +173700,7 @@ }, { "id": "BREACH", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -175808,7 +173709,7 @@ }, { "id": "POODLE_SSL", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -175817,14 +173718,14 @@ }, { "id": "fallback_SCSV", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -175833,7 +173734,7 @@ }, { "id": "FREAK", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -175842,7 +173743,7 @@ }, { "id": "DROWN", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -175851,7 +173752,7 @@ }, { "id": "DROWN_hint", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -175860,7 +173761,7 @@ }, { "id": "LOGJAM", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -175869,7 +173770,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -175878,7 +173779,7 @@ }, { "id": "BEAST", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -175887,7 +173788,7 @@ }, { "id": "LUCKY13", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -175896,7 +173797,7 @@ }, { "id": "winshock", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -175905,7 +173806,7 @@ }, { "id": "RC4", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -175914,399 +173815,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "kelrisks.beta.gouv.fr/5.104.101.30", + "ip": "kelrisks.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -176314,7 +174215,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -176322,7 +174223,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -176330,7 +174231,7 @@ }, { "id": "cipherlist_LOW", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -176338,7 +174239,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -176346,7 +174247,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -176354,483 +174255,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-14 06:39" }, { "id": "cert_notAfter", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-13 06:39" }, { "id": "cert_extlifeSpan", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704608717" + "finding": "1705212754" }, { "id": "HSTS", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -176838,7 +174739,7 @@ }, { "id": "heartbleed", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -176847,7 +174748,7 @@ }, { "id": "CCS", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -176856,7 +174757,7 @@ }, { "id": "ticketbleed", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -176865,7 +174766,7 @@ }, { "id": "ROBOT", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -176874,7 +174775,7 @@ }, { "id": "secure_renego", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -176882,7 +174783,7 @@ }, { "id": "secure_client_renego", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -176891,7 +174792,7 @@ }, { "id": "CRIME_TLS", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -176900,7 +174801,7 @@ }, { "id": "BREACH", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -176909,7 +174810,7 @@ }, { "id": "POODLE_SSL", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -176918,14 +174819,14 @@ }, { "id": "fallback_SCSV", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -176934,7 +174835,7 @@ }, { "id": "FREAK", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -176943,7 +174844,7 @@ }, { "id": "DROWN", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -176952,7 +174853,7 @@ }, { "id": "DROWN_hint", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -176961,7 +174862,7 @@ }, { "id": "LOGJAM", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -176970,7 +174871,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -176979,7 +174880,7 @@ }, { "id": "BEAST", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -176988,7 +174889,7 @@ }, { "id": "LUCKY13", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -176997,7 +174898,7 @@ }, { "id": "winshock", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -177006,7 +174907,7 @@ }, { "id": "RC4", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -177015,322 +174916,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "kelrisks.beta.gouv.fr/109.232.233.130", + "ip": "kelrisks.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -177535,7 +175436,7 @@ "ip": "kelrisks.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -177682,7 +175583,7 @@ "ip": "kelrisks.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", @@ -177885,7 +175786,7 @@ "ip": "kelrisks.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704608775" + "finding": "1705212805" }, { "id": "HSTS", @@ -178441,7 +176342,7 @@ "ip": "kelrisks.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "231" + "finding": "207" } ], "thirdparties": { @@ -178484,7 +176385,7 @@ }, { "type": "unknown", - "url": "https://wwwstats.brgm.fr/piwik.php?action_name=Evaluez%20simplement%20et%20rapidement%20les%20risques%20de%20votre%20bien%20-%20errial.georisques.gouv.fr&idsite=266&rec=1&r=742115&h=6&m=22&s=9&url=https%3A%2F%2Ferrial.georisques.gouv.fr%2F&_id=ec97131175a2df6f&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=XrLsS7&pf_net=627&pf_srv=110&pf_tfr=1&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" + "url": "https://wwwstats.brgm.fr/piwik.php?action_name=Evaluez%20simplement%20et%20rapidement%20les%20risques%20de%20votre%20bien%20-%20errial.georisques.gouv.fr&idsite=266&rec=1&r=916892&h=6&m=9&s=46&url=https%3A%2F%2Ferrial.georisques.gouv.fr%2F&_id=773d79fb827f8094&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=eCyAFc&pf_net=416&pf_srv=89&pf_tfr=1&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" }, { "type": "google fonts", @@ -178525,7 +176426,7 @@ "value": "1", "domain": "errial.georisques.gouv.fr", "path": "/", - "expires": 1704610329, + "expires": 1705214386, "size": 17, "httpOnly": false, "secure": false, @@ -178537,10 +176438,10 @@ }, { "name": "_pk_id.266.97bc", - "value": "ec97131175a2df6f.1704608529.", + "value": "773d79fb827f8094.1705212587.", "domain": "errial.georisques.gouv.fr", "path": "/", - "expires": 1738563729, + "expires": 1739167787, "size": 43, "httpOnly": false, "secure": false, @@ -178552,7 +176453,7 @@ }, { "name": "TS01fba31b", - "value": "01ce77d600fde5608475814b1703dbf187bc132a7db1d0b99461885f495bd6305c5b3d32bf129be579565b1e0154050c607545abc3", + "value": "01ce77d600b03d7e65c715b61ecbfa3466d5284d8ec8e85e611d07e8edbae08979777fe31cf4dacfba7b7725c9ff9b68d48c384eab", "domain": ".errial.georisques.gouv.fr", "path": "/", "expires": -1, @@ -178571,26 +176472,17 @@ "content-language": "en-US", "content-length": "3116", "content-type": "text/html;charset=UTF-8", - "date": "Sun, 07 Jan 2024 06:22:07 GMT", + "date": "Sun, 14 Jan 2024 06:09:45 GMT", "last-modified": "Thu, 01 Jan 1970 00:00:01 GMT", - "set-cookie": "TS01fba31b=01ce77d600fde5608475814b1703dbf187bc132a7db1d0b99461885f495bd6305c5b3d32bf129be579565b1e0154050c607545abc3; Path=/; Domain=.errial.georisques.gouv.fr", + "set-cookie": "TS01fba31b=01ce77d600b03d7e65c715b61ecbfa3466d5284d8ec8e85e611d07e8edbae08979777fe31cf4dacfba7b7725c9ff9b68d48c384eab; Path=/; Domain=.errial.georisques.gouv.fr", "strict-transport-security": "max-age=15724800; includeSubDomains", "vary": "Origin\nAccess-Control-Request-Method\nAccess-Control-Request-Headers" }, "endpoints": [ { "hostname": "kelrisks.beta.gouv.fr", - "ip": "5.104.101.30", + "ip": "109.232.236.90", "geoip": { - "city": { - "geoname_id": 3034797, - "names": { - "de": "Bartenheim", - "en": "Bartenheim", - "fr": "Bartenheim", - "pt-BR": "Bartenheim" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -178622,13 +176514,10 @@ }, "location": { "accuracy_radius": 500, - "latitude": 47.6376, - "longitude": 7.4798, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "68870" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -178643,45 +176532,20 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071622, - "iso_code": "GES", - "names": { - "en": "Grand Est", - "fr": "Grand Est" - } - }, - { - "geoname_id": 3013663, - "iso_code": "68", - "names": { - "de": "Haut-Rhin", - "en": "Haut-Rhin", - "es": "Alto Rin", - "fr": "Haut-Rhin", - "pt-BR": "Alto Reno" - } - } - ] + } } }, { "hostname": "cdn.polyfill.io", - "ip": "146.75.77.26", + "ip": "146.75.37.26", "geoip": { "city": { - "geoname_id": 4887398, + "geoname_id": 4781530, "names": { - "de": "Chicago", - "en": "Chicago", - "es": "Chicago", - "fr": "Chicago", - "ja": "シカゴ", - "pt-BR": "Chicago", - "ru": "Чикаго", - "zh-CN": "芝加哥" + "de": "Reston", + "en": "Reston", + "ja": "レストン", + "ru": "Рестон" } }, "continent": { @@ -178702,7 +176566,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -178714,19 +176578,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 41.8719, - "longitude": -87.6589, - "metro_code": 602, - "time_zone": "America/Chicago" + "latitude": 38.9609, + "longitude": -77.3429, + "metro_code": 511, + "time_zone": "America/New_York" }, "postal": { - "code": "60607" + "code": "20190" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -178738,16 +176602,15 @@ }, "subdivisions": [ { - "geoname_id": 4896861, - "iso_code": "IL", + "geoname_id": 6254928, + "iso_code": "VA", "names": { - "en": "Illinois", - "es": "Illinois", - "fr": "Illinois", - "ja": "イリノイ州", - "pt-BR": "Ilinóis", - "ru": "Иллинойс", - "zh-CN": "伊利诺伊州" + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" } } ] @@ -178755,7 +176618,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.32.10", + "ip": "142.251.179.95", "geoip": { "continent": { "code": "NA", @@ -178775,7 +176638,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -178795,7 +176658,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -178812,16 +176675,16 @@ "ip": "217.108.210.116", "geoip": { "city": { - "geoname_id": 2990969, + "geoname_id": 2988507, "names": { - "de": "Nantes", - "en": "Nantes", - "es": "Nantes", - "fr": "Nantes", - "ja": "ナント", - "pt-BR": "Nantes", - "ru": "Нант", - "zh-CN": "南特" + "de": "Paris", + "en": "Paris", + "es": "París", + "fr": "Paris", + "ja": "パリ", + "pt-BR": "Paris", + "ru": "Париж", + "zh-CN": "巴黎" } }, "continent": { @@ -178855,10 +176718,13 @@ }, "location": { "accuracy_radius": 200, - "latitude": 47.2145, - "longitude": -1.5512, + "latitude": 48.8323, + "longitude": 2.4075, "time_zone": "Europe/Paris" }, + "postal": { + "code": "75015" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -178876,27 +176742,26 @@ }, "subdivisions": [ { - "geoname_id": 2988289, - "iso_code": "PDL", + "geoname_id": 3012874, + "iso_code": "IDF", "names": { - "de": "Pays de la Loire", - "en": "Pays de la Loire", - "es": "Países del Loira", - "fr": "Pays de la Loire", - "ja": "ペイ・ド・ラ・ロワール地域圏", - "pt-BR": "País do Loire", - "ru": "Земли Луары", - "zh-CN": "卢瓦尔河地区" + "de": "Île-de-France", + "en": "Île-de-France", + "es": "Isla de Francia", + "fr": "Île-de-France", + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { - "geoname_id": 2997861, - "iso_code": "44", + "geoname_id": 2968815, + "iso_code": "75", "names": { - "de": "Loire-Atlantique", - "en": "Loire-Atlantique", - "es": "Loira Atlántico", - "fr": "Loire-Atlantique" + "de": "Paris", + "en": "Paris", + "es": "Paris", + "fr": "Paris" } } ] @@ -178904,7 +176769,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.191.131", + "ip": "142.251.16.94", "geoip": { "continent": { "code": "NA", @@ -178924,7 +176789,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -178944,7 +176809,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -178970,7 +176835,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 06:19:56", + "@generated": "Sun, 14 Jan 2024 06:06:57", "site": [ { "@name": "https://kelrisks.beta.gouv.fr", @@ -179109,6 +176974,41 @@ ] }, "nuclei": [ + { + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "info": { + "name": "DNS SaaS Service Detection", + "author": [ + "noah @thesubtlety", + "pdteam" + ], + "tags": [ + "dns", + "service" + ], + "description": "A CNAME DNS record was discovered", + "reference": [ + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "dns", + "host": "kelrisks.beta.gouv.fr.", + "matched-at": "kelrisks.beta.gouv.fr", + "extracted-results": [ + "betagouv-redirections.osc-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T06:14:45.421907742Z", + "matcher-status": true + }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -179141,42 +177041,7 @@ "type": "dns", "host": "kelrisks.beta.gouv.fr.", "matched-at": "kelrisks.beta.gouv.fr", - "timestamp": "2024-01-07T06:27:44.62258099Z", - "matcher-status": true - }, - { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", - "info": { - "name": "DNS SaaS Service Detection", - "author": [ - "noah @thesubtlety", - "pdteam" - ], - "tags": [ - "dns", - "service" - ], - "description": "A CNAME DNS record was discovered", - "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "dns", - "host": "kelrisks.beta.gouv.fr.", - "matched-at": "kelrisks.beta.gouv.fr", - "extracted-results": [ - "betagouv-redirections.osc-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T06:27:44.64494756Z", + "timestamp": "2024-01-14T06:14:45.614295842Z", "matcher-status": true }, { @@ -179214,8 +177079,8 @@ "type": "http", "host": "https://kelrisks.beta.gouv.fr", "matched-at": "https://kelrisks.beta.gouv.fr/", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T06:29:02.234483019Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T06:15:51.229088856Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: kelrisks.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://kelrisks.beta.gouv.fr/'", "matcher-status": true }, @@ -179245,8 +177110,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T06:34:35.122264178Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T06:21:30.370488986Z", "matcher-status": true }, { @@ -179275,8 +177140,8 @@ "extracted-results": [ "kelrisks.beta.gouv.fr" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T06:34:35.122368664Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T06:21:30.370619609Z", "matcher-status": true }, { @@ -179306,8 +177171,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T06:34:36.872122696Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T06:21:31.603569766Z", "matcher-status": true }, { @@ -179337,8 +177202,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T06:34:37.0952592Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T06:21:31.773429905Z", "matcher-status": true } ], @@ -179346,7 +177211,7 @@ { "requestedUrl": "https://kelrisks.beta.gouv.fr/", "finalUrl": "https://errial.georisques.gouv.fr/", - "fetchTime": "2024-01-07T06:20:10.375Z", + "fetchTime": "2024-01-14T06:07:12.347Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://kelrisks.beta.gouv.fr/) was redirected to https://errial.georisques.gouv.fr/. Try testing the second URL directly." ], @@ -179359,7 +177224,7 @@ "snapshot" ], "id": "performance", - "score": 0.9567533493041992 + "score": 0.956753921508789 }, "accessibility": { "title": "Accessibility", @@ -179411,53 +177276,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9388, + "numericValue": 9422, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8788, - "firstMeaningfulPaint": 8788, - "largestContentfulPaint": 9164, - "interactive": 9388, - "speedIndex": 9779, - "totalBlockingTime": 76, - "maxPotentialFID": 109, + "firstContentfulPaint": 8752, + "firstMeaningfulPaint": 8867, + "largestContentfulPaint": 9215, + "interactive": 9422, + "speedIndex": 8964, + "totalBlockingTime": 69, + "maxPotentialFID": 188, "cumulativeLayoutShift": 0.03179244465298123, "cumulativeLayoutShiftMainFrame": 0.03179244465298123, "totalCumulativeLayoutShift": 0.03179244465298123, "observedTimeOrigin": 0, - "observedTimeOriginTs": 222357372, + "observedTimeOriginTs": 252921610, "observedNavigationStart": 0, - "observedNavigationStartTs": 222357372, - "observedFirstPaint": 1201, - "observedFirstPaintTs": 223558193, - "observedFirstContentfulPaint": 2734, - "observedFirstContentfulPaintTs": 225091388, - "observedFirstContentfulPaintAllFrames": 2734, - "observedFirstContentfulPaintAllFramesTs": 225091388, - "observedFirstMeaningfulPaint": 2734, - "observedFirstMeaningfulPaintTs": 225091388, - "observedLargestContentfulPaint": 2734, - "observedLargestContentfulPaintTs": 225091388, - "observedLargestContentfulPaintAllFrames": 2734, - "observedLargestContentfulPaintAllFramesTs": 225091388, - "observedTraceEnd": 5450, - "observedTraceEndTs": 227807249, - "observedLoad": 3141, - "observedLoadTs": 225498862, - "observedDomContentLoaded": 2733, - "observedDomContentLoadedTs": 225090733, + "observedNavigationStartTs": 252921610, + "observedFirstPaint": 974, + "observedFirstPaintTs": 253895505, + "observedFirstContentfulPaint": 2166, + "observedFirstContentfulPaintTs": 255087182, + "observedFirstContentfulPaintAllFrames": 2166, + "observedFirstContentfulPaintAllFramesTs": 255087182, + "observedFirstMeaningfulPaint": 2166, + "observedFirstMeaningfulPaintTs": 255087182, + "observedLargestContentfulPaint": 2166, + "observedLargestContentfulPaintTs": 255087182, + "observedLargestContentfulPaintAllFrames": 2166, + "observedLargestContentfulPaintAllFramesTs": 255087182, + "observedTraceEnd": 4800, + "observedTraceEndTs": 257721969, + "observedLoad": 2492, + "observedLoadTs": 255413352, + "observedDomContentLoaded": 2166, + "observedDomContentLoadedTs": 255087353, "observedCumulativeLayoutShift": 0.03179244465298123, "observedCumulativeLayoutShiftMainFrame": 0.03179244465298123, "observedTotalCumulativeLayoutShift": 0.03179244465298123, - "observedFirstVisualChange": 2733, - "observedFirstVisualChangeTs": 225090372, - "observedLastVisualChange": 3333, - "observedLastVisualChangeTs": 225690372, - "observedSpeedIndex": 2798, - "observedSpeedIndexTs": 225155493 + "observedFirstVisualChange": 2168, + "observedFirstVisualChangeTs": 255089610, + "observedLastVisualChange": 2784, + "observedLastVisualChangeTs": 255705610, + "observedSpeedIndex": 2226, + "observedSpeedIndexTs": 255147127 }, { "lcpInvalidated": false @@ -179479,18 +177344,18 @@ "numScripts": 4, "numStylesheets": 8, "numFonts": 2, - "numTasks": 615, - "numTasksOver10ms": 5, - "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasks": 573, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.6889999999999998, - "throughput": 5503387.029863145, - "maxRtt": 103.16399999999999, - "maxServerLatency": 12.829, - "totalByteWeight": 1275313, - "totalTaskTime": 293.5999999999996, + "rtt": 0.9210000000000207, + "throughput": 7161063.748389844, + "maxRtt": 88.345, + "maxServerLatency": 11.998, + "totalByteWeight": 1275310, + "totalTaskTime": 241.9229999999992, "mainDocumentTransferSize": 3675 } ] @@ -179611,7 +177476,7 @@ "cookiesCount": 3, "trackersGrade": "C", "trackersCount": 10, - "lighthouse_performance": 0.9567533493041992, + "lighthouse_performance": 0.956753921508789, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.91, "lighthouse_accessibilityGrade": "A", @@ -179640,27 +177505,27 @@ "http": { "url": "https://lemarche.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 06:23:36 GMT", + "end_time": "Sun, 14 Jan 2024 06:24:57 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", - "Content-Length": "61728", + "Content-Length": "61734", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 06:23:34 GMT", + "Date": "Sun, 14 Jan 2024 06:24:54 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=bz5Ux02Ak20TNUsucwUNYiuHDjhROGRG; expires=Sun, 05 Jan 2025 06:23:34 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", - "Sozu-Id": "01HKH9EHJJSPN4NMWC0YNG1NN0", + "Set-Cookie": "csrftoken=DTJOyajZezUqw8DUJLodzQuuwEuNLTN8; expires=Sun, 12 Jan 2025 06:24:54 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Sozu-Id": "01HM3AA11RJDT0DTX78GQ263EP", "Strict-Transport-Security": "max-age=30", "Vary": "Cookie, Origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 46230131, + "scan_id": 46457298, "score": 50, - "start_time": "Sun, 07 Jan 2024 06:23:31 GMT", + "start_time": "Sun, 14 Jan 2024 06:24:51 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -179700,7 +177565,7 @@ "data": { "csrftoken": { "domain": "lemarche.inclusion.beta.gouv.fr", - "expires": 1736058216, + "expires": 1736663096, "httponly": true, "max-age": null, "path": "/", @@ -179855,10 +177720,10 @@ "url": "https://lemarche.inclusion.beta.gouv.fr", "alias": "", "last_status": 200, - "uptime": 100, + "uptime": 99.922, "down": false, "down_since": null, - "up_since": "2024-01-07T01:12:39Z", + "up_since": "2024-01-14T00:36:33Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -179870,8 +177735,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T06:41:04Z", - "next_check_at": "2024-01-07T06:46:02Z", + "last_check_at": "2024-01-14T06:40:27Z", + "next_check_at": "2024-01-14T06:45:25Z", "created_at": "2021-04-22T19:59:32Z", "mute_until": null, "favicon_url": "https://lemarche.inclusion.beta.gouv.fr/static/vendor/theme-inclusion/images/favicon.b48853d646f6.ico", @@ -179879,29 +177744,29 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T06:26:10Z", + "tested_at": "2024-01-14T06:30:32Z", "expires_at": "2024-02-21T16:15:26Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.948, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 209, - "connection": 114, - "handshake": 121, - "response": 333, - "total": 777 + "namelookup": 206, + "connection": 99, + "handshake": 108, + "response": 274, + "total": 688 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "A" }, "nmap": { "host": "lemarche.inclusion.beta.gouv.fr", "protocol": "tcp", - "closed_ports": "987", + "closed_ports": "986", "open_ports": [ { "service": { @@ -179910,6 +177775,13 @@ "vulnerabilities": [] } }, + { + "service": { + "name": "tcpwrapped", + "id": "179", + "vulnerabilities": [] + } + }, { "service": { "name": "https", @@ -180005,1262 +177877,70 @@ "testssl": [ { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "supported" - }, - { - "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "SHA256 with RSA" - }, - { - "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" - }, - { - "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "18" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" - }, - { - "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "lemarche.inclusion.beta.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "lemarche.inclusion.beta.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "45 >= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2023-11-23 16:15" - }, - { - "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2024-02-21 16:15" - }, - { - "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "4" - }, - { - "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "LOW", - "finding": "yes" - }, - { - "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2023-11-23 16:15" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2024-02-21 16:15" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" - }, - { - "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "1704608701" - }, - { - "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "MEDIUM", - "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" - }, - { - "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS max-age is too short" - }, - { - "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -181268,7 +177948,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -181276,7 +177956,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -181284,7 +177964,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -181292,7 +177972,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -181300,7 +177980,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -181308,581 +177988,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1704608756" + "finding": "1705213582" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -181890,7 +178570,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -181899,7 +178579,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -181908,7 +178588,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -181917,7 +178597,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -181926,7 +178606,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -181934,7 +178614,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -181943,7 +178623,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -181952,7 +178632,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -181961,7 +178641,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -181970,14 +178650,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -181986,7 +178666,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -181995,7 +178675,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -182004,7 +178684,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -182013,7 +178693,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -182022,7 +178702,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -182031,7 +178711,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -182040,7 +178720,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -182049,7 +178729,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -182058,7 +178738,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -182067,392 +178747,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -182460,7 +179140,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -182468,7 +179148,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -182476,7 +179156,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -182484,7 +179164,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -182492,7 +179172,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -182500,581 +179180,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDDCCA/SgAwIBAgISBLnI+5EFayg3VS+lcahLPPxHMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjMxNjE1MjdaFw0yNDAyMjExNjE1MjZaMCoxKDAmBgNVBAMTH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChzKzWaujki39uYhcc4Yh90l3qDD1JZC08aRsBaxQAIJu8DdjWxyniOSC/Vdftf3+2raujoqSlwfR2OzcA+Iz5CuBWWhbeRxtbJ/oEwQuCXEip8/cvz7s6Oc17EJ1XEDp4N+3yc4oOBm/pYHfVYqlj1uTX7dKFUFocGNYci8Tz74tN21P/ifOZpQPp6hHKVqKvEuYqvUVd3iUnbQIGMGTN9G16MGAsY2C55cmmAn8kNVPtgxByaiN7OmD5hkWhmueyxQPnBTY8RxAC71NhJQ+NXBQtZbL0Qm503bweyC7pwOv4Vq7Lhaa4SxqXrmHeBxFAfHtnv2p5H346CM3tX1TZAgMBAAGjggIiMIICHjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMS2rJFxEIre6IFQYb8qaEHKrrWSMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCoGA1UdEQQjMCGCH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYv9Le7KAAAEAwBIMEYCIQCukQ5xtzqdlJMh1hLe13RTT+6QgzceM1G5mHQvmTgTwwIhANQtXf/7h1zzlvyD3mt1vba6MNCy3mfGUi33QWvymevbAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL/S3utgAABAMARzBFAiBtcheU4XfjkcXbGoKS1pLBwZMbLJfqAEJHQd1rsB1bOAIhAL8rKCSbxknlo/NClpAMtRiVSU/HzvpSaqUdYt8z6gu8MA0GCSqGSIb3DQEBCwUAA4IBAQCJSe7k62nIXrIciWv/AJtT8zhmYm4lV2C5C0e8LAMBmRbm18/XZfBlcE9aPcdb2FBZGn/CtEjlGqhgG/9Pi2I28FEtHmn6sJpF3sF+wOMm29/XzdD9Cv/NtwnrkkQ5wreWsVNKEYlWue12ILEBKt9v5WWDaZ2AbuUg4FCa+QClkKDFOtaU2BzT686Gj+BLTkDjwRycjlZA5urVhgAIESNj7tyOfkoQ04FLIQW0QPisC+7q/bT/i7x4h8QwWWhgGFlET27y/uidMFZDuLneQflZMVY7pzXxfjS9kGOtIW4OT6XVvsHv9XUiWr98AZiMu3hTzFAmrFk41b/xn4KKom9U\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1704608812" + "finding": "1705213638" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -183082,7 +179762,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -183091,7 +179771,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -183100,7 +179780,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -183109,7 +179789,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -183118,7 +179798,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -183126,7 +179806,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -183135,7 +179815,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -183144,7 +179824,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -183153,7 +179833,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -183162,14 +179842,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -183178,7 +179858,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -183187,7 +179867,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -183196,7 +179876,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -183205,7 +179885,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -183214,7 +179894,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -183223,7 +179903,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -183232,7 +179912,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -183241,7 +179921,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -183250,7 +179930,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -183259,322 +179939,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", + "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" @@ -183933,7 +180613,7 @@ "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", @@ -184051,15 +180731,15 @@ "id": "intermediate_cert_notAfter <#1>", "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", @@ -184178,7 +180858,7 @@ "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1704608868" + "finding": "1705213694" }, { "id": "HSTS_time", @@ -185125,7 +181805,7 @@ "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", @@ -185243,15 +181923,15 @@ "id": "intermediate_cert_notAfter <#1>", "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", @@ -185363,14 +182043,14 @@ "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1704608924" + "finding": "1705213749" }, { "id": "HSTS_time", @@ -186317,7 +182997,7 @@ "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", @@ -186435,15 +183115,15 @@ "id": "intermediate_cert_notAfter <#1>", "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", @@ -186555,14 +183235,14 @@ "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1704608979" + "finding": "1705213809" }, { "id": "HSTS_time", @@ -187157,70 +183837,70 @@ }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187228,7 +183908,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187236,7 +183916,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187244,7 +183924,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -187252,7 +183932,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -187260,7 +183940,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -187268,581 +183948,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDDCCA/SgAwIBAgISBLnI+5EFayg3VS+lcahLPPxHMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjMxNjE1MjdaFw0yNDAyMjExNjE1MjZaMCoxKDAmBgNVBAMTH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChzKzWaujki39uYhcc4Yh90l3qDD1JZC08aRsBaxQAIJu8DdjWxyniOSC/Vdftf3+2raujoqSlwfR2OzcA+Iz5CuBWWhbeRxtbJ/oEwQuCXEip8/cvz7s6Oc17EJ1XEDp4N+3yc4oOBm/pYHfVYqlj1uTX7dKFUFocGNYci8Tz74tN21P/ifOZpQPp6hHKVqKvEuYqvUVd3iUnbQIGMGTN9G16MGAsY2C55cmmAn8kNVPtgxByaiN7OmD5hkWhmueyxQPnBTY8RxAC71NhJQ+NXBQtZbL0Qm503bweyC7pwOv4Vq7Lhaa4SxqXrmHeBxFAfHtnv2p5H346CM3tX1TZAgMBAAGjggIiMIICHjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMS2rJFxEIre6IFQYb8qaEHKrrWSMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCoGA1UdEQQjMCGCH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYv9Le7KAAAEAwBIMEYCIQCukQ5xtzqdlJMh1hLe13RTT+6QgzceM1G5mHQvmTgTwwIhANQtXf/7h1zzlvyD3mt1vba6MNCy3mfGUi33QWvymevbAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL/S3utgAABAMARzBFAiBtcheU4XfjkcXbGoKS1pLBwZMbLJfqAEJHQd1rsB1bOAIhAL8rKCSbxknlo/NClpAMtRiVSU/HzvpSaqUdYt8z6gu8MA0GCSqGSIb3DQEBCwUAA4IBAQCJSe7k62nIXrIciWv/AJtT8zhmYm4lV2C5C0e8LAMBmRbm18/XZfBlcE9aPcdb2FBZGn/CtEjlGqhgG/9Pi2I28FEtHmn6sJpF3sF+wOMm29/XzdD9Cv/NtwnrkkQ5wreWsVNKEYlWue12ILEBKt9v5WWDaZ2AbuUg4FCa+QClkKDFOtaU2BzT686Gj+BLTkDjwRycjlZA5urVhgAIESNj7tyOfkoQ04FLIQW0QPisC+7q/bT/i7x4h8QwWWhgGFlET27y/uidMFZDuLneQflZMVY7pzXxfjS9kGOtIW4OT6XVvsHv9XUiWr98AZiMu3hTzFAmrFk41b/xn4KKom9U\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFDDCCA/SgAwIBAgISBLnI+5EFayg3VS+lcahLPPxHMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjMxNjE1MjdaFw0yNDAyMjExNjE1MjZaMCoxKDAmBgNVBAMTH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChzKzWaujki39uYhcc4Yh90l3qDD1JZC08aRsBaxQAIJu8DdjWxyniOSC/Vdftf3+2raujoqSlwfR2OzcA+Iz5CuBWWhbeRxtbJ/oEwQuCXEip8/cvz7s6Oc17EJ1XEDp4N+3yc4oOBm/pYHfVYqlj1uTX7dKFUFocGNYci8Tz74tN21P/ifOZpQPp6hHKVqKvEuYqvUVd3iUnbQIGMGTN9G16MGAsY2C55cmmAn8kNVPtgxByaiN7OmD5hkWhmueyxQPnBTY8RxAC71NhJQ+NXBQtZbL0Qm503bweyC7pwOv4Vq7Lhaa4SxqXrmHeBxFAfHtnv2p5H346CM3tX1TZAgMBAAGjggIiMIICHjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMS2rJFxEIre6IFQYb8qaEHKrrWSMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCoGA1UdEQQjMCGCH2xlbWFyY2hlLmluY2x1c2lvbi5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYv9Le7KAAAEAwBIMEYCIQCukQ5xtzqdlJMh1hLe13RTT+6QgzceM1G5mHQvmTgTwwIhANQtXf/7h1zzlvyD3mt1vba6MNCy3mfGUi33QWvymevbAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL/S3utgAABAMARzBFAiBtcheU4XfjkcXbGoKS1pLBwZMbLJfqAEJHQd1rsB1bOAIhAL8rKCSbxknlo/NClpAMtRiVSU/HzvpSaqUdYt8z6gu8MA0GCSqGSIb3DQEBCwUAA4IBAQCJSe7k62nIXrIciWv/AJtT8zhmYm4lV2C5C0e8LAMBmRbm18/XZfBlcE9aPcdb2FBZGn/CtEjlGqhgG/9Pi2I28FEtHmn6sJpF3sF+wOMm29/XzdD9Cv/NtwnrkkQ5wreWsVNKEYlWue12ILEBKt9v5WWDaZ2AbuUg4FCa+QClkKDFOtaU2BzT686Gj+BLTkDjwRycjlZA5urVhgAIESNj7tyOfkoQ04FLIQW0QPisC+7q/bT/i7x4h8QwWWhgGFlET27y/uidMFZDuLneQflZMVY7pzXxfjS9kGOtIW4OT6XVvsHv9XUiWr98AZiMu3hTzFAmrFk41b/xn4KKom9U\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1704609035" + "finding": "1705213865" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -187850,7 +184530,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -187859,7 +184539,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -187868,7 +184548,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -187877,7 +184557,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -187886,7 +184566,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -187894,7 +184574,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -187903,7 +184583,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -187912,7 +184592,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -187921,7 +184601,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -187930,14 +184610,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -187946,7 +184626,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -187955,7 +184635,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -187964,7 +184644,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -187973,7 +184653,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -187982,7 +184662,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -187991,7 +184671,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -188000,7 +184680,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -188009,7 +184689,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -188018,7 +184698,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -188027,392 +184707,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.109", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -188420,7 +185100,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -188428,7 +185108,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -188436,7 +185116,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -188444,7 +185124,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -188452,7 +185132,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -188460,581 +185140,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1704609090" + "finding": "1705213920" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -189042,7 +185722,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -189051,7 +185731,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -189060,7 +185740,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -189069,7 +185749,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -189078,7 +185758,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -189086,7 +185766,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -189095,7 +185775,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -189104,7 +185784,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -189113,7 +185793,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -189122,14 +185802,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -189138,7 +185818,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -189147,7 +185827,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -189156,7 +185836,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -189165,7 +185845,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -189174,7 +185854,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -189183,7 +185863,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -189192,7 +185872,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -189201,7 +185881,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -189210,7 +185890,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -189219,392 +185899,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/185.42.117.108", + "ip": "lemarche.inclusion.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { "id": "service", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -189612,7 +186292,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -189620,7 +186300,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -189628,7 +186308,7 @@ }, { "id": "cipherlist_LOW", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -189636,7 +186316,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -189644,7 +186324,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -189652,581 +186332,581 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" }, { "id": "cert_serialNumberLen", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" }, { "id": "cert_fingerprintSHA256", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "cert", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "cert_notAfter", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-21 16:15" }, { "id": "cert_extlifeSpan", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-23 16:15" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-21 16:15" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1704609146" + "finding": "1705213976" }, { "id": "HSTS_time", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -190234,7 +186914,7 @@ }, { "id": "heartbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -190243,7 +186923,7 @@ }, { "id": "CCS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -190252,7 +186932,7 @@ }, { "id": "ticketbleed", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -190261,7 +186941,7 @@ }, { "id": "ROBOT", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -190270,7 +186950,7 @@ }, { "id": "secure_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -190278,7 +186958,7 @@ }, { "id": "secure_client_renego", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -190287,7 +186967,7 @@ }, { "id": "CRIME_TLS", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -190296,7 +186976,7 @@ }, { "id": "BREACH", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -190305,7 +186985,7 @@ }, { "id": "POODLE_SSL", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -190314,14 +186994,14 @@ }, { "id": "fallback_SCSV", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -190330,7 +187010,7 @@ }, { "id": "FREAK", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -190339,7 +187019,7 @@ }, { "id": "DROWN", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -190348,7 +187028,7 @@ }, { "id": "DROWN_hint", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -190357,7 +187037,7 @@ }, { "id": "LOGJAM", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -190366,7 +187046,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -190375,7 +187055,7 @@ }, { "id": "BEAST", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -190384,7 +187064,7 @@ }, { "id": "LUCKY13", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -190393,7 +187073,7 @@ }, { "id": "winshock", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -190402,7 +187082,7 @@ }, { "id": "RC4", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -190411,1385 +187091,2545 @@ }, { "id": "clientsimulation-android_60", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS max-age is too short" }, { - "id": "scanTime", - "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.218", + "id": "service", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "504" - } - ], - "thirdparties": { - "trackers": [ - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Bouygues_logo.svg.height-80.png?Signature=OuaAUNraq1iVfY1sxDSZ2WTLMLk%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_SNCF_2011.svg.height-80.png?Signature=VHtWZYt9V1ToDFVGY28nHfhikcg%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo-groupe-la-poste-2021.height-80.png?Signature=vRDn1gNySYDfrtv2sIoVBHx9lDY%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/1280px-Logo_Vinci.svg.height-80.png?Signature=cAJCEsLoEjdL6cMgDFoQ5Q58yKs%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_Suez_2016.height-80.png?Signature=fIrbW%2FJ4FM6sy8vkzCS4zgbVwgU%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/LOGO-AFPA-VERT-PNG.height-80.png?Signature=cq7aw5BZxW3OEWFHWSy1FJ00n4w%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_Covea.svg.height-80.png?Signature=uhm43jF5q8CDI8%2BRExkCUn%2FirBE%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/1200px-Engie_logo.svg.height-80.png?Signature=5BT%2B8oOmI5yzLBx24EfagmdVom8%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/search-line_1.2e16d0ba.fill-150x150.png?Signature=i4li2Xh%2BVVwzDe3CXEQ%2BDpuqbUc%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/reply-all-line_1.2e16d0ba.fill-150x150.png?Signature=aiXjlrt%2BKRqN9sjmUefFWXOy7x8%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/git-repository-private-line.2e16d0ba.fill-150x150.png?Signature=pWri6lLwiEnTau3%2BD%2FHAG2ttaMU%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/pie-chart-line.2e16d0ba.fill-150x150.png?Signature=0J54Lu1S4NNuy6u5t2RZZJgU1ZU%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/ruler-line.2e16d0ba.fill-150x150.png?Signature=3GjqkfX6GKLqpAT0NHFmay6%2FBHw%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "unknown", - "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/shape-line.2e16d0ba.fill-150x150.png?Signature=JkPWhwafjQm0usK37OrefwxuXcc%3D&Expires=1704612245&AWSAccessKeyId=C8DR0288Y589EJK17A22" - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "google fonts", - "url": "https://fonts.googleapis.com/css2?family=Covered+By+Your+Grace&display=swap", - "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/lang/tarteaucitron.fr.min.js?v=20230203", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - }, - { - "type": "jsdelivr", - "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.services.min.js?v=20230203", - "details": { - "id": "jsdelivr", - "message": "Host files locally" - } - } - ], - "cookies": [ - { - "name": "csrftoken", - "value": "P3pFzCOIfKGbOalzJ5luYw4pNgL49rjI", - "domain": "lemarche.inclusion.beta.gouv.fr", - "path": "/", - "expires": 1736058245.623298, - "size": 41, - "httpOnly": true, - "secure": true, - "session": false, - "sameSite": "Lax", - "sameParty": false, - "sourceScheme": "Secure", - "sourcePort": 443 - } - ], - "headers": { - "connection": "keep-alive", - "content-length": "61738", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 06:24:05 GMT", - "referrer-policy": "same-origin", - "set-cookie": "csrftoken=P3pFzCOIfKGbOalzJ5luYw4pNgL49rjI; expires=Sun, 05 Jan 2025 06:24:05 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", - "sozu-id": "01HKH9FG5C5J1D0VYGCPS2XNCJ", - "strict-transport-security": "max-age=30", - "vary": "Cookie, Origin", - "x-content-type-options": "nosniff", - "x-frame-options": "DENY" + "finding": "HTTP" }, - "endpoints": [ - { - "hostname": "lemarche.inclusion.beta.gouv.fr", - "ip": "185.42.117.108", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "c4-prod.cellar-c2.services.clever-cloud.com", - "ip": "91.208.207.147", - "geoip": { - "continent": { - "code": "EU", - "geoname_id": 6255148, - "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" - } - }, - "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - }, - "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" - }, - "registered_country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", - "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" - } - } - } - }, - { - "hostname": "cdn.jsdelivr.net", - "ip": "146.75.37.229", - "geoip": { - "city": { - "geoname_id": 4781530, - "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" - }, - "postal": { - "code": "20190" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 6254928, - "iso_code": "VA", - "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" - } - } - ] - } - }, - { - "hostname": "fonts.googleapis.com", - "ip": "172.253.63.95", - "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - } - ] - }, - "wappalyzer": { - "urls": { - "https://lemarche.inclusion.beta.gouv.fr/": { - "status": 200 - } + { + "id": "pre_128cipher", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" }, - "technologies": [ - { - "slug": "wagtail", - "name": "Wagtail", - "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", - "confidence": 100, - "version": null, - "icon": "Wagtail.svg", - "website": "https://wagtail.org", - "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, - { - "slug": "python", - "name": "Python", - "description": "Python is an interpreted and general-purpose programming language.", - "confidence": 100, - "version": null, - "icon": "Python.png", - "website": "https://python.org", - "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 27, - "slug": "programming-languages", - "name": "Programming languages" - } - ] - }, - { - "slug": "firebase", - "name": "Firebase", - "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", - "confidence": 100, - "version": "8.6.2", - "icon": "Firebase.svg", - "website": "https://firebase.google.com", - "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 34, - "slug": "databases", - "name": "Databases" - }, - { - "id": 47, - "slug": "development", - "name": "Development" - } - ] - }, - { - "slug": "leaflet", - "name": "Leaflet", - "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", - "confidence": 100, - "version": "1.7.1", - "icon": "Leaflet.png", - "website": "https://leafletjs.com", - "cpe": null, - "categories": [ - { - "id": 35, - "slug": "maps", - "name": "Maps" - } - ], - "rootPath": true - }, - { - "slug": "django", - "name": "Django", - "description": "Django is a Python-based free and open-source web application framework.", - "confidence": 100, - "version": null, - "icon": "Django.png", - "website": "https://djangoproject.com", - "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 18, - "slug": "web-frameworks", - "name": "Web frameworks" - } - ] - }, - { - "slug": "bootstrap", - "name": "Bootstrap", - "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", - "confidence": 100, - "version": "4.6.0", - "icon": "Bootstrap.svg", - "website": "https://getbootstrap.com", - "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 66, - "slug": "ui-frameworks", - "name": "UI frameworks" - } - ], - "rootPath": true - }, - { - "slug": "alpine-js", - "name": "Alpine.js", - "description": null, - "confidence": 100, - "version": "3.11.1", - "icon": "Alpine.js.png", - "website": "https://github.com/alpinejs/alpine", - "cpe": null, - "categories": [ - { - "id": 12, - "slug": "javascript-frameworks", - "name": "JavaScript frameworks" - } - ], - "rootPath": true - }, - { - "slug": "jsdelivr", - "name": "jsDelivr", - "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", - "confidence": 100, - "version": null, - "icon": "jsdelivr-icon.svg", - "website": "https://www.jsdelivr.com/", - "cpe": null, - "categories": [ - { - "id": 31, - "slug": "cdn", - "name": "CDN" - } - ], - "rootPath": true - }, - { - "slug": "matomo-tag-manager", - "name": "Matomo Tag Manager", - "description": "Matomo Tag Manager manages tracking and marketing tags.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://developer.matomo.org/guides/tagmanager/introduction", - "cpe": null, - "categories": [ - { - "id": 42, - "slug": "tag-managers", - "name": "Tag managers" - } - ], - "rootPath": true - }, - { - "slug": "matomo-analytics", - "name": "Matomo Analytics", - "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", - "confidence": 100, - "version": null, - "icon": "Matomo.svg", - "website": "https://matomo.org", - "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ], - "rootPath": true - }, - { - "slug": "livefyre", - "name": "Livefyre", - "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", - "confidence": 0, - "version": "1.7.1", - "icon": "Livefyre.png", - "website": "https://livefyre.com", - "cpe": null, - "categories": [ - { - "id": 15, - "slug": "comment-systems", - "name": "Comment systems" - } - ], - "rootPath": true - }, - { - "slug": "jquery", - "name": "jQuery", - "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", - "confidence": 100, - "version": "3.4.1", - "icon": "jQuery.svg", - "website": "https://jquery.com", - "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "htmx", - "name": "Htmx", - "description": "Htmx is a JavaScript library for performing AJAX requests, triggering CSS transitions, and invoking WebSocket and server-sent events directly from HTML elements.", - "confidence": 100, - "version": null, - "icon": "Htmx.svg", - "website": "https://htmx.org", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "core-js", - "name": "core-js", - "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", - "confidence": 100, - "version": "2.5.7", - "icon": "core-js.png", - "website": "https://github.com/zloirock/core-js", - "cpe": null, - "categories": [ - { - "id": 59, - "slug": "javascript-libraries", - "name": "JavaScript libraries" - } - ], - "rootPath": true - }, - { - "slug": "recaptcha", - "name": "reCAPTCHA", - "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", - "confidence": 100, - "version": null, - "icon": "reCAPTCHA.svg", - "website": "https://www.google.com/recaptcha/", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, - { - "slug": "linkedin-insight-tag", - "name": "Linkedin Insight Tag", - "description": "LinkedIn Insight Tag is a lightweight JavaScript tag that powers conversion tracking, website audiences, and website demographics.", - "confidence": 100, - "version": null, - "icon": "Linkedin.svg", - "website": "https://business.linkedin.com/marketing-solutions/insight-tag", - "cpe": null, - "categories": [ - { - "id": 10, - "slug": "analytics", - "name": "Analytics" - } - ] - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, - { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", - "confidence": 100, - "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", - "cpe": null, - "categories": [ - { - "id": 75, - "slug": "email", - "name": "Email" - } - ], - "rootPath": true - }, - { - "slug": "open-graph", - "name": "Open Graph", - "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", - "confidence": 100, - "version": null, - "icon": "Open Graph.png", - "website": "https://ogp.me", - "cpe": null, - "categories": [ - { - "id": 19, - "slug": "miscellaneous", - "name": "Miscellaneous" - } - ], - "rootPath": true - } - ] - }, - "zap": { - "@programName": "ZAP", - "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 06:23:05", - "site": [ - { - "@name": "https://lemarche.inclusion.beta.gouv.fr", - "@host": "lemarche.inclusion.beta.gouv.fr", - "@port": "443", - "@ssl": "true", - "alerts": [ - { - "name": "PII Disclosure", - "riskcode": "3", - "confidence": "2", - "riskdesc": "High (Medium)", - "desc": "

The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.

" - }, - { - "name": "Absence of Anti-CSRF Tokens", - "riskcode": "2", - "confidence": "1", - "riskdesc": "Medium (Low)", - "desc": "

No Anti-CSRF tokens were found in a HTML submission form.

A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.

CSRF attacks are effective in a number of situations, including:

* The victim has an active session on the target site.

* The victim is authenticated via HTTP auth on the target site.

* The victim is on the same local network as the target site.

CSRF has primarily been used to perform an action against a target site using the victim's privileges, but recent techniques have been discovered to disclose information by gaining access to the response. The risk of information disclosure is dramatically increased when the target site is vulnerable to XSS, because XSS can be used as a platform for CSRF, allowing the attack to operate within the bounds of the same-origin policy.

" - }, - { - "name": "Content Security Policy (CSP) Header Not Set", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, - { - "name": "Cross-Domain Misconfiguration", - "riskcode": "2", - "confidence": "2", - "riskdesc": "Medium (Medium)", - "desc": "

Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server

" - }, - { - "name": "Sub Resource Integrity Attribute Missing", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.

" - }, - { - "name": "Cross-Domain JavaScript Source File Inclusion", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

The page includes one or more script files from a third-party domain.

" - }, - { - "name": "Dangerous JS Functions", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" - }, - { - "name": "Permissions Policy Header Not Set", - "riskcode": "1", - "confidence": "2", - "riskdesc": "Low (Medium)", - "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" - }, - { - "name": "Timestamp Disclosure - Unix", - "riskcode": "1", - "confidence": "1", - "riskdesc": "Low (Low)", - "desc": "

A timestamp was disclosed by the application/web server - Unix

" - }, - { - "name": "Authentication Request Identified", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

The given request has been identified as an authentication request. The 'Other Info' field contains a set of key=value lines which identify any relevant fields. If the request is in a context which has an Authentication Method set to \"Auto-Detect\" then this rule will change the authentication to match the request identified.

" - }, - { - "name": "Base64 Disclosure", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" - }, - { - "name": "Information Disclosure - Sensitive Information in URL", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The request appeared to contain sensitive information leaked in the URL. This can violate PCI and most organizational compliance policies. You can configure the list of strings for this check to add or remove values specific to your environment.

" - }, - { - "name": "Information Disclosure - Suspicious Comments", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" - }, - { - "name": "Modern Web Application", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" - }, - { - "name": "Non-Storable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" - }, - { - "name": "Re-examine Cache-control Directives", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" - }, - { - "name": "Sec-Fetch-Dest Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.

" - }, - { - "name": "Sec-Fetch-Mode Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.

" - }, - { - "name": "Sec-Fetch-Site Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies the relationship between request initiator's origin and target's origin.

" - }, - { - "name": "Sec-Fetch-User Header is Missing", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

Specifies if a navigation request was initiated by a user.

" - }, - { - "name": "Session Management Response Identified", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to \"Auto-Detect\" then this rule will change the session management to use the tokens identified.

" - }, - { - "name": "Storable and Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" - }, - { - "name": "User Controllable HTML Element Attribute (Potential XSS)", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.

" - } - ] - } - ] - }, - "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "lemarche.inclusion.beta.gouv.fr.", - "matched-at": "lemarche.inclusion.beta.gouv.fr", - "timestamp": "2024-01-07T06:36:20.1490025Z", - "matcher-status": true + "id": "SSLv2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "not offered" }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "lemarche.inclusion.beta.gouv.fr.", - "matched-at": "lemarche.inclusion.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ~all\"" - ], - "timestamp": "2024-01-07T06:36:20.310458258Z", - "matcher-status": true + "id": "SSLv3", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "not offered" }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "lemarche.inclusion.beta.gouv.fr.", - "matched-at": "lemarche.inclusion.beta.gouv.fr", - "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "id": "TLS1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "FS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1" + }, + { + "id": "TLS_extensions", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "TLS_timestamp", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "SHA256 with RSA" + }, + { + "id": "cert_keySize", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "04B9C8FB91056B2837552FA571A84B3CFC47" + }, + { + "id": "cert_serialNumberLen", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "18" + }, + { + "id": "cert_fingerprintSHA1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "4CF3F0333EE01790FC9F3C286A400BE2FCFD1B59" + }, + { + "id": "cert_fingerprintSHA256", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" + }, + { + "id": "cert", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "lemarche.inclusion.beta.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "request w/o SNI didn't succeed" + }, + { + "id": "cert_subjectAltName", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "lemarche.inclusion.beta.gouv.fr" + }, + { + "id": "cert_trust", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "38 >= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "2023-11-23 16:15" + }, + { + "id": "cert_notAfter", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "2024-02-21 16:15" + }, + { + "id": "cert_extlifeSpan", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "4" + }, + { + "id": "certs_list_ordering_problem", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "LOW", + "finding": "yes" + }, + { + "id": "cert_caIssuers", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "2023-11-23 16:15" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "MEDIUM", + "finding": "2024-02-21 16:15" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "MEDIUM", + "finding": "expires <= 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "lemarche.inclusion.beta.gouv.fr <-- R3" + }, + { + "id": "intermediate_cert <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#3>", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "1705214031" + }, + { + "id": "HSTS_time", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "MEDIUM", + "finding": "max-age too short. 0 days (=30 seconds) < 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Referrer-Policy", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "same-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" + }, + { + "id": "ROBOT", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "likely not vulnerable (timed out)" + }, + { + "id": "CRIME_TLS", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=962AB43EFA5BEB5D9438AD5811BCDC81C80CB49C249830A2D8A3876A09A9C6D3" + }, + { + "id": "LOGJAM", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS max-age is too short" + }, + { + "id": "scanTime", + "ip": "lemarche.inclusion.beta.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "507" + } + ], + "thirdparties": { + "trackers": [ + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Bouygues_logo.svg.height-80.png?Signature=oC%2B6voGh5AP%2FFL%2BDAOznrI3%2BIa8%3D&Expires=1705217126&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_SNCF_2011.svg.height-80.png?Signature=X1tCY%2FykEB8c2fkZw1fXc3y7P40%3D&Expires=1705217126&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo-groupe-la-poste-2021.height-80.png?Signature=6xs4se51YsAUNH8QD1UVKj7%2BihY%3D&Expires=1705217126&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/1280px-Logo_Vinci.svg.height-80.png?Signature=1KV43eGnwZJ84Pub0TB0vClljLg%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_Suez_2016.height-80.png?Signature=Wmq47nZdWwLVZAenRe8MQptQT%2Fk%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/LOGO-AFPA-VERT-PNG.height-80.png?Signature=r5FYwJuWJtdBl56JKkCLyb3zhwM%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/Logo_Covea.svg.height-80.png?Signature=Zx2SqPdDnjZ2sEOOWhvCrFLTwjk%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/1200px-Engie_logo.svg.height-80.png?Signature=JX4FR%2F3vmOaJtjpbRwEi0rXle%2FA%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/search-line_1.2e16d0ba.fill-150x150.png?Signature=LH1AZIQjcB6cbtx3gtV4ifp5b4k%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/reply-all-line_1.2e16d0ba.fill-150x150.png?Signature=p5MePV3YyU9BY1exZPrK5R5E%2FTs%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/git-repository-private-line.2e16d0ba.fill-150x150.png?Signature=hztPhioD%2B2xQ03syT1S6RXj%2BnIA%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/pie-chart-line.2e16d0ba.fill-150x150.png?Signature=6O8tAgM2iOU3DTRJTN6xvDInbFg%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/ruler-line.2e16d0ba.fill-150x150.png?Signature=8dG8%2BvSXkrqwtj1gmA%2BQnNMJLXY%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "unknown", + "url": "https://c4-prod.cellar-c2.services.clever-cloud.com/images/shape-line.2e16d0ba.fill-150x150.png?Signature=5xXK9S%2BDah9VnftWrvuScjA21TY%3D&Expires=1705217127&AWSAccessKeyId=C8DR0288Y589EJK17A22" + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "google fonts", + "url": "https://fonts.googleapis.com/css2?family=Covered+By+Your+Grace&display=swap", + "details": { + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/lang/tarteaucitron.fr.min.js?v=20230203", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.services.min.js?v=20230203", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + } + ], + "cookies": [ + { + "name": "csrftoken", + "value": "LZDytavaikrRzIB6WDXKWj5DC4nlgV53", + "domain": "lemarche.inclusion.beta.gouv.fr", + "path": "/", + "expires": 1736663127.115032, + "size": 41, + "httpOnly": true, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], + "headers": { + "connection": "keep-alive", + "content-length": "61748", + "content-type": "text/html; charset=utf-8", + "cross-origin-opener-policy": "same-origin", + "date": "Sun, 14 Jan 2024 06:25:27 GMT", + "referrer-policy": "same-origin", + "set-cookie": "csrftoken=LZDytavaikrRzIB6WDXKWj5DC4nlgV53; expires=Sun, 12 Jan 2025 06:25:27 GMT; HttpOnly; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "sozu-id": "01HM3AB0T4RD9XVEG213C2FRDX", + "strict-transport-security": "max-age=30", + "vary": "Cookie, Origin", + "x-content-type-options": "nosniff", + "x-frame-options": "DENY" + }, + "endpoints": [ + { + "hostname": "lemarche.inclusion.beta.gouv.fr", + "ip": "46.252.181.104", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "c4-prod.cellar-c2.services.clever-cloud.com", + "ip": "91.208.207.147", + "geoip": { + "continent": { + "code": "EU", + "geoname_id": 6255148, + "names": { + "de": "Europa", + "en": "Europe", + "es": "Europa", + "fr": "Europe", + "ja": "ヨーロッパ", + "pt-BR": "Europa", + "ru": "Европа", + "zh-CN": "欧洲" + } + }, + "country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + }, + "location": { + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, + "time_zone": "Europe/Paris" + }, + "registered_country": { + "geoname_id": 3017382, + "is_in_european_union": true, + "iso_code": "FR", + "names": { + "de": "Frankreich", + "en": "France", + "es": "Francia", + "fr": "France", + "ja": "フランス共和国", + "pt-BR": "França", + "ru": "Франция", + "zh-CN": "法国" + } + } + } + }, + { + "hostname": "cdn.jsdelivr.net", + "ip": "146.75.37.229", + "geoip": { + "city": { + "geoname_id": 4781530, + "names": { + "de": "Reston", + "en": "Reston", + "ja": "レストン", + "ru": "Рестон" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 38.9609, + "longitude": -77.3429, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20190" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] + } + }, + { + "hostname": "fonts.googleapis.com", + "ip": "142.251.16.95", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + } + ] + }, + "wappalyzer": { + "urls": { + "https://lemarche.inclusion.beta.gouv.fr/": { + "status": 200 + } + }, + "technologies": [ + { + "slug": "wagtail", + "name": "Wagtail", + "description": "Wagtail is a Django content management system (CMS) focused on flexibility and user experience.", + "confidence": 100, + "version": null, + "icon": "Wagtail.svg", + "website": "https://wagtail.org", + "cpe": "cpe:2.3:a:torchbox:wagtail:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, + { + "slug": "python", + "name": "Python", + "description": "Python is an interpreted and general-purpose programming language.", + "confidence": 100, + "version": null, + "icon": "Python.png", + "website": "https://python.org", + "cpe": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "confidence": 100, + "version": "8.6.2", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ] + }, + { + "slug": "leaflet", + "name": "Leaflet", + "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", + "confidence": 100, + "version": "1.7.1", + "icon": "Leaflet.png", + "website": "https://leafletjs.com", + "cpe": null, + "categories": [ + { + "id": 35, + "slug": "maps", + "name": "Maps" + } + ], + "rootPath": true + }, + { + "slug": "django", + "name": "Django", + "description": "Django is a Python-based free and open-source web application framework.", + "confidence": 100, + "version": null, + "icon": "Django.png", + "website": "https://djangoproject.com", + "cpe": "cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ] + }, + { + "slug": "bootstrap", + "name": "Bootstrap", + "description": "Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.", + "confidence": 100, + "version": "4.6.0", + "icon": "Bootstrap.svg", + "website": "https://getbootstrap.com", + "cpe": "cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 66, + "slug": "ui-frameworks", + "name": "UI frameworks" + } + ], + "rootPath": true + }, + { + "slug": "alpine-js", + "name": "Alpine.js", + "description": null, + "confidence": 100, + "version": "3.11.1", + "icon": "Alpine.js.png", + "website": "https://github.com/alpinejs/alpine", + "cpe": null, + "categories": [ + { + "id": 12, + "slug": "javascript-frameworks", + "name": "JavaScript frameworks" + } + ], + "rootPath": true + }, + { + "slug": "jsdelivr", + "name": "jsDelivr", + "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", + "confidence": 100, + "version": null, + "icon": "jsdelivr-icon.svg", + "website": "https://www.jsdelivr.com/", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "matomo-tag-manager", + "name": "Matomo Tag Manager", + "description": "Matomo Tag Manager manages tracking and marketing tags.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://developer.matomo.org/guides/tagmanager/introduction", + "cpe": null, + "categories": [ + { + "id": 42, + "slug": "tag-managers", + "name": "Tag managers" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "livefyre", + "name": "Livefyre", + "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", + "confidence": 0, + "version": "1.7.1", + "icon": "Livefyre.png", + "website": "https://livefyre.com", + "cpe": null, + "categories": [ + { + "id": 15, + "slug": "comment-systems", + "name": "Comment systems" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.4.1", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "htmx", + "name": "Htmx", + "description": "Htmx is a JavaScript library for performing AJAX requests, triggering CSS transitions, and invoking WebSocket and server-sent events directly from HTML elements.", + "confidence": 100, + "version": null, + "icon": "Htmx.svg", + "website": "https://htmx.org", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "2.5.7", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, + { + "slug": "linkedin-insight-tag", + "name": "Linkedin Insight Tag", + "description": "LinkedIn Insight Tag is a lightweight JavaScript tag that powers conversion tracking, website audiences, and website demographics.", + "confidence": 100, + "version": null, + "icon": "Linkedin.svg", + "website": "https://business.linkedin.com/marketing-solutions/insight-tag", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ] + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, + { + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", + "confidence": 100, + "version": null, + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", + "cpe": null, + "categories": [ + { + "id": 75, + "slug": "email", + "name": "Email" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + } + ] + }, + "zap": { + "@programName": "ZAP", + "@version": "2.14.0", + "@generated": "Sun, 14 Jan 2024 06:24:26", + "site": [ + { + "@name": "https://lemarche.inclusion.beta.gouv.fr", + "@host": "lemarche.inclusion.beta.gouv.fr", + "@port": "443", + "@ssl": "true", + "alerts": [ + { + "name": "PII Disclosure", + "riskcode": "3", + "confidence": "2", + "riskdesc": "High (Medium)", + "desc": "

The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.

" + }, + { + "name": "Absence of Anti-CSRF Tokens", + "riskcode": "2", + "confidence": "1", + "riskdesc": "Medium (Low)", + "desc": "

No Anti-CSRF tokens were found in a HTML submission form.

A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.

CSRF attacks are effective in a number of situations, including:

* The victim has an active session on the target site.

* The victim is authenticated via HTTP auth on the target site.

* The victim is on the same local network as the target site.

CSRF has primarily been used to perform an action against a target site using the victim's privileges, but recent techniques have been discovered to disclose information by gaining access to the response. The risk of information disclosure is dramatically increased when the target site is vulnerable to XSS, because XSS can be used as a platform for CSRF, allowing the attack to operate within the bounds of the same-origin policy.

" + }, + { + "name": "Content Security Policy (CSP) Header Not Set", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "Cross-Domain Misconfiguration", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "

Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server

" + }, + { + "name": "Sub Resource Integrity Attribute Missing", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.

" + }, + { + "name": "Cross-Domain JavaScript Source File Inclusion", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

The page includes one or more script files from a third-party domain.

" + }, + { + "name": "Dangerous JS Functions", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" + }, + { + "name": "Permissions Policy Header Not Set", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" + }, + { + "name": "Strict-Transport-Security Header Not Set", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.

" + }, + { + "name": "Timestamp Disclosure - Unix", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A timestamp was disclosed by the application/web server - Unix

" + }, + { + "name": "Authentication Request Identified", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

The given request has been identified as an authentication request. The 'Other Info' field contains a set of key=value lines which identify any relevant fields. If the request is in a context which has an Authentication Method set to \"Auto-Detect\" then this rule will change the authentication to match the request identified.

" + }, + { + "name": "Base64 Disclosure", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" + }, + { + "name": "Information Disclosure - Sensitive Information in URL", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The request appeared to contain sensitive information leaked in the URL. This can violate PCI and most organizational compliance policies. You can configure the list of strings for this check to add or remove values specific to your environment.

" + }, + { + "name": "Information Disclosure - Suspicious Comments", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" + }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" + }, + { + "name": "Non-Storable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" + }, + { + "name": "Re-examine Cache-control Directives", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" + }, + { + "name": "Sec-Fetch-Dest Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Specifies how and where the data would be used. For instance, if the value is audio, then the requested resource must be audio data and not any other type of resource.

" + }, + { + "name": "Sec-Fetch-Mode Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.

" + }, + { + "name": "Sec-Fetch-Site Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Specifies the relationship between request initiator's origin and target's origin.

" + }, + { + "name": "Sec-Fetch-User Header is Missing", + "riskcode": "0", + "confidence": "3", + "riskdesc": "Informational (High)", + "desc": "

Specifies if a navigation request was initiated by a user.

" + }, + { + "name": "Session Management Response Identified", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to \"Auto-Detect\" then this rule will change the session management to use the tokens identified.

" + }, + { + "name": "Storable and Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" + }, + { + "name": "User Controllable HTML Element Attribute (Potential XSS)", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.

" + } + ] + } + ] + }, + "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "lemarche.inclusion.beta.gouv.fr.", + "matched-at": "lemarche.inclusion.beta.gouv.fr", + "timestamp": "2024-01-14T06:37:44.887496285Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "lemarche.inclusion.beta.gouv.fr.", + "matched-at": "lemarche.inclusion.beta.gouv.fr", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T06:36:20.332134472Z", + "timestamp": "2024-01-14T06:37:44.887714872Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "DNS TXT Record Detected", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "txt" ], - "description": "DNS DMARC information was detected.\n", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -191799,17 +189639,16 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "lemarche.inclusion.beta.gouv.fr.", - "matched-at": "_dmarc.lemarche.inclusion.beta.gouv.fr", + "matched-at": "lemarche.inclusion.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none\"" + "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2024-01-07T06:36:20.535926684Z", + "timestamp": "2024-01-14T06:37:45.119529616Z", "matcher-status": true }, { @@ -191849,7 +189688,47 @@ "20 mx2.alwaysdata.com.", "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T06:36:21.396150393Z", + "timestamp": "2024-01-14T06:37:45.120351388Z", + "matcher-status": true + }, + { + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "info": { + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "lemarche.inclusion.beta.gouv.fr.", + "matched-at": "_dmarc.lemarche.inclusion.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none\"" + ], + "timestamp": "2024-01-14T06:37:45.886965989Z", "matcher-status": true }, { @@ -191888,7 +189767,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:36:38.365849438Z", + "timestamp": "2024-01-14T06:38:04.512355898Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191927,7 +189806,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:36:38.378788015Z", + "timestamp": "2024-01-14T06:38:04.526400471Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191965,7 +189844,7 @@ "AWSAccessKeyId=C8DR0288Y589EJK17A22\"" ], "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:21.919857828Z", + "timestamp": "2024-01-14T06:38:51.044147362Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -191992,7 +189871,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:22.214766543Z", + "timestamp": "2024-01-14T06:38:51.34601615Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -192019,7 +189898,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:22.2148239Z", + "timestamp": "2024-01-14T06:38:51.346049813Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -192056,7 +189935,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:37.2466494Z", + "timestamp": "2024-01-14T06:39:08.207622357Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -192093,7 +189972,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:37.246696578Z", + "timestamp": "2024-01-14T06:39:08.207662401Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -192130,7 +190009,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:37.246716526Z", + "timestamp": "2024-01-14T06:39:08.207675315Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -192167,7 +190046,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:37.246733487Z", + "timestamp": "2024-01-14T06:39:08.207692737Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -192204,7 +190083,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:37.246746982Z", + "timestamp": "2024-01-14T06:39:08.207706974Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -192241,7 +190120,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:37.246759315Z", + "timestamp": "2024-01-14T06:39:08.20772094Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -192283,7 +190162,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr/api/docs/", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:37:45.337732962Z", + "timestamp": "2024-01-14T06:39:17.644265322Z", "curl-command": "curl -X 'GET' -H 'Accept: text/html' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr/api/docs/'", "matcher-status": true }, @@ -192317,12 +190196,12 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr/", "extracted-results": [ - "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js", "https://cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js", - "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js" + "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.11.0/tarteaucitron.min.js", + "https://cdn.jsdelivr.net/npm/jquery@3.4.1/dist/jquery.min.js" ], "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:38:00.784386465Z", + "timestamp": "2024-01-14T06:39:34.588250286Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: lemarche.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -192362,7 +190241,7 @@ "host": "https://lemarche.inclusion.beta.gouv.fr", "matched-at": "https://lemarche.inclusion.beta.gouv.fr/", "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:38:13.445745674Z", + "timestamp": "2024-01-14T06:39:47.869916539Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: lemarche.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://lemarche.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -192411,8 +190290,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "91.208.207.214", - "timestamp": "2024-01-07T06:40:01.421032094Z", + "ip": "46.252.181.103", + "timestamp": "2024-01-14T06:42:21.267753038Z", "matcher-status": true }, { @@ -192442,7 +190321,7 @@ "Let's Encrypt" ], "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:40:38.432084939Z", + "timestamp": "2024-01-14T06:42:27.158212106Z", "matcher-status": true }, { @@ -192472,7 +190351,7 @@ "lemarche.inclusion.beta.gouv.fr" ], "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:40:38.432268573Z", + "timestamp": "2024-01-14T06:42:27.158323423Z", "matcher-status": true }, { @@ -192503,7 +190382,7 @@ "tls12" ], "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:40:45.577750838Z", + "timestamp": "2024-01-14T06:42:28.629720946Z", "matcher-status": true }, { @@ -192534,7 +190413,7 @@ "tls13" ], "ip": "46.252.181.103", - "timestamp": "2024-01-07T06:40:49.968374705Z", + "timestamp": "2024-01-14T06:42:28.826016588Z", "matcher-status": true } ], @@ -192542,7 +190421,7 @@ { "requestedUrl": "https://lemarche.inclusion.beta.gouv.fr/", "finalUrl": "https://lemarche.inclusion.beta.gouv.fr/", - "fetchTime": "2024-01-07T06:23:19.767Z", + "fetchTime": "2024-01-14T06:24:40.447Z", "runWarnings": [], "categories": { "performance": { @@ -192605,53 +190484,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3500, + "numericValue": 3507, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3500, - "firstMeaningfulPaint": 3500, - "largestContentfulPaint": 4188, - "interactive": 3500, - "speedIndex": 3500, + "firstContentfulPaint": 3507, + "firstMeaningfulPaint": 3507, + "largestContentfulPaint": 4197, + "interactive": 3507, + "speedIndex": 3507, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.0038670103285047743, "cumulativeLayoutShiftMainFrame": 0.0038670103285047743, "totalCumulativeLayoutShift": 0.0038670103285047743, "observedTimeOrigin": 0, - "observedTimeOriginTs": 286719388, + "observedTimeOriginTs": 710218705, "observedNavigationStart": 0, - "observedNavigationStartTs": 286719388, - "observedFirstPaint": 406, - "observedFirstPaintTs": 287125106, - "observedFirstContentfulPaint": 406, - "observedFirstContentfulPaintTs": 287125106, - "observedFirstContentfulPaintAllFrames": 406, - "observedFirstContentfulPaintAllFramesTs": 287125106, - "observedFirstMeaningfulPaint": 406, - "observedFirstMeaningfulPaintTs": 287125106, - "observedLargestContentfulPaint": 406, - "observedLargestContentfulPaintTs": 287125106, - "observedLargestContentfulPaintAllFrames": 406, - "observedLargestContentfulPaintAllFramesTs": 287125106, - "observedTraceEnd": 3687, - "observedTraceEndTs": 290406589, - "observedLoad": 1379, - "observedLoadTs": 288098433, + "observedNavigationStartTs": 710218705, + "observedFirstPaint": 424, + "observedFirstPaintTs": 710642796, + "observedFirstContentfulPaint": 424, + "observedFirstContentfulPaintTs": 710642796, + "observedFirstContentfulPaintAllFrames": 424, + "observedFirstContentfulPaintAllFramesTs": 710642796, + "observedFirstMeaningfulPaint": 424, + "observedFirstMeaningfulPaintTs": 710642796, + "observedLargestContentfulPaint": 424, + "observedLargestContentfulPaintTs": 710642796, + "observedLargestContentfulPaintAllFrames": 424, + "observedLargestContentfulPaintAllFramesTs": 710642796, + "observedTraceEnd": 3494, + "observedTraceEndTs": 713712233, + "observedLoad": 1184, + "observedLoadTs": 711402535, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 286719897, + "observedDomContentLoadedTs": 710219239, "observedCumulativeLayoutShift": 0.0038670103285047743, "observedCumulativeLayoutShiftMainFrame": 0.0038670103285047743, "observedTotalCumulativeLayoutShift": 0.0038670103285047743, "observedFirstVisualChange": 402, - "observedFirstVisualChangeTs": 287121388, - "observedLastVisualChange": 1452, - "observedLastVisualChangeTs": 288171388, - "observedSpeedIndex": 905, - "observedSpeedIndexTs": 287624828 + "observedFirstVisualChangeTs": 710620705, + "observedLastVisualChange": 1252, + "observedLastVisualChangeTs": 711470705, + "observedSpeedIndex": 809, + "observedSpeedIndexTs": 711027224 }, { "lcpInvalidated": false @@ -192673,19 +190552,19 @@ "numScripts": 16, "numStylesheets": 3, "numFonts": 3, - "numTasks": 23, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 10949890.53100485, - "maxRtt": 83.43999999999998, - "maxServerLatency": 17.72299999999997, - "totalByteWeight": 911499, - "totalTaskTime": 4.087999999999999, - "mainDocumentTransferSize": 62255 + "throughput": 11604176.247709973, + "maxRtt": 83.35699999999997, + "maxServerLatency": 16.709999999999994, + "totalByteWeight": 911524, + "totalTaskTime": 3.901, + "mainDocumentTransferSize": 62281 } ] } @@ -192775,12 +190654,12 @@ "sonarcloud": null, "summary": { "httpGrade": "C", - "apdex": 0.948, - "apdexGrade": "F", - "uptime": 100, + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.922, "uptimeGrade": "A", "nmapGrade": "B", - "nmapOpenPortsCount": 13, + "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-02-21T16:15:00.000Z", @@ -192815,7 +190694,7 @@ "http": { "url": "https://ma-cantine.agriculture.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 06:45:55 GMT", + "end_time": "Sun, 14 Jan 2024 06:44:04 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -192823,21 +190702,21 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Language": "fr", - "Content-Security-Policy": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat", + "Content-Security-Policy": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 06:45:54 GMT", + "Date": "Sun, 14 Jan 2024 06:44:03 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=vcNyzVidKwnip3U5xHlBV5T72MWF6rDF; expires=Sun, 05 Jan 2025 06:45:54 GMT; Max-Age=31449600; Path=/; SameSite=Lax", - "Sozu-Id": "01HKHAQDX58QF7M2FZ3Q52MGB6", + "Set-Cookie": "csrftoken=nmXw8ainYvuGTNd85qfWGpV5dmeNATtp; expires=Sun, 12 Jan 2025 06:44:03 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "Sozu-Id": "01HM3BD2N3KSQ6DRPMPNBK1Q57", "Transfer-Encoding": "chunked", "Vary": "Cookie, Accept-Language", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 46230424, + "scan_id": 46457691, "score": 30, - "start_time": "Sun, 07 Jan 2024 06:43:05 GMT", + "start_time": "Sun, 14 Jan 2024 06:44:01 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -192850,57 +190729,57 @@ "output": { "data": { "connect-src": [ + "stats.beta.gouv.fr", "wss://client.relay.crisp.chat", - "ws:", "entreprise.data.gouv.fr", - "api-adresse.data.gouv.fr", - "stats.beta.gouv.fr", "'self'", - "plateforme.adresse.data.gouv.fr", - "client.crisp.chat" + "ws:", + "client.crisp.chat", + "api-adresse.data.gouv.fr", + "plateforme.adresse.data.gouv.fr" ], "default-src": [ "'self'" ], "font-src": [ - "client.crisp.chat", - "'self'" + "'self'", + "client.crisp.chat" ], "frame-src": [ - "ma-cantine.crisp.help", + "'self'", "ma-cantine-metabase.cleverapps.io", - "'self'" + "ma-cantine.crisp.help" ], "img-src": [ - "voxusagers.numerique.gouv.fr", - "cellar-c2.services.clever-cloud.com", + "stats.beta.gouv.fr", + "'self'", + "jedonnemonavis.numerique.gouv.fr", "data:", "image.crisp.chat", - "'self'", - "'unsafe-inline'", + "voxusagers.numerique.gouv.fr", "www.w3.org", - "jedonnemonavis.numerique.gouv.fr", - "stats.beta.gouv.fr" + "'unsafe-inline'", + "cellar-c2.services.clever-cloud.com" ], "media-src": [ - "cellar-c2.services.clever-cloud.com", - "'self'" + "'self'", + "cellar-c2.services.clever-cloud.com" ], "object-src": [ - "cellar-c2.services.clever-cloud.com", - "'self'" + "'self'", + "cellar-c2.services.clever-cloud.com" ], "script-src": [ - "stats.beta.gouv.fr", + "'self'", "'unsafe-inline'", - "client.crisp.chat", - "'self'" + "stats.beta.gouv.fr", + "client.crisp.chat" ], "style-src": [ - "netdna.bootstrapcdn.com", + "'self'", "'unsafe-inline'", - "client.crisp.chat", - "'self'" + "netdna.bootstrapcdn.com", + "client.crisp.chat" ] }, "http": true, @@ -192943,7 +190822,7 @@ "data": { "csrftoken": { "domain": "ma-cantine.agriculture.gouv.fr", - "expires": 1736059555, + "expires": 1736664244, "httponly": false, "max-age": null, "path": "/", @@ -193088,7 +190967,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-04T09:07:17Z", + "up_since": "2024-01-12T11:52:42Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -193102,8 +190981,8 @@ "email:1740993840", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T07:02:12Z", - "next_check_at": "2024-01-07T07:07:11Z", + "last_check_at": "2024-01-14T07:00:27Z", + "next_check_at": "2024-01-14T07:05:26Z", "created_at": "2023-06-22T12:45:00Z", "mute_until": null, "favicon_url": "https://ma-cantine.agriculture.gouv.fr/static/images/favicon-marianne.png", @@ -193111,7 +190990,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T06:37:21Z", + "tested_at": "2024-01-14T06:55:30Z", "expires_at": "2024-08-03T23:59:59Z", "valid": true, "error": null @@ -193120,11 +190999,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 178, - "connection": 155, - "handshake": 163, - "response": 167, - "total": 662 + "namelookup": 244, + "connection": 121, + "handshake": 122, + "response": 135, + "total": 622 } }, "uptimeGrade": "A", @@ -193133,17 +191012,8 @@ "nmap": { "host": "ma-cantine.agriculture.gouv.fr", "protocol": "tcp", - "closed_ports": "985", + "closed_ports": "986", "open_ports": [ - { - "service": { - "name": "ssh", - "product": "OpenSSH", - "id": "22", - "version": "9.4", - "vulnerabilities": [] - } - }, { "service": { "name": "http", @@ -193253,70 +191123,70 @@ "testssl": [ { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -193324,7 +191194,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -193332,7 +191202,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -193340,7 +191210,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -193348,7 +191218,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -193356,7 +191226,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -193364,616 +191234,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "209 >= 60 days" + "finding": "202 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIEMjCCAxqgAwIBAgIBATANBgkqhkiG9w0BAQUFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTA0MDEwMTAwMDAwMFoXDTI4MTIzMTIzNTk1OVowezELMAkGA1UEBhMCR0IxGzAZBgNVBAgMEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBwwHU2FsZm9yZDEaMBgGA1UECgwRQ29tb2RvIENBIExpbWl0ZWQxITAfBgNVBAMMGEFBQSBDZXJ0aWZpY2F0ZSBTZXJ2aWNlczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL5AnfRu4ep2hxxNRUSOvkbIgwadwSr+GB+O5AL686tdUIoWMQuaBtDFcCLNSS1UY8y2bmhGC1Pqy0wkwLxyTurxFa70VJoSCsN6sjNg4tqJVfMiWPPe3M/vg4aijJRPn2jymJBGhCfHdr/jzDUsi14HZGWCwEiwqJH5YZ92IFCokcdmtet4YgNW8IoaE+oxox6gmf049vYnMlhvB/VruPsUK6+3qszWY19zjNoFmag4qMsXeDZRrOme9Hg6jc8P2ULimAyrL58OAd7vn5lJ8S3frHRNG5i1R8XlKdH5kBjHYpy+g8cmez6KJcfA3Z3mNWgQIJ2P2N7Sw4ScDV7oL8kCAwEAAaOBwDCBvTAdBgNVHQ4EFgQUoBEKIz6W8Qfs4q8p74Klf9AwpLQwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wewYDVR0fBHQwcjA4oDagNIYyaHR0cDovL2NybC5jb21vZG9jYS5jb20vQUFBQ2VydGlmaWNhdGVTZXJ2aWNlcy5jcmwwNqA0oDKGMGh0dHA6Ly9jcmwuY29tb2RvLm5ldC9BQUFDZXJ0aWZpY2F0ZVNlcnZpY2VzLmNybDANBgkqhkiG9w0BAQUFAAOCAQEACFb8AvCb6P+k+tZ7xkSAzk/ExfYAWMymtrwUSWgEdujm7l3sAg9g1o1QGE8mTgHj5rCl7r+8dFRBv/38ErjHT1r0iWAFf2C3BUrz9vHCv8S5dIa2LX1rzNLzRt0vxuBqw8M0Ayx9lt1awg6nCpnBBYurDC/zXDrPbDdVCYfeU0BsWO/8tqtlbgT2G9w84FoVxp7Z8VlIMCFlA2zs6SFz7JsDoeA3raAVGI/6ugLOpyypEBMs1OUIJqsil2D4kF501KKaU73yqWjgom7C12yxow+ev+to51byrvLjKzg6CYG1a4XXvi3tPxq3smPi9WIsgtRqAEFQ8TmDn5XpNpaYbg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1704610060" + "finding": "1705214791" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" + "finding": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -193981,7 +191851,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -193990,7 +191860,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -193999,7 +191869,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -194008,7 +191878,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -194017,7 +191887,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -194025,7 +191895,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -194034,7 +191904,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -194043,7 +191913,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -194052,7 +191922,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -194061,14 +191931,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -194077,7 +191947,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -194086,7 +191956,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -194095,7 +191965,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -194104,7 +191974,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -194113,7 +191983,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -194122,7 +191992,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -194131,7 +192001,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -194140,7 +192010,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -194149,7 +192019,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -194158,392 +192028,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -194551,7 +192421,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -194559,7 +192429,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -194567,7 +192437,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -194575,7 +192445,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -194583,7 +192453,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -194591,616 +192461,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "209 >= 60 days" + "finding": "202 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1704610125" + "finding": "1705214896" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" + "finding": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -195208,7 +193078,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -195217,7 +193087,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -195226,7 +193096,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -195235,7 +193105,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -195244,7 +193114,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -195252,7 +193122,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -195261,7 +193131,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -195270,7 +193140,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -195279,7 +193149,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -195288,14 +193158,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -195304,7 +193174,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -195313,7 +193183,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -195322,7 +193192,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -195331,7 +193201,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -195340,7 +193210,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -195349,7 +193219,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -195358,7 +193228,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -195367,7 +193237,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -195376,7 +193246,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -195385,322 +193255,1549 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, + { + "id": "service", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "cipher-tls1_2_xc030", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" + }, + { + "id": "cipher-tls1_2_xc02f", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" + }, + { + "id": "supportedciphers_TLSv1_2", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "cipher_order", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "NOT a cipher order configured" + }, + { + "id": "FS", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1" + }, + { + "id": "TLS_extensions", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "no -- no lifetime advertised" + }, + { + "id": "SSL_sessionID_support", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "yes" + }, + { + "id": "sessionresumption_ticket", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "sessionresumption_ID", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "not supported" + }, + { + "id": "TLS_timestamp", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "random" + }, + { + "id": "certificate_compression", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "clientAuth", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "none" + }, + { + "id": "cert_numbers", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "1" + }, + { + "id": "cert_signatureAlgorithm", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "SHA384 with RSA" + }, + { + "id": "cert_keySize", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "RSA 2048 bits (exponent is 65537)" + }, + { + "id": "cert_keyUsage", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "Digital Signature, Key Encipherment" + }, + { + "id": "cert_extKeyUsage", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLS Web Server Authentication, TLS Web Client Authentication" + }, + { + "id": "cert_serialNumber", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "657D4062CCE9A427CFDB273FEC08749E" + }, + { + "id": "cert_serialNumberLen", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "16" + }, + { + "id": "cert_fingerprintSHA1", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" + }, + { + "id": "cert_fingerprintSHA256", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" + }, + { + "id": "cert", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "cert_commonName", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "ma-cantine.agriculture.gouv.fr" + }, + { + "id": "cert_commonName_wo_SNI", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "request w/o SNI didn't succeed" + }, + { + "id": "cert_subjectAltName", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" + }, + { + "id": "cert_trust", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "Ok via SAN and CN (SNI mandatory)" + }, + { + "id": "cert_chain_of_trust", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "passed." + }, + { + "id": "cert_certificatePolicies_EV", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_expirationStatus", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "202 >= 60 days" + }, + { + "id": "cert_notBefore", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "2023-08-04 00:00" + }, + { + "id": "cert_notAfter", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "2024-08-03 23:59" + }, + { + "id": "cert_extlifeSpan", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" + }, + { + "id": "cert_ocspURL", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "http://GEANT.ocsp.sectigo.com" + }, + { + "id": "OCSP_stapling", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "5" + }, + { + "id": "certs_list_ordering_problem", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "LOW", + "finding": "yes" + }, + { + "id": "cert_caIssuers", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "2023-08-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "2024-08-03 23:59" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" + }, + { + "id": "intermediate_cert <#2>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIEMjCCAxqgAwIBAgIBATANBgkqhkiG9w0BAQUFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTA0MDEwMTAwMDAwMFoXDTI4MTIzMTIzNTk1OVowezELMAkGA1UEBhMCR0IxGzAZBgNVBAgMEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBwwHU2FsZm9yZDEaMBgGA1UECgwRQ29tb2RvIENBIExpbWl0ZWQxITAfBgNVBAMMGEFBQSBDZXJ0aWZpY2F0ZSBTZXJ2aWNlczCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL5AnfRu4ep2hxxNRUSOvkbIgwadwSr+GB+O5AL686tdUIoWMQuaBtDFcCLNSS1UY8y2bmhGC1Pqy0wkwLxyTurxFa70VJoSCsN6sjNg4tqJVfMiWPPe3M/vg4aijJRPn2jymJBGhCfHdr/jzDUsi14HZGWCwEiwqJH5YZ92IFCokcdmtet4YgNW8IoaE+oxox6gmf049vYnMlhvB/VruPsUK6+3qszWY19zjNoFmag4qMsXeDZRrOme9Hg6jc8P2ULimAyrL58OAd7vn5lJ8S3frHRNG5i1R8XlKdH5kBjHYpy+g8cmez6KJcfA3Z3mNWgQIJ2P2N7Sw4ScDV7oL8kCAwEAAaOBwDCBvTAdBgNVHQ4EFgQUoBEKIz6W8Qfs4q8p74Klf9AwpLQwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wewYDVR0fBHQwcjA4oDagNIYyaHR0cDovL2NybC5jb21vZG9jYS5jb20vQUFBQ2VydGlmaWNhdGVTZXJ2aWNlcy5jcmwwNqA0oDKGMGh0dHA6Ly9jcmwuY29tb2RvLm5ldC9BQUFDZXJ0aWZpY2F0ZVNlcnZpY2VzLmNybDANBgkqhkiG9w0BAQUFAAOCAQEACFb8AvCb6P+k+tZ7xkSAzk/ExfYAWMymtrwUSWgEdujm7l3sAg9g1o1QGE8mTgHj5rCl7r+8dFRBv/38ErjHT1r0iWAFf2C3BUrz9vHCv8S5dIa2LX1rzNLzRt0vxuBqw8M0Ayx9lt1awg6nCpnBBYurDC/zXDrPbDdVCYfeU0BsWO/8tqtlbgT2G9w84FoVxp7Z8VlIMCFlA2zs6SFz7JsDoeA3raAVGI/6ugLOpyypEBMs1OUIJqsil2D4kF501KKaU73yqWjgom7C12yxow+ev+to51byrvLjKzg6CYG1a4XXvi3tPxq3smPi9WIsgtRqAEFQ8TmDn5XpNpaYbg==\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "2004-01-01 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "2028-12-31 23:59" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "AAA Certificate Services <-- AAA Certificate Services" + }, + { + "id": "intermediate_cert <#3>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFgTCCBGmgAwIBAgIQOXJEOvkit1HX02wQ3TE1lTANBgkqhkiG9w0BAQwFADB7MQswCQYDVQQGEwJHQjEbMBkGA1UECAwSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHDAdTYWxmb3JkMRowGAYDVQQKDBFDb21vZG8gQ0EgTGltaXRlZDEhMB8GA1UEAwwYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTE5MDMxMjAwMDAwMFoXDTI4MTIzMTIzNTk1OVowgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAgBJlFzYOw9sIs9CsVw127c0n00ytUINh4qogTQktZAnczomfzD2p7PbPwdzx07HWezcoEStH2jnGvDoZtF+mvX2do2NCtnbyqTsrkfjib9DsFiCQCT7i6HTJGLSR1GJk23+jBvGIGGqQIjy8/hPwhxR79uQfjtTkUcYRZ0YIUcuGFFQ/vDP+fmyc/xadGL1RjjWmp2bIcmfbIWax1Jt4A8BQOujM8Ny8nkz+rwWWNR9XWrf/zvk9tyy29lTdyOcSOk2uTIq3XJq0tyA9yn8iNK5+O2hmAUTnAU5GU5szYPeUvlM3kHND8zLDU+/bqv50TmnHa4xgk97Exwzf4TKuzJM7UXiVZ4vuPVb+DNBpDxsP8yUmazNt925H+nND5X4OpWaxKXwyhGNVicQNwZNUMBkTrNN9N6frXTpsNVzbQdcS2qlJC9/YgIoJk2KOtWbPJYjNhLixP6Q5D9kCnusSTJV882sFqV4Wg8y4Z+LoE53MW4LTTLPtW//e5XOsIzstAL81VXQJSdhJWBp/kjbmUZIO8yZ9HE0XvMnsQybQv0FfQKlERPSZ51eHnlAfV1SoPv10Yy+xUGUJ5lhCLkMaTLTwJUdZ+gQek9QmRkpQgbLevni3/GcV4clXhB4PY9bpYrrWX1Uu6lzGKAgEJTm4Diup8kyXHAc/DVL17e8vgg8CAwEAAaOB8jCB7zAfBgNVHSMEGDAWgBSgEQojPpbxB+zirynvgqV/0DCktDAdBgNVHQ4EFgQUU3m/WqorSs9UgOHYm8Cd8rIDZsswDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wEQYDVR0gBAowCDAGBgRVHSAAMEMGA1UdHwQ8MDowOKA2oDSGMmh0dHA6Ly9jcmwuY29tb2RvY2EuY29tL0FBQUNlcnRpZmljYXRlU2VydmljZXMuY3JsMDQGCCsGAQUFBwEBBCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuY29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4IBAQAYh1HcdCE9nIrgJ7cz0C7M7PDmy14R3iJvm3WOnnL+5Nb+qh+cli3vA0p+rvSNb3I8QzvAP+u431yqqcau8vzY7qN7Q/aGNnwU4M309z/+3ri0ivCRlv79Q2R+/czSAaF9ffgZGclCKxO/WIu6pKJmBHaIkU4MiRTOok3JMrO66BQavHHxW/BBC5gACiIDEOUMsfnNkjcZ7Tvx5Dq2+UUTJnWvu6rvP3t3O9LEApE9GQDTF1w52z97GA1FzZOFli9d31kWTz9RvdVFGD/tSo7oBmF0Ixa1DVBzJ0RHfxBdiSprhTEUxOipakyAvGp4z7h/jnZymQyd/teRCBaho1+V\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#3>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" + }, + { + "id": "intermediate_cert_notBefore <#3>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "2019-03-12 00:00" + }, + { + "id": "intermediate_cert_notAfter <#3>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "2028-12-31 23:59" + }, + { + "id": "intermediate_cert_expiration <#3>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#3>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" + }, + { + "id": "intermediate_cert <#4>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIG5TCCBM2gAwIBAgIRANpDvROb0li7TdYcrMTz2+AwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIwMDIxODAwMDAwMFoXDTMzMDUwMTIzNTk1OVowRDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNVBAMTEUdFQU5UIE9WIFJTQSBDQSA0MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApYhi1aEiPsg9ZKRMAw9Qr8Mthsr6R20VSfFeh7TgwtLQi6RSRLOh4or4EMG/1th8lijv7xnBMVZkTysFiPmTPiLOfvz+QwO1NwjvgY+Jrs7fSoVA/TQkXzcxu4Tl3WHi+qJmKLJVu/JOuHud6mOpLWkIbhODSzOxANJ24IGPx9h4OXDyy6/342eE6UPXCtJ8AzeumTG6Dfv5KVx24lCFTGUzHUB+j+g0lSKg/Sf1OzgCajJV9enmZ/84ydh48wPp6vbWf1H0O3Rd3LhpMSVnTqFTLKZSbQeLcx/l9DOKZfBCC9ghWxsgTqW9gQ7v3T3aIfSaVC9rnwVxO0VjmDdPFNbdoxnh0zYwf45nV1QQgpRwZJ93yWedhp4ch1a6Ajwqs+wv4mZzmBSjovtV0mKwd+CQbSToalEUP4QeJq4Udz5WNmNMI4OYP6cgrnlJ50aa0DZPlJqrKQPGL69KQQz12WgxvhCuVU70y6ZWAPopBa1ykbsttpLxADZre5cH573lIuLHdjx7NjpYIXRx2+QJURnX2qx37eZIxYXz8ggM+wXH6RDbU3V2o5DP67hXPHSAbA+p0orjAocpk2osxHKoNSE3LCjNx8WVdxnXvuQ28tKdaK69knfm3bB7xpdfsNNTPH9ElcjscWZxpeZ5Iij8lyrCG1z0vSWtSBsgSnUyG/sCAwEAAaOCAYswggGHMB8GA1UdIwQYMBaAFFN5v1qqK0rPVIDh2JvAnfKyA2bLMB0GA1UdDgQWBBRvHTVJEGwy+lmgnryK6B+VvnF6DDAOBgNVHQ8BAf8EBAMCAYYwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOAYDVR0gBDEwLzAtBgRVHSAAMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDB2BggrBgEFBQcBAQRqMGgwPwYIKwYBBQUHMAKGM2h0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBZGRUcnVzdENBLmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTANBgkqhkiG9w0BAQwFAAOCAgEAUtlC3e0xj/1BMfPhdQhUXeLjb0xp8UE28kzWE5xDzGKbfGgnrT2Rlw5gLIx+/cNVrad//+MrpTppMlxq59AsXYZW3xRasrvkjGfNR3vt/1RAl8iI31lGhIg6dfIX5N4esLkrQeN8HiyHKH6khm4966IkVVtnxz5CgUPqEYn4eQ+4eeESrWBhAqXaiv7HRvpsdwLYekAhnrlGpioZ/CJIT2PTTxf+GHM6cuUnNqdUzfvrQgA8kt1/ASXx2od/M+c8nlJqrGz29lrJveJOSEMX0c/ts02WhsfMhkYa6XujUZLmvR1Eq08r48/EZ4l+t5L4wt0DV8VaPbsEBF1EOFpz/YS2H6mSwcFaNJbnYqqJHIvm3PLJHkFmEoLXRVrQXdCT+3wgBfgU6heCV5CYBz/YkrdWES7tiiT8sVUDqXmVlTsbiRNiyLs2bmEWWFUl76jViIJog5fongEqN3jLIGTG/mXrJT1UyymIcobnIGrbwwRVz/mpFQo0vBYIi1k2ThVh0Dx88BbF9YiP84dd8Fkn5wbE6FxXYJ287qfRTgmhePecPc73YrztapdRcsKVGkOpaTIJP/l+lAHRLZxk/dUtyN95G++bOSQqnOCpVPabUGl2E/OEyFrpIpwgu2L/WJclvd6g+ZA/iWkLSMcpnFb+uX6QBqvD6+RNxul1FaB5iHY=\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#4>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" + }, + { + "id": "intermediate_cert_notBefore <#4>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "2020-02-18 00:00" + }, + { + "id": "intermediate_cert_notAfter <#4>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "2033-05-01 23:59" + }, + { + "id": "intermediate_cert_expiration <#4>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#4>", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "1705215001" + }, + { + "id": "HSTS", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "HPKP", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "0/1 at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "0/1 at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr" + }, + { + "id": "Referrer-Policy", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "same-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "no session ticket extension" + }, + { + "id": "ROBOT", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "likely not vulnerable (timed out)" + }, + { + "id": "CRIME_TLS", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" + }, + { + "id": "LOGJAM", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "no DH key with <= TLS 1.2" + }, + { + "id": "BEAST", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_81", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_90", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_X", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_11", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-android_12", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-java1703", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + }, + { + "id": "rating_spec", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "36" + }, + { + "id": "final_score", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "93" + }, + { + "id": "overall_grade", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -196059,7 +195156,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "209 >= 60 days" + "finding": "202 >= 60 days" }, { "id": "cert_notBefore", @@ -196346,7 +195443,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1704610190" + "finding": "1705215106" }, { "id": "HSTS", @@ -196416,7 +195513,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" + "finding": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr" }, { "id": "Referrer-Policy", @@ -196934,70 +196031,70 @@ }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197005,7 +196102,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197013,7 +196110,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197021,7 +196118,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -197029,7 +196126,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -197037,7 +196134,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -197045,616 +196142,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "209 >= 60 days" + "finding": "202 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1704610254" + "finding": "1705215212" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" + "finding": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -197662,7 +196759,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -197671,7 +196768,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -197680,7 +196777,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -197689,7 +196786,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -197698,7 +196795,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -197706,7 +196803,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -197715,7 +196812,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -197724,7 +196821,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -197733,7 +196830,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -197742,14 +196839,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -197758,7 +196855,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -197767,7 +196864,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -197776,7 +196873,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -197785,7 +196882,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -197794,7 +196891,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -197803,7 +196900,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -197812,7 +196909,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -197821,7 +196918,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -197830,7 +196927,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -197839,392 +196936,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.103", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198232,7 +197329,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198240,7 +197337,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198248,7 +197345,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -198256,7 +197353,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -198264,7 +197361,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -198272,616 +197369,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "209 >= 60 days" + "finding": "202 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1704610319" + "finding": "1705215317" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" + "finding": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -198889,7 +197986,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -198898,7 +197995,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -198907,7 +198004,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -198916,7 +198013,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -198925,7 +198022,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -198933,7 +198030,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -198942,7 +198039,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -198951,7 +198048,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -198960,7 +198057,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -198969,14 +198066,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -198985,7 +198082,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -198994,7 +198091,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -199003,7 +198100,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -199012,7 +198109,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -199021,7 +198118,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -199030,7 +198127,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -199039,7 +198136,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -199048,7 +198145,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -199057,7 +198154,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -199066,322 +198163,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/46.252.181.104", + "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -199740,7 +198837,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "209 >= 60 days" + "finding": "202 >= 60 days" }, { "id": "cert_notBefore", @@ -200027,7 +199124,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1704610385" + "finding": "1705215423" }, { "id": "HSTS", @@ -200097,7 +199194,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" + "finding": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr" }, { "id": "Referrer-Policy", @@ -200613,1233 +199710,6 @@ "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, - { - "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "SHA384 with RSA" - }, - { - "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "RSA 2048 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "657D4062CCE9A427CFDB273FEC08749E" - }, - { - "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" - }, - { - "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIHvjCCBaagAwIBAgIQZX1AYszppCfP2yc/7Ah0njANBgkqhkiG9w0BAQwFADBEMQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UEAxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMwODA0MDAwMDAwWhcNMjQwODAzMjM1OTU5WjCBmDELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMUcwRQYDVQQKDD5NaW5pc3TDqHJlIGRlIGwnQWdyaWN1bHR1cmUgZXQgZGUgbGEgU291dmVyYWluZXTDqSBBbGltZW50YWlyZTEnMCUGA1UEAxMebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAven0X2aMmTmuJeZnpDB36BPTYjma0ESkgNoz3C33ERfKGKdOUgOwtayLyboOXfHSTSIdq/rK3OMKR6lLEO3UexGQcHuyIXi2qRtNuXTQt3sPpdOeM/UKCqirD/Ij1DJ+QkpRBJiM451FGiFZrWxXbO3ztuqozrNTdLRyDMw3Gp3DDtuAuJ8lfQaD5oPhGdpa7B/M29SJ+lEBeS9kAI7qi3prteOK/XVU4vK8UwqkKwSPuGHbvtrwO1lQBwAsBwhL7y5+/KLenQf7T3KMSo/ZGGteMiL/DZ/B9SxPCVz0FU29huCyBBZLLqVtN5R2bZbamO9BLGCEGKwtcZ/zsckmzwIDAQABo4IDVTCCA1EwHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFFNBho4oITde1R1/MlGkC13MbVWtMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wTQYDVR0RBEYwRIIebWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZygiJ3d3cubWEtY2FudGluZS5hZ3JpY3VsdHVyZS5nb3V2LmZyMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYnAsNpwAAAEAwBHMEUCIQDH/ipj54Ty/ORXxXOm85kgm8tBPL1Wsxw3w6cf6sfx1AIgECQKqqXqqWc9gVBCFJ6dbRd63hEL+D63iZKyFQP44foAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYnAsNrCAAAEAwBHMEUCIQCeJ0kFef/7SX4UigwH1q7EyqeaK+LMbwz57oNB6h8BNgIgXjvtf40hNZNHCdicC4aRk4FgoYyedpvFtc2ZVJgJM/AAdgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYnAsNqaAAAEAwBHMEUCIBtNyobqByrsboYrEaRxcwXCRn+eSYS5zBNV3fIhei0IAiEA4eApMwDboZ4sc9j03GLL7mSI+e05/xztUjz/3zptysgwDQYJKoZIhvcNAQEMBQADggIBADFLloIoC+7rc2Sb4utMV6xrfskisXfkR1YkSpSgy3xezxfBbL70t5Z62iuHoXvtifsZ2xlEY3CAuMBJiDnCOuObfSmXSvUi0tWu854EHhD9QsbmRfLekX92hnX8Id6ZxiantGiLqHNKEGwepZ54y4eUZdTBD67y43J/IFpO2p2rK8hIQSe5dpIKlyN15fqNiZEuXbf4BF0ku+7oqINgBfVAK8x7TGoEjJzDyPavlDZciIYigHGYrg2EOD6qfXWOSp+E3vUG+Hpea6SxDcz/21h2xfLWf+yvZ7ltGz77bZx/Gw1uuZ52tx2iZ1iUgLXRUDf1LkXOBs1nyNnCTW5peV2fsBg891r9Rd+7hGWHg8LbXKJXvrW9/TNnMU/ZHxnKsiEZrZ51BfEQJMge49/7hinjAWOTOIVevFbIUPaASwbu63jq+NnScuY24NodD6YG89oTiv6wTKVDDt+9QwXr7PmT/Qsab7t5iCTlJTADIW0uA7D3p6e3BroNowmfXZRgSPoku34a2sv/+6gU1KXTiyd+9PY4ysa8xe+LNbSwxWm9N3aGH77SM8LZr1e/ixssMJkCwyNdlCdskp9xX8PXam9nSfFbkDAw8JQHGb6sAMkBrZnjewy7NBtbxesxk4VVcF2I3O6BWYL15jCDKWvRw9rJgtIUq9F9OQpJVI/yUJ3L\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "ma-cantine.agriculture.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "request w/o SNI didn't succeed" - }, - { - "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "209 >= 60 days" - }, - { - "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "2023-08-04 00:00" - }, - { - "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "2024-08-03 23:59" - }, - { - "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" - }, - { - "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" - }, - { - "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "5" - }, - { - "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "LOW", - "finding": "yes" - }, - { - "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "2023-08-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "2024-08-03 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" - }, - { - "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "2004-01-01 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "AAA Certificate Services <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" - }, - { - "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" - }, - { - "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "1704610449" - }, - { - "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "0/1 at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" - }, - { - "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "same-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "likely not vulnerable (timed out)" - }, - { - "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" - }, - { - "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "36" - }, - { - "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "93" - }, - { - "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/185.42.117.108", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, { "id": "service", "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", @@ -202194,7 +200064,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "209 >= 60 days" + "finding": "202 >= 60 days" }, { "id": "cert_notBefore", @@ -202481,7 +200351,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1704610514" + "finding": "1705215530" }, { "id": "HSTS", @@ -202551,7 +200421,7 @@ "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" + "finding": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr" }, { "id": "Referrer-Policy", @@ -203069,70 +200939,70 @@ }, { "id": "service", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -203140,7 +201010,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -203148,7 +201018,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -203156,7 +201026,7 @@ }, { "id": "cipherlist_LOW", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -203164,7 +201034,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -203172,7 +201042,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -203180,616 +201050,616 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "657D4062CCE9A427CFDB273FEC08749E" }, { "id": "cert_serialNumberLen", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "8BD2A4134E11906C43DEE058D88C36B47C1AD504" }, { "id": "cert_fingerprintSHA256", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "cert", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ma-cantine.agriculture.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr www.ma-cantine.agriculture.gouv.fr" }, { "id": "cert_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "209 >= 60 days" + "finding": "202 >= 60 days" }, { "id": "cert_notBefore", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "cert_notAfter", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "cert_extlifeSpan", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" }, { "id": "cert_ocspURL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://GEANT.ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "5" }, { "id": "certs_list_ordering_problem", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" }, { "id": "intermediate_cert <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1704961B9E1DD31BE52EA8AD071661622F3DB756E50C1008B79A53F7E9D91FAD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-08-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-08-03 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ma-cantine.agriculture.gouv.fr <-- GEANT OV RSA CA 4" }, { "id": "intermediate_cert <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "D7A7A0FB5D7E2731D771E9484EBCDEF71D5F0C3E0A2948782BC83EE0EA699EF4" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2004-01-01 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "AAA Certificate Services <-- AAA Certificate Services" }, { "id": "intermediate_cert <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2019-03-12 00:00" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2028-12-31 23:59" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" }, { "id": "intermediate_cert <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" }, { "id": "intermediate_cert_notBefore <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-02-18 00:00" }, { "id": "intermediate_cert_notAfter <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2033-05-01 23:59" }, { "id": "intermediate_cert_expiration <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#4>", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1704610578" + "finding": "1705215637" }, { "id": "HSTS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat" + "finding": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr" }, { "id": "Referrer-Policy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -203797,7 +201667,7 @@ }, { "id": "heartbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -203806,7 +201676,7 @@ }, { "id": "CCS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -203815,7 +201685,7 @@ }, { "id": "ticketbleed", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -203824,7 +201694,7 @@ }, { "id": "ROBOT", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -203833,7 +201703,7 @@ }, { "id": "secure_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -203841,7 +201711,7 @@ }, { "id": "secure_client_renego", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -203850,7 +201720,7 @@ }, { "id": "CRIME_TLS", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -203859,7 +201729,7 @@ }, { "id": "BREACH", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -203868,7 +201738,7 @@ }, { "id": "POODLE_SSL", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -203877,14 +201747,14 @@ }, { "id": "fallback_SCSV", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -203893,7 +201763,7 @@ }, { "id": "FREAK", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -203902,7 +201772,7 @@ }, { "id": "DROWN", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -203911,7 +201781,7 @@ }, { "id": "DROWN_hint", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -203920,7 +201790,7 @@ }, { "id": "LOGJAM", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -203929,7 +201799,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -203938,7 +201808,7 @@ }, { "id": "BEAST", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -203947,7 +201817,7 @@ }, { "id": "LUCKY13", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -203956,7 +201826,7 @@ }, { "id": "winshock", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -203965,7 +201835,7 @@ }, { "id": "RC4", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -203974,332 +201844,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.217", + "ip": "ma-cantine.agriculture.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "589" + "finding": "961" } ], "thirdparties": { @@ -204310,32 +202180,32 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/071cca61-bd5f-4950-a5ed-c02238666a5c/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-6-46" + "url": "https://client.crisp.chat/settings/website/071cca61-bd5f-4950-a5ed-c02238666a5c/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-6-44" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/071cca61-bd5f-4950-a5ed-c02238666a5c/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1704401693912" + "url": "https://client.crisp.chat/settings/website/071cca61-bd5f-4950-a5ed-c02238666a5c/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1704819632149" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/en.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/en.js?e0efffc" } ], "cookies": [ { "name": "csrftoken", - "value": "vbd1fmA8OFLv3gixKFDsJbXt4n3BH1qI", + "value": "6FFJnTxt7XyXp6CnusCjnZnFNDC6X4uU", "domain": "ma-cantine.agriculture.gouv.fr", "path": "/", - "expires": 1736059586.571699, + "expires": 1736664279.20628, "size": 41, "httpOnly": false, "secure": false, @@ -204350,13 +202220,13 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-language": "fr", - "content-security-policy": "img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; media-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; font-src 'self' client.crisp.chat; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat", + "content-security-policy": "frame-src 'self' ma-cantine.crisp.help ma-cantine-metabase.cleverapps.io; script-src 'self' stats.beta.gouv.fr 'unsafe-inline' client.crisp.chat; connect-src 'self' stats.beta.gouv.fr ws: api-adresse.data.gouv.fr client.crisp.chat wss://client.relay.crisp.chat entreprise.data.gouv.fr plateforme.adresse.data.gouv.fr; object-src 'self' cellar-c2.services.clever-cloud.com; default-src 'self'; font-src 'self' client.crisp.chat; style-src 'self' 'unsafe-inline' client.crisp.chat netdna.bootstrapcdn.com; media-src 'self' cellar-c2.services.clever-cloud.com; img-src 'self' cellar-c2.services.clever-cloud.com voxusagers.numerique.gouv.fr 'unsafe-inline' stats.beta.gouv.fr www.w3.org data: image.crisp.chat jedonnemonavis.numerique.gouv.fr", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 06:46:26 GMT", + "date": "Sun, 14 Jan 2024 06:44:39 GMT", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=vbd1fmA8OFLv3gixKFDsJbXt4n3BH1qI; expires=Sun, 05 Jan 2025 06:46:26 GMT; Max-Age=31449600; Path=/; SameSite=Lax", - "sozu-id": "01HKHARDVW930GAMDBHFMMAAEB", + "set-cookie": "csrftoken=6FFJnTxt7XyXp6CnusCjnZnFNDC6X4uU; expires=Sun, 12 Jan 2025 06:44:39 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "sozu-id": "01HM3BE5YEAYCKFPYBKBEBKJ3M", "transfer-encoding": "chunked", "vary": "Cookie, Accept-Language", "x-content-type-options": "nosniff", @@ -204365,7 +202235,7 @@ "endpoints": [ { "hostname": "ma-cantine.agriculture.gouv.fr", - "ip": "46.252.181.103", + "ip": "185.42.117.108", "geoip": { "continent": { "code": "EU", @@ -204427,7 +202297,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -204445,7 +202315,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 06:42:38", + "@generated": "Sun, 14 Jan 2024 06:43:32", "site": [ { "@name": "https://ma-cantine.agriculture.gouv.fr", @@ -204592,73 +202462,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "ma-cantine.agriculture.gouv.fr.", "matched-at": "ma-cantine.agriculture.gouv.fr", - "timestamp": "2024-01-07T07:00:19.472828145Z", + "extracted-results": [ + "domain.par.clever-cloud.com." + ], + "timestamp": "2024-01-14T06:58:52.435585337Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "ma-cantine.agriculture.gouv.fr.", "matched-at": "ma-cantine.agriculture.gouv.fr", - "extracted-results": [ - "domain.par.clever-cloud.com." - ], - "timestamp": "2024-01-07T07:00:19.712520832Z", + "timestamp": "2024-01-14T06:58:52.438455036Z", "matcher-status": true }, { @@ -204687,7 +202557,7 @@ "GET, HEAD, OPTIONS" ], "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:00:26.419030569Z", + "timestamp": "2024-01-14T06:59:02.868398553Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -204724,7 +202594,7 @@ "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:01:04.38936686Z", + "timestamp": "2024-01-14T07:00:01.640734796Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -204761,7 +202631,7 @@ "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:01:04.389409219Z", + "timestamp": "2024-01-14T07:00:01.640789758Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -204798,7 +202668,7 @@ "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:01:04.389427262Z", + "timestamp": "2024-01-14T07:00:01.640810927Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -204835,7 +202705,7 @@ "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:01:04.389443673Z", + "timestamp": "2024-01-14T07:00:01.640836666Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -204872,7 +202742,7 @@ "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:01:04.389584685Z", + "timestamp": "2024-01-14T07:00:01.640852535Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -204909,7 +202779,7 @@ "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr", "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:01:04.38960324Z", + "timestamp": "2024-01-14T07:00:01.640866261Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr'", "matcher-status": true }, @@ -204944,12 +202814,12 @@ ] } }, - "matcher-name": "ats", + "matcher-name": "apachegeneric", "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr/", "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:01:27.886461739Z", + "timestamp": "2024-01-14T07:00:38.872557379Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: ma-cantine.agriculture.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr/'", "matcher-status": true }, @@ -204984,12 +202854,12 @@ ] } }, - "matcher-name": "apachegeneric", + "matcher-name": "ats", "type": "http", "host": "https://ma-cantine.agriculture.gouv.fr", "matched-at": "https://ma-cantine.agriculture.gouv.fr/", "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:01:27.886527011Z", + "timestamp": "2024-01-14T07:00:38.872605829Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: ma-cantine.agriculture.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://ma-cantine.agriculture.gouv.fr/'", "matcher-status": true }, @@ -205038,8 +202908,8 @@ "extracted-results": [ "SSH-2.0-OpenSSH_9.4" ], - "ip": "91.208.207.214", - "timestamp": "2024-01-07T07:03:44.517709098Z", + "ip": "91.208.207.215", + "timestamp": "2024-01-14T07:01:14.055685185Z", "matcher-status": true }, { @@ -205069,7 +202939,7 @@ "GEANT Vereniging" ], "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:04:11.47793053Z", + "timestamp": "2024-01-14T07:01:22.256275859Z", "matcher-status": true }, { @@ -205100,7 +202970,7 @@ "www.ma-cantine.agriculture.gouv.fr" ], "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:04:11.47818807Z", + "timestamp": "2024-01-14T07:01:22.25689387Z", "matcher-status": true }, { @@ -205131,7 +203001,7 @@ "tls12" ], "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:04:48.263887162Z", + "timestamp": "2024-01-14T07:01:23.872804643Z", "matcher-status": true }, { @@ -205162,7 +203032,7 @@ "tls13" ], "ip": "91.208.207.215", - "timestamp": "2024-01-07T07:04:48.513136328Z", + "timestamp": "2024-01-14T07:01:24.243591602Z", "matcher-status": true } ], @@ -205170,7 +203040,7 @@ { "requestedUrl": "https://ma-cantine.agriculture.gouv.fr/", "finalUrl": "https://ma-cantine.agriculture.gouv.fr/", - "fetchTime": "2024-01-07T06:42:54.223Z", + "fetchTime": "2024-01-14T06:43:48.198Z", "runWarnings": [], "categories": { "performance": { @@ -205181,7 +203051,7 @@ "snapshot" ], "id": "performance", - "score": 0.8698553085327149 + "score": 0.8688423156738281 }, "accessibility": { "title": "Accessibility", @@ -205233,53 +203103,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7386, + "numericValue": 7756, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 6927, - "firstMeaningfulPaint": 7386, - "largestContentfulPaint": 8299, - "interactive": 7386, - "speedIndex": 6927, + "firstContentfulPaint": 7475, + "firstMeaningfulPaint": 7756, + "largestContentfulPaint": 8034, + "interactive": 7756, + "speedIndex": 7475, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.7696995162963869, - "cumulativeLayoutShiftMainFrame": 0.7696995162963869, - "totalCumulativeLayoutShift": 0.7696995162963869, + "cumulativeLayoutShift": 0.7692556762695312, + "cumulativeLayoutShiftMainFrame": 0.7692556762695312, + "totalCumulativeLayoutShift": 0.7692556762695312, "observedTimeOrigin": 0, - "observedTimeOriginTs": 1062648387, + "observedTimeOriginTs": 924576047, "observedNavigationStart": 0, - "observedNavigationStartTs": 1062648387, - "observedFirstPaint": 882, - "observedFirstPaintTs": 1063530263, - "observedFirstContentfulPaint": 882, - "observedFirstContentfulPaintTs": 1063530263, - "observedFirstContentfulPaintAllFrames": 882, - "observedFirstContentfulPaintAllFramesTs": 1063530263, - "observedFirstMeaningfulPaint": 1082, - "observedFirstMeaningfulPaintTs": 1063730420, - "observedLargestContentfulPaint": 1207, - "observedLargestContentfulPaintTs": 1063855226, - "observedLargestContentfulPaintAllFrames": 1207, - "observedLargestContentfulPaintAllFramesTs": 1063855226, - "observedTraceEnd": 3933, - "observedTraceEndTs": 1066581449, - "observedLoad": 1625, - "observedLoadTs": 1064273226, + "observedNavigationStartTs": 924576047, + "observedFirstPaint": 1312, + "observedFirstPaintTs": 925887763, + "observedFirstContentfulPaint": 1312, + "observedFirstContentfulPaintTs": 925887763, + "observedFirstContentfulPaintAllFrames": 1312, + "observedFirstContentfulPaintAllFramesTs": 925887763, + "observedFirstMeaningfulPaint": 1575, + "observedFirstMeaningfulPaintTs": 926151106, + "observedLargestContentfulPaint": 1575, + "observedLargestContentfulPaintTs": 926151106, + "observedLargestContentfulPaintAllFrames": 1575, + "observedLargestContentfulPaintAllFramesTs": 926151106, + "observedTraceEnd": 4862, + "observedTraceEndTs": 929438425, + "observedLoad": 2553, + "observedLoadTs": 927128888, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 1062648924, - "observedCumulativeLayoutShift": 0.7696995162963869, - "observedCumulativeLayoutShiftMainFrame": 0.7696995162963869, - "observedTotalCumulativeLayoutShift": 0.7696995162963869, - "observedFirstVisualChange": 1042, - "observedFirstVisualChangeTs": 1063690387, - "observedLastVisualChange": 1592, - "observedLastVisualChangeTs": 1064240387, - "observedSpeedIndex": 1244, - "observedSpeedIndexTs": 1063892609 + "observedDomContentLoadedTs": 924576668, + "observedCumulativeLayoutShift": 0.7692556762695312, + "observedCumulativeLayoutShiftMainFrame": 0.7692556762695312, + "observedTotalCumulativeLayoutShift": 0.7692556762695312, + "observedFirstVisualChange": 1486, + "observedFirstVisualChangeTs": 926062047, + "observedLastVisualChange": 2203, + "observedLastVisualChangeTs": 926779047, + "observedSpeedIndex": 1737, + "observedSpeedIndexTs": 926312946 }, { "lcpInvalidated": false @@ -205301,19 +203171,19 @@ "numScripts": 3, "numStylesheets": 2, "numFonts": 5, - "numTasks": 26, + "numTasks": 14, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.228000000000009, - "throughput": 13735833.185368935, - "maxRtt": 84.87699999999995, - "maxServerLatency": 9.783999999999992, - "totalByteWeight": 1730909, - "totalTaskTime": 5.413999999999997, - "mainDocumentTransferSize": 2714 + "rtt": 8.791, + "throughput": 8361588.042901132, + "maxRtt": 146.687, + "maxServerLatency": 8.440999999999999, + "totalByteWeight": 1736220, + "totalTaskTime": 4.04, + "mainDocumentTransferSize": 2719 } ] } @@ -205410,7 +203280,7 @@ "uptime": 100, "uptimeGrade": "A", "nmapGrade": "B", - "nmapOpenPortsCount": 15, + "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, "testsslExpireDate": "2024-08-03T23:59:00.000Z", @@ -205419,7 +203289,7 @@ "cookiesCount": 1, "trackersGrade": "C", "trackersCount": 6, - "lighthouse_performance": 0.8698553085327149, + "lighthouse_performance": 0.8688423156738281, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -205454,7 +203324,7 @@ "http": { "url": "https://mediature.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 06:54:13 GMT", + "end_time": "Sun, 14 Jan 2024 06:34:34 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -205467,7 +203337,7 @@ "Cross-Origin-Embedder-Policy": "require-corp", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 06:54:12 GMT", + "Date": "Sun, 14 Jan 2024 06:34:31 GMT", "ETag": "\"bxgfa2g4qudnf\"", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "no-referrer", @@ -205479,13 +203349,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "8f6ab615-ddf3-41b8-bc3c-32203e8cba6b", + "X-Request-ID": "786261c5-6a96-43e9-91ae-88b8f4fe4256", "X-XSS-Protection": "0", "x-nextjs-cache": "HIT" }, - "scan_id": 46230693, + "scan_id": 46457467, "score": 40, - "start_time": "Sun, 07 Jan 2024 06:54:08 GMT", + "start_time": "Sun, 14 Jan 2024 06:33:20 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -205501,20 +203371,20 @@ "'self'" ], "connect-src": [ - "https://storage.crisp.chat/users/upload/", - "https://api-adresse.data.gouv.fr/", - "https://sentry.incubateur.net/", - "'self'", "wss://client.relay.crisp.chat/", - "https://client.crisp.chat/static/" + "'self'", + "https://api-adresse.data.gouv.fr/", + "https://client.crisp.chat/static/", + "https://storage.crisp.chat/users/upload/", + "https://sentry.incubateur.net/" ], "default-src": [ "'self'" ], "font-src": [ - "data:", + "'self'", "https:", - "'self'" + "data:" ], "form-action": [ "'self'" @@ -205523,25 +203393,25 @@ "'self'" ], "img-src": [ - "https://*.crisp.chat/", + "'self'", "data:", - "'self'" + "https://*.crisp.chat/" ], "object-src": [ "'none'" ], "script-src": [ + "'self'", "'unsafe-inline'", - "https://client.crisp.chat/", - "'self'" + "https://client.crisp.chat/" ], "script-src-attr": [ "'none'" ], "style-src": [ + "'self'", "'unsafe-inline'", - "https:", - "'self'" + "https:" ], "upgrade-insecure-requests": [ "'none'" @@ -205742,77 +203612,77 @@ "testssl": [ { "id": "service", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205820,7 +203690,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205828,7 +203698,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205836,7 +203706,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -205844,7 +203714,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -205852,7 +203722,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -205860,483 +203730,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-17 14:26" }, { "id": "cert_notAfter", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-02-15 14:26" }, { "id": "cert_extlifeSpan", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704610528" + "finding": "1705214147" }, { "id": "HSTS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -206344,7 +204214,7 @@ }, { "id": "heartbleed", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -206353,7 +204223,7 @@ }, { "id": "CCS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -206362,7 +204232,7 @@ }, { "id": "ticketbleed", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -206371,7 +204241,7 @@ }, { "id": "ROBOT", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -206380,7 +204250,7 @@ }, { "id": "secure_renego", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -206388,7 +204258,7 @@ }, { "id": "secure_client_renego", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -206397,7 +204267,7 @@ }, { "id": "CRIME_TLS", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -206406,7 +204276,7 @@ }, { "id": "BREACH", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -206415,7 +204285,7 @@ }, { "id": "POODLE_SSL", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -206424,14 +204294,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -206440,7 +204310,7 @@ }, { "id": "FREAK", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -206449,7 +204319,7 @@ }, { "id": "DROWN", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -206458,7 +204328,7 @@ }, { "id": "DROWN_hint", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -206467,7 +204337,7 @@ }, { "id": "LOGJAM", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -206476,7 +204346,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -206485,7 +204355,7 @@ }, { "id": "BEAST", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -206494,7 +204364,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -206503,7 +204373,7 @@ }, { "id": "winshock", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -206512,7 +204382,7 @@ }, { "id": "RC4", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -206521,399 +204391,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "mediature.beta.gouv.fr/185.21.194.105", + "ip": "mediature.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -206921,7 +204791,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -206929,7 +204799,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -206937,7 +204807,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -206945,7 +204815,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -206953,7 +204823,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -206961,483 +204831,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-17 14:26" }, { "id": "cert_notAfter", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-02-15 14:26" }, { "id": "cert_extlifeSpan", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704610578" + "finding": "1705214202" }, { "id": "HSTS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -207445,7 +205315,7 @@ }, { "id": "heartbleed", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -207454,7 +205324,7 @@ }, { "id": "CCS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -207463,7 +205333,7 @@ }, { "id": "ticketbleed", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -207472,7 +205342,7 @@ }, { "id": "ROBOT", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -207481,7 +205351,7 @@ }, { "id": "secure_renego", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -207489,7 +205359,7 @@ }, { "id": "secure_client_renego", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -207498,7 +205368,7 @@ }, { "id": "CRIME_TLS", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -207507,7 +205377,7 @@ }, { "id": "BREACH", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -207516,7 +205386,7 @@ }, { "id": "POODLE_SSL", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -207525,14 +205395,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -207541,7 +205411,7 @@ }, { "id": "FREAK", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -207550,7 +205420,7 @@ }, { "id": "DROWN", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -207559,7 +205429,7 @@ }, { "id": "DROWN_hint", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -207568,7 +205438,7 @@ }, { "id": "LOGJAM", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -207577,7 +205447,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -207586,7 +205456,7 @@ }, { "id": "BEAST", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -207595,7 +205465,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -207604,7 +205474,7 @@ }, { "id": "winshock", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -207613,7 +205483,7 @@ }, { "id": "RC4", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -207622,332 +205492,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "mediature.beta.gouv.fr/148.253.96.193", + "ip": "mediature.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "105" + "finding": "112" } ], "thirdparties": { @@ -208226,7 +206096,7 @@ "cross-origin-embedder-policy": "require-corp", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 07 Jan 2024 06:54:44 GMT", + "date": "Sun, 14 Jan 2024 06:35:01 GMT", "etag": "\"bxgfa2g4qudnf\"", "origin-agent-cluster": "?1", "referrer-policy": "no-referrer", @@ -208238,7 +206108,7 @@ "x-frame-options": "SAMEORIGIN", "x-nextjs-cache": "HIT", "x-permitted-cross-domain-policies": "none", - "x-request-id": "d8975bda-d858-4981-98b1-0bbc5c021e8d", + "x-request-id": "190340bd-da9b-4727-84da-17bee757c7d9", "x-xss-protection": "0" }, "endpoints": [ @@ -208410,7 +206280,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -208500,7 +206370,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 06:53:43", + "@generated": "Sun, 14 Jan 2024 06:32:53", "site": [ { "@name": "https://mediature.beta.gouv.fr", @@ -208605,23 +206475,23 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -208631,36 +206501,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "mediature.beta.gouv.fr.", - "matched-at": "_dmarc.mediature.beta.gouv.fr", + "matched-at": "mediature.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "0 parse.mailjet.com." ], - "timestamp": "2024-01-07T06:57:39.047686241Z", + "timestamp": "2024-01-14T06:38:07.183134585Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -208670,34 +206540,34 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "mediature.beta.gouv.fr.", - "matched-at": "mediature.beta.gouv.fr", - "timestamp": "2024-01-07T06:57:39.06013812Z", + "matched-at": "_dmarc.mediature.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2024-01-14T06:38:07.280254913Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -208713,26 +206583,30 @@ "host": "mediature.beta.gouv.fr.", "matched-at": "mediature.beta.gouv.fr", "extracted-results": [ - "0 parse.mailjet.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2024-01-07T06:57:39.061315808Z", + "timestamp": "2024-01-14T06:38:07.498133702Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -208748,29 +206622,29 @@ "host": "mediature.beta.gouv.fr.", "matched-at": "mediature.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "\"sendinblue-code:15754e1df38b862433eadf5bfaf41a3e\"", + "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com mx ~all\"" ], - "timestamp": "2024-01-07T06:57:39.076831927Z", + "timestamp": "2024-01-14T06:38:08.189939133Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -208786,11 +206660,7 @@ "type": "dns", "host": "mediature.beta.gouv.fr.", "matched-at": "mediature.beta.gouv.fr", - "extracted-results": [ - "\"sendinblue-code:15754e1df38b862433eadf5bfaf41a3e\"", - "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com mx ~all\"" - ], - "timestamp": "2024-01-07T06:57:40.063197047Z", + "timestamp": "2024-01-14T06:38:08.323582207Z", "matcher-status": true }, { @@ -208826,8 +206696,8 @@ "extracted-results": [ " https://github.com/inclusion-numerique/mediature/issues" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T06:58:31.235346554Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T06:39:08.94526243Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.beta.gouv.fr/.well-known/security.txt'", "matcher-status": true }, @@ -208857,8 +206727,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T07:01:42.670996152Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T06:42:26.411665676Z", "matcher-status": true }, { @@ -208887,8 +206757,8 @@ "extracted-results": [ "mediature.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T07:01:42.671108391Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T06:42:26.411777535Z", "matcher-status": true }, { @@ -208918,8 +206788,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T07:01:44.013209234Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T06:42:27.999397098Z", "matcher-status": true }, { @@ -208949,8 +206819,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T07:01:44.20381702Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T06:42:28.212695919Z", "matcher-status": true } ], @@ -208958,7 +206828,7 @@ { "requestedUrl": "https://mediature.beta.gouv.fr/", "finalUrl": "https://www.mediateur-public.fr/", - "fetchTime": "2024-01-07T06:53:57.095Z", + "fetchTime": "2024-01-14T06:33:08.665Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mediature.beta.gouv.fr/) was redirected to https://www.mediateur-public.fr/. Try testing the second URL directly." ], @@ -209023,53 +206893,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1992, + "numericValue": 1976, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1992, - "firstMeaningfulPaint": 1992, - "largestContentfulPaint": 4842, - "interactive": 1992, - "speedIndex": 2478, + "firstContentfulPaint": 1976, + "firstMeaningfulPaint": 1976, + "largestContentfulPaint": 4784, + "interactive": 1976, + "speedIndex": 2676, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.007273163265652127, "cumulativeLayoutShiftMainFrame": 0.007273163265652127, "totalCumulativeLayoutShift": 0.007273163265652127, "observedTimeOrigin": 0, - "observedTimeOriginTs": 361549093, + "observedTimeOriginTs": 361849917, "observedNavigationStart": 0, - "observedNavigationStartTs": 361549093, - "observedFirstPaint": 280, - "observedFirstPaintTs": 361828705, - "observedFirstContentfulPaint": 280, - "observedFirstContentfulPaintTs": 361828705, - "observedFirstContentfulPaintAllFrames": 280, - "observedFirstContentfulPaintAllFramesTs": 361828705, - "observedFirstMeaningfulPaint": 1021, - "observedFirstMeaningfulPaintTs": 362570407, - "observedLargestContentfulPaint": 1021, - "observedLargestContentfulPaintTs": 362570407, - "observedLargestContentfulPaintAllFrames": 1021, - "observedLargestContentfulPaintAllFramesTs": 362570407, - "observedTraceEnd": 3525, - "observedTraceEndTs": 365074188, - "observedLoad": 886, - "observedLoadTs": 362435358, + "observedNavigationStartTs": 361849917, + "observedFirstPaint": 371, + "observedFirstPaintTs": 362220801, + "observedFirstContentfulPaint": 371, + "observedFirstContentfulPaintTs": 362220801, + "observedFirstContentfulPaintAllFrames": 371, + "observedFirstContentfulPaintAllFramesTs": 362220801, + "observedFirstMeaningfulPaint": 1155, + "observedFirstMeaningfulPaintTs": 363005180, + "observedLargestContentfulPaint": 1155, + "observedLargestContentfulPaintTs": 363005180, + "observedLargestContentfulPaintAllFrames": 1155, + "observedLargestContentfulPaintAllFramesTs": 363005180, + "observedTraceEnd": 3711, + "observedTraceEndTs": 365560844, + "observedLoad": 1019, + "observedLoadTs": 362868494, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 361549632, + "observedDomContentLoadedTs": 361850452, "observedCumulativeLayoutShift": 0.007273163265652127, "observedCumulativeLayoutShiftMainFrame": 0.007273163265652127, "observedTotalCumulativeLayoutShift": 0.007273163265652127, - "observedFirstVisualChange": 653, - "observedFirstVisualChangeTs": 362202093, - "observedLastVisualChange": 1136, - "observedLastVisualChangeTs": 362685093, - "observedSpeedIndex": 1024, - "observedSpeedIndexTs": 362572830 + "observedFirstVisualChange": 785, + "observedFirstVisualChangeTs": 362634917, + "observedLastVisualChange": 1285, + "observedLastVisualChangeTs": 363134917, + "observedSpeedIndex": 1173, + "observedSpeedIndexTs": 363022479 }, { "lcpInvalidated": false @@ -209091,19 +206961,19 @@ "numScripts": 38, "numStylesheets": 3, "numFonts": 3, - "numTasks": 28, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.893, - "throughput": 18525646.557121582, - "maxRtt": 84.958, - "maxServerLatency": 11.732, - "totalByteWeight": 832028, - "totalTaskTime": 5.752999999999999, - "mainDocumentTransferSize": 4684 + "rtt": 99.261, + "throughput": 18690225.711752832, + "maxRtt": 101.05, + "maxServerLatency": 10.173000000000002, + "totalByteWeight": 831792, + "totalTaskTime": 4.726, + "mainDocumentTransferSize": 4682 } ] } @@ -209234,7 +207104,7 @@ "http": { "url": "https://mediature.incubateur.net", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 06:55:29 GMT", + "end_time": "Sun, 14 Jan 2024 06:53:34 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -209247,7 +207117,7 @@ "Cross-Origin-Embedder-Policy": "require-corp", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 06:55:28 GMT", + "Date": "Sun, 14 Jan 2024 06:53:33 GMT", "ETag": "\"168ei117ooldnf\"", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "no-referrer", @@ -209259,13 +207129,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "d44055f2-510d-415a-8264-54e94dc87c70", + "X-Request-ID": "afc293f5-642b-4bf4-b27e-5ac7cf37ded2", "X-XSS-Protection": "0", "x-nextjs-cache": "HIT" }, - "scan_id": 46230706, + "scan_id": 46457959, "score": 50, - "start_time": "Sun, 07 Jan 2024 06:55:25 GMT", + "start_time": "Sun, 14 Jan 2024 06:53:30 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -209281,20 +207151,20 @@ "'self'" ], "connect-src": [ - "https://storage.crisp.chat/users/upload/", - "https://api-adresse.data.gouv.fr/", - "https://sentry.incubateur.net/", - "'self'", "wss://client.relay.crisp.chat/", - "https://client.crisp.chat/static/" + "'self'", + "https://api-adresse.data.gouv.fr/", + "https://client.crisp.chat/static/", + "https://storage.crisp.chat/users/upload/", + "https://sentry.incubateur.net/" ], "default-src": [ "'self'" ], "font-src": [ - "data:", + "'self'", "https:", - "'self'" + "data:" ], "form-action": [ "'self'" @@ -209303,25 +207173,25 @@ "'self'" ], "img-src": [ - "https://*.crisp.chat/", + "'self'", "data:", - "'self'" + "https://*.crisp.chat/" ], "object-src": [ "'none'" ], "script-src": [ + "'self'", "'unsafe-inline'", - "https://client.crisp.chat/", - "'self'" + "https://client.crisp.chat/" ], "script-src-attr": [ "'none'" ], "style-src": [ + "'self'", "'unsafe-inline'", - "https:", - "'self'" + "https:" ], "upgrade-insecure-requests": [ "'none'" @@ -209521,77 +207391,77 @@ "testssl": [ { "id": "service", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -209599,7 +207469,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -209607,7 +207477,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -209615,7 +207485,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -209623,7 +207493,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -209631,7 +207501,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -209639,539 +207509,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-11-17 14:24" }, { "id": "cert_notAfter", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-02-15 14:24" }, { "id": "cert_extlifeSpan", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704610639" + "finding": "1705215329" }, { "id": "HSTS_multiple", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests" }, { "id": "X-XSS-Protection", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -210179,7 +208049,7 @@ }, { "id": "heartbleed", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -210188,7 +208058,7 @@ }, { "id": "CCS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -210197,7 +208067,7 @@ }, { "id": "ticketbleed", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -210206,7 +208076,7 @@ }, { "id": "ROBOT", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -210215,7 +208085,7 @@ }, { "id": "secure_renego", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -210223,7 +208093,7 @@ }, { "id": "secure_client_renego", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -210232,7 +208102,7 @@ }, { "id": "CRIME_TLS", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -210241,7 +208111,7 @@ }, { "id": "BREACH", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -210250,7 +208120,7 @@ }, { "id": "POODLE_SSL", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -210259,14 +208129,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -210275,7 +208145,7 @@ }, { "id": "FREAK", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -210284,7 +208154,7 @@ }, { "id": "DROWN", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -210293,7 +208163,7 @@ }, { "id": "DROWN_hint", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -210302,7 +208172,7 @@ }, { "id": "LOGJAM", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -210311,7 +208181,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -210320,7 +208190,7 @@ }, { "id": "BEAST", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -210329,7 +208199,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -210338,7 +208208,7 @@ }, { "id": "winshock", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -210347,7 +208217,7 @@ }, { "id": "RC4", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -210356,392 +208226,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mediature.incubateur.net/109.232.236.90", + "ip": "mediature.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -210749,7 +208619,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -210757,7 +208627,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -210765,7 +208635,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -210773,7 +208643,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -210781,7 +208651,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -210789,539 +208659,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "32 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-17 14:24" }, { "id": "cert_notAfter", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-15 14:24" }, { "id": "cert_extlifeSpan", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704610740" + "finding": "1705215428" }, { "id": "HSTS_multiple", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data: https://client.crisp.chat/static/;form-action 'self';frame-ancestors 'self';img-src 'self' data: https://*.crisp.chat/;object-src 'none';script-src 'self' 'unsafe-inline' https://client.crisp.chat/;script-src-attr 'none';connect-src 'self' https://api-adresse.data.gouv.fr/ wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://storage.crisp.chat/users/upload/ https://sentry.incubateur.net/;style-src 'self' https: 'unsafe-inline' https://client.crisp.chat/;upgrade-insecure-requests" }, { "id": "X-XSS-Protection", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -211329,7 +209199,7 @@ }, { "id": "heartbleed", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -211338,7 +209208,7 @@ }, { "id": "CCS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -211347,7 +209217,7 @@ }, { "id": "ticketbleed", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -211356,7 +209226,7 @@ }, { "id": "ROBOT", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -211365,7 +209235,7 @@ }, { "id": "secure_renego", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -211373,7 +209243,7 @@ }, { "id": "secure_client_renego", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -211382,7 +209252,7 @@ }, { "id": "CRIME_TLS", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -211391,7 +209261,7 @@ }, { "id": "BREACH", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -211400,7 +209270,7 @@ }, { "id": "POODLE_SSL", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -211409,14 +209279,14 @@ }, { "id": "fallback_SCSV", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -211425,7 +209295,7 @@ }, { "id": "FREAK", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -211434,7 +209304,7 @@ }, { "id": "DROWN", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -211443,7 +209313,7 @@ }, { "id": "DROWN_hint", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -211452,7 +209322,7 @@ }, { "id": "LOGJAM", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -211461,7 +209331,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -211470,7 +209340,7 @@ }, { "id": "BEAST", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -211479,7 +209349,7 @@ }, { "id": "LUCKY13", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -211488,7 +209358,7 @@ }, { "id": "winshock", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -211497,7 +209367,7 @@ }, { "id": "RC4", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -211506,330 +209376,361 @@ }, { "id": "clientsimulation-android_60", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mediature.incubateur.net/5.104.101.30", + "ip": "mediature.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "205" + "finding": "202" } ], "thirdparties": { "trackers": [], - "cookies": [], + "cookies": [ + { + "name": "__Secure-next-auth.callback-url", + "value": "https%3A%2F%2Fmediature.incubateur.net", + "domain": "mediature.incubateur.net", + "path": "/", + "expires": -1, + "size": 69, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "__Host-next-auth.csrf-token", + "value": "3d6230fa4fb0c5914c196938016f954af5f6745a0e7f33ea80d0d0a37fc488e7%7C448ac8beb127b9a9c8a18011021df5e251f663da9dab1a1b1d0b68b7af175fa0", + "domain": "mediature.incubateur.net", + "path": "/", + "expires": -1, + "size": 158, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", @@ -211838,7 +209739,7 @@ "cross-origin-embedder-policy": "require-corp", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 07 Jan 2024 06:56:00 GMT", + "date": "Sun, 14 Jan 2024 06:54:11 GMT", "etag": "\"168ei117ooldnf\"", "origin-agent-cluster": "?1", "referrer-policy": "no-referrer", @@ -211850,7 +209751,7 @@ "x-frame-options": "SAMEORIGIN", "x-nextjs-cache": "HIT", "x-permitted-cross-domain-policies": "none", - "x-request-id": "17d3f3ce-0ef6-4155-91b9-758977a8a898", + "x-request-id": "32255140-30aa-4232-acac-6aad2f6cbeb8", "x-xss-protection": "0" }, "endpoints": [ @@ -212176,7 +210077,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 06:54:58", + "@generated": "Sun, 14 Jan 2024 06:53:03", "site": [ { "@name": "https://mediature.incubateur.net", @@ -212268,13 +210169,6 @@ "riskdesc": "Informational (Medium)", "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" }, - { - "name": "Non-Storable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" - }, { "name": "Re-examine Cache-control Directives", "riskcode": "0", @@ -212321,467 +210215,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "mediature.incubateur.net.", - "matched-at": "mediature.incubateur.net", - "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." - ], - "timestamp": "2024-01-07T07:00:51.638256423Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "mediature.incubateur.net.", - "matched-at": "mediature.incubateur.net", - "timestamp": "2024-01-07T07:00:51.643826015Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "mediature.incubateur.net.", - "matched-at": "mediature.incubateur.net", - "extracted-results": [ - "\"sendinblue-code:15754e1df38b862433eadf5bfaf41a3e\"", - "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com mx ~all\"" - ], - "timestamp": "2024-01-07T07:00:51.800348017Z", - "matcher-status": true - }, - { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", - "info": { - "name": "DNS DMARC - Detect", - "author": [ - "juliosmelo" - ], - "tags": [ - "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "dns", - "host": "mediature.incubateur.net.", - "matched-at": "_dmarc.mediature.incubateur.net", - "extracted-results": [ - "\"v=DMARC1;p=none;\"" - ], - "timestamp": "2024-01-07T07:00:51.914812141Z", - "matcher-status": true - }, - { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", - "info": { - "name": "MX Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "mediature.incubateur.net.", - "matched-at": "mediature.incubateur.net", - "extracted-results": [ - "0 parse.mailjet.com." - ], - "timestamp": "2024-01-07T07:00:51.923768631Z", - "matcher-status": true - }, - { - "template": "http/miscellaneous/options-method.yaml", - "template-url": "https://templates.nuclei.sh/public/options-method", - "template-id": "options-method", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/options-method.yaml", - "info": { - "name": "Allowed Options Method", - "author": [ - "pdteam" - ], - "tags": [ - "misc", - "generic" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "extracted-results": [ - "GET", - "HEAD" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T07:01:02.52764438Z", - "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T07:02:04.467249643Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T07:02:04.467308853Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/security-txt.yaml", - "template-url": "https://templates.nuclei.sh/public/security-txt", - "template-id": "security-txt", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/security-txt.yaml", - "info": { - "name": "security.txt File", - "author": [ - "bad5ect0r", - "noraj" - ], - "tags": [ - "misc", - "generic" - ], - "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", - "reference": [ - "https://securitytxt.org/", - "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" - ], - "severity": "info", - "metadata": { - "max-request": 2, - "shodan-query": "http.securitytxt:contact http.status:200", - "verified": true - } - }, - "type": "http", - "host": "https://mediature.incubateur.net", - "matched-at": "https://mediature.incubateur.net/.well-known/security.txt", - "extracted-results": [ - " https://github.com/inclusion-numerique/mediature/issues" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T07:02:21.462426259Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mediature.incubateur.net/.well-known/security.txt'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "mediature.incubateur.net", - "matched-at": "mediature.incubateur.net:443", - "extracted-results": [ - "Let's Encrypt" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T07:05:56.828795742Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "mediature.incubateur.net", - "matched-at": "mediature.incubateur.net:443", - "extracted-results": [ - "mediature.incubateur.net" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T07:05:56.828930594Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "mediature.incubateur.net", - "matched-at": "mediature.incubateur.net:443", - "extracted-results": [ - "tls12" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T07:05:59.441500831Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "mediature.incubateur.net", - "matched-at": "mediature.incubateur.net:443", - "extracted-results": [ - "tls13" - ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T07:05:59.75104366Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://mediature.incubateur.net/", "finalUrl": "https://mediature.incubateur.net/", - "fetchTime": "2024-01-07T06:55:12.984Z", + "fetchTime": "2024-01-14T06:53:17.341Z", "runWarnings": [], "categories": { "performance": { @@ -212844,53 +210283,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1254, + "numericValue": 1294, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1254, - "firstMeaningfulPaint": 1254, - "largestContentfulPaint": 4030, - "interactive": 1254, - "speedIndex": 2778, + "firstContentfulPaint": 1294, + "firstMeaningfulPaint": 1294, + "largestContentfulPaint": 4039, + "interactive": 1294, + "speedIndex": 3974, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.007273163265652127, "cumulativeLayoutShiftMainFrame": 0.007273163265652127, "totalCumulativeLayoutShift": 0.007273163265652127, "observedTimeOrigin": 0, - "observedTimeOriginTs": 280978693, + "observedTimeOriginTs": 255579337, "observedNavigationStart": 0, - "observedNavigationStartTs": 280978693, - "observedFirstPaint": 549, - "observedFirstPaintTs": 281527610, - "observedFirstContentfulPaint": 549, - "observedFirstContentfulPaintTs": 281527610, - "observedFirstContentfulPaintAllFrames": 549, - "observedFirstContentfulPaintAllFramesTs": 281527610, - "observedFirstMeaningfulPaint": 1573, - "observedFirstMeaningfulPaintTs": 282552021, - "observedLargestContentfulPaint": 1573, - "observedLargestContentfulPaintTs": 282552021, - "observedLargestContentfulPaintAllFrames": 1573, - "observedLargestContentfulPaintAllFramesTs": 282552021, - "observedTraceEnd": 4223, - "observedTraceEndTs": 285202134, - "observedLoad": 1438, - "observedLoadTs": 282417101, - "observedDomContentLoaded": 0, - "observedDomContentLoadedTs": 280979192, + "observedNavigationStartTs": 255579337, + "observedFirstPaint": 491, + "observedFirstPaintTs": 256070498, + "observedFirstContentfulPaint": 491, + "observedFirstContentfulPaintTs": 256070498, + "observedFirstContentfulPaintAllFrames": 491, + "observedFirstContentfulPaintAllFramesTs": 256070498, + "observedFirstMeaningfulPaint": 491, + "observedFirstMeaningfulPaintTs": 256070498, + "observedLargestContentfulPaint": 2381, + "observedLargestContentfulPaintTs": 257960076, + "observedLargestContentfulPaintAllFrames": 2381, + "observedLargestContentfulPaintAllFramesTs": 257960076, + "observedTraceEnd": 5200, + "observedTraceEndTs": 260779580, + "observedLoad": 2242, + "observedLoadTs": 257821155, + "observedDomContentLoaded": 1, + "observedDomContentLoadedTs": 255579855, "observedCumulativeLayoutShift": 0.007273163265652127, "observedCumulativeLayoutShiftMainFrame": 0.007273163265652127, "observedTotalCumulativeLayoutShift": 0.007273163265652127, - "observedFirstVisualChange": 1060, - "observedFirstVisualChangeTs": 282038693, - "observedLastVisualChange": 1743, - "observedLastVisualChangeTs": 282721693, - "observedSpeedIndex": 1580, - "observedSpeedIndexTs": 282559031 + "observedFirstVisualChange": 1443, + "observedFirstVisualChangeTs": 257022337, + "observedLastVisualChange": 2760, + "observedLastVisualChangeTs": 258339337, + "observedSpeedIndex": 2416, + "observedSpeedIndexTs": 257995346 }, { "lcpInvalidated": false @@ -212913,18 +210352,18 @@ "numStylesheets": 3, "numFonts": 3, "numTasks": 15, - "numTasksOver10ms": 1, + "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 148.477, - "throughput": 13149773.310301319, - "maxRtt": 157.09900000000002, - "maxServerLatency": 2.2259999999999707, - "totalByteWeight": 831687, - "totalTaskTime": 18.648999999999997, - "mainDocumentTransferSize": 4684 + "rtt": 147.402, + "throughput": 7169046.790359352, + "maxRtt": 149.906, + "maxServerLatency": 79.21600000000001, + "totalByteWeight": 831639, + "totalTaskTime": 4.851999999999999, + "mainDocumentTransferSize": 4675 } ] } @@ -213016,8 +210455,8 @@ "testsslExpireSoon": false, "testsslExpireDate": "2024-02-15T14:24:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "B", + "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, "lighthouse_performance": 0.5, @@ -213046,7 +210485,7 @@ "http": { "url": "https://mes-aides.1jeune1solution.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 06:48:15 GMT", + "end_time": "Sun, 14 Jan 2024 06:48:58 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -213054,17 +210493,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 06:48:14 GMT", - "ETag": "W/\"65981e95-dcb\"", - "Last-Modified": "Fri, 05 Jan 2024 15:21:57 GMT", + "Date": "Sun, 14 Jan 2024 06:48:57 GMT", + "ETag": "W/\"65a01188-dcb\"", + "Last-Modified": "Thu, 11 Jan 2024 16:04:24 GMT", "Server": "nginx/1.18.0", "Strict-Transport-Security": "max-age=32850000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding" }, - "scan_id": 46230551, + "scan_id": 46457883, "score": 40, - "start_time": "Sun, 07 Jan 2024 06:48:12 GMT", + "start_time": "Sun, 14 Jan 2024 06:48:54 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -213238,7 +210677,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-01T13:47:32Z", + "up_since": "2024-01-09T11:26:58Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -213250,8 +210689,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T07:16:02Z", - "next_check_at": "2024-01-07T07:20:59Z", + "last_check_at": "2024-01-14T06:59:55Z", + "next_check_at": "2024-01-14T07:04:53Z", "created_at": "2021-04-22T19:59:33Z", "mute_until": null, "favicon_url": "https://mes-aides.1jeune1solution.beta.gouv.fr/img/favicon/android-chrome-192x192.png", @@ -213259,7 +210698,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T06:41:09Z", + "tested_at": "2024-01-14T06:59:56Z", "expires_at": "2024-03-27T21:41:13Z", "valid": true, "error": null @@ -213268,11 +210707,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 530, - "connection": 149, - "handshake": 154, - "response": 158, - "total": 991 + "namelookup": 282, + "connection": 151, + "handshake": 161, + "response": 153, + "total": 746 } }, "uptimeGrade": "A", @@ -213291,10 +210730,10 @@ "version": "8.4p1 Debian 5+deb11u3", "vulnerabilities": [ { - "cvss": "5.0", - "is_exploit": "false", "type": "prion", - "id": "PRION:CVE-2016-20012" + "id": "PRION:CVE-2016-20012", + "cvss": "5.0", + "is_exploit": "false" } ] } @@ -213714,7 +211153,7 @@ "ip": "mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", - "finding": "80 >= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", @@ -213917,7 +211356,7 @@ "ip": "mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "1704611667" + "finding": "1705215389" }, { "id": "HSTS_time", @@ -214480,7 +211919,7 @@ "ip": "mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "66" + "finding": "62" } ], "thirdparties": { @@ -214494,9 +211933,9 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 07:13:24 GMT", - "etag": "W/\"65981e95-dcb\"", - "last-modified": "Fri, 05 Jan 2024 15:21:57 GMT", + "date": "Sun, 14 Jan 2024 06:55:24 GMT", + "etag": "W/\"65a01188-dcb\"", + "last-modified": "Thu, 11 Jan 2024 16:04:24 GMT", "server": "nginx/1.18.0", "strict-transport-security": "max-age=32850000; includeSubDomains", "vary": "Accept-Encoding" @@ -214614,7 +212053,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -214828,7 +212267,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 07:12:45", + "@generated": "Sun, 14 Jan 2024 06:54:45", "site": [ { "@name": "https://mes-aides.1jeune1solution.beta.gouv.fr", @@ -214982,22 +212421,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -215013,29 +212452,26 @@ "type": "dns", "host": "mes-aides.1jeune1solution.beta.gouv.fr.", "matched-at": "mes-aides.1jeune1solution.beta.gouv.fr", - "extracted-results": [ - "\"google-site-verification=HPmBmQL1wAjNXTwozfdLx1SVDAacoObm-CFsvx53DzY\"" - ], - "timestamp": "2024-01-07T07:15:36.093269885Z", + "timestamp": "2024-01-14T06:57:33.923951502Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -215051,7 +212487,10 @@ "type": "dns", "host": "mes-aides.1jeune1solution.beta.gouv.fr.", "matched-at": "mes-aides.1jeune1solution.beta.gouv.fr", - "timestamp": "2024-01-07T07:15:37.090900701Z", + "extracted-results": [ + "\"google-site-verification=HPmBmQL1wAjNXTwozfdLx1SVDAacoObm-CFsvx53DzY\"" + ], + "timestamp": "2024-01-14T06:57:33.926374248Z", "matcher-status": true }, { @@ -215090,7 +212529,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:15:47.886990145Z", + "timestamp": "2024-01-14T06:57:45.686927945Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -215122,7 +212561,7 @@ "nginx/1.18.0" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:15:47.894080794Z", + "timestamp": "2024-01-14T06:57:45.694233899Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -215149,7 +212588,303 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:10.962184767Z", + "timestamp": "2024-01-14T06:58:08.782195942Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T06:58:17.726974389Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T06:58:17.727021987Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T06:58:17.727038999Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T06:58:17.727052384Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T06:58:17.727069717Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T06:58:17.727086658Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T06:58:17.727101336Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T06:58:17.727164694Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -215186,266 +212921,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.892559449Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.892605205Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.892621976Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.89263446Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.892650159Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.892664186Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.892679164Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.892692319Z", + "timestamp": "2024-01-14T06:58:17.727179612Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -215482,44 +212958,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.892705393Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:19.892718448Z", + "timestamp": "2024-01-14T06:58:17.727193949Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -215547,7 +212986,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr/robots.txt", "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:29.297728019Z", + "timestamp": "2024-01-14T06:58:27.100177717Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -215575,7 +213014,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr/robots.txt", "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:29.304636372Z", + "timestamp": "2024-01-14T06:58:27.116936814Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -215615,7 +213054,7 @@ "host": "https://mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://mes-aides.1jeune1solution.beta.gouv.fr/", "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:16:41.844964495Z", + "timestamp": "2024-01-14T06:58:39.634876691Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mes-aides.1jeune1solution.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.1jeune1solution.beta.gouv.fr/'", "matcher-status": true }, @@ -215665,7 +213104,7 @@ "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:17:01.336923372Z", + "timestamp": "2024-01-14T06:58:59.150837714Z", "matcher-status": true }, { @@ -215695,7 +213134,7 @@ "Let's Encrypt" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:17:02.937683176Z", + "timestamp": "2024-01-14T06:59:00.747411551Z", "matcher-status": true }, { @@ -215726,7 +213165,7 @@ "www.mes-aides.1jeune1solution.beta.gouv.fr" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:17:02.937806287Z", + "timestamp": "2024-01-14T06:59:00.747547896Z", "matcher-status": true }, { @@ -215757,7 +213196,7 @@ "tls12" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:17:04.91016236Z", + "timestamp": "2024-01-14T06:59:02.792250839Z", "matcher-status": true }, { @@ -215788,7 +213227,7 @@ "tls13" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T07:17:05.108609151Z", + "timestamp": "2024-01-14T06:59:02.986643875Z", "matcher-status": true } ], @@ -215796,7 +213235,7 @@ { "requestedUrl": "https://mes-aides.1jeune1solution.beta.gouv.fr/", "finalUrl": "https://mes-aides.1jeune1solution.beta.gouv.fr/", - "fetchTime": "2024-01-07T07:12:58.868Z", + "fetchTime": "2024-01-14T06:54:59.249Z", "runWarnings": [], "categories": { "performance": { @@ -215859,53 +213298,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2859, + "numericValue": 2762, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2402, - "firstMeaningfulPaint": 2571, - "largestContentfulPaint": 2722, - "interactive": 2859, - "speedIndex": 2937, - "totalBlockingTime": 128, - "maxPotentialFID": 306, + "firstContentfulPaint": 2403, + "firstMeaningfulPaint": 2527, + "largestContentfulPaint": 2678, + "interactive": 2762, + "speedIndex": 2823, + "totalBlockingTime": 80, + "maxPotentialFID": 209, "cumulativeLayoutShift": 0.03899305555555556, "cumulativeLayoutShiftMainFrame": 0.03899305555555556, "totalCumulativeLayoutShift": 0.03899305555555556, "observedTimeOrigin": 0, - "observedTimeOriginTs": 266816480, + "observedTimeOriginTs": 238932686, "observedNavigationStart": 0, - "observedNavigationStartTs": 266816480, - "observedFirstPaint": 901, - "observedFirstPaintTs": 267717287, - "observedFirstContentfulPaint": 901, - "observedFirstContentfulPaintTs": 267717287, - "observedFirstContentfulPaintAllFrames": 901, - "observedFirstContentfulPaintAllFramesTs": 267717287, - "observedFirstMeaningfulPaint": 901, - "observedFirstMeaningfulPaintTs": 267717287, - "observedLargestContentfulPaint": 901, - "observedLargestContentfulPaintTs": 267717287, - "observedLargestContentfulPaintAllFrames": 901, - "observedLargestContentfulPaintAllFramesTs": 267717287, - "observedTraceEnd": 3478, - "observedTraceEndTs": 270294086, - "observedLoad": 1168, - "observedLoadTs": 267984844, - "observedDomContentLoaded": 878, - "observedDomContentLoadedTs": 267694247, + "observedNavigationStartTs": 238932686, + "observedFirstPaint": 858, + "observedFirstPaintTs": 239790816, + "observedFirstContentfulPaint": 858, + "observedFirstContentfulPaintTs": 239790816, + "observedFirstContentfulPaintAllFrames": 858, + "observedFirstContentfulPaintAllFramesTs": 239790816, + "observedFirstMeaningfulPaint": 858, + "observedFirstMeaningfulPaintTs": 239790816, + "observedLargestContentfulPaint": 858, + "observedLargestContentfulPaintTs": 239790816, + "observedLargestContentfulPaintAllFrames": 858, + "observedLargestContentfulPaintAllFramesTs": 239790816, + "observedTraceEnd": 3458, + "observedTraceEndTs": 242391036, + "observedLoad": 1151, + "observedLoadTs": 240083476, + "observedDomContentLoaded": 820, + "observedDomContentLoadedTs": 239752766, "observedCumulativeLayoutShift": 0.03899305555555556, "observedCumulativeLayoutShiftMainFrame": 0.03899305555555556, "observedTotalCumulativeLayoutShift": 0.03899305555555556, - "observedFirstVisualChange": 906, - "observedFirstVisualChangeTs": 267722480, - "observedLastVisualChange": 1272, - "observedLastVisualChangeTs": 268088480, - "observedSpeedIndex": 927, - "observedSpeedIndexTs": 267743290 + "observedFirstVisualChange": 857, + "observedFirstVisualChangeTs": 239789686, + "observedLastVisualChange": 1257, + "observedLastVisualChangeTs": 240189686, + "observedSpeedIndex": 881, + "observedSpeedIndexTs": 239813574 }, { "lcpInvalidated": false @@ -215927,19 +213366,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 587, + "numTasks": 598, "numTasksOver10ms": 3, - "numTasksOver25ms": 1, - "numTasksOver50ms": 1, + "numTasksOver25ms": 2, + "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 84.954, - "throughput": 15261942.706115255, - "maxRtt": 85.67399999999999, - "maxServerLatency": 1.8160000000000167, - "totalByteWeight": 687127, - "totalTaskTime": 274.2329999999983, - "mainDocumentTransferSize": 1483 + "rtt": 84.971, + "throughput": 14935028.593937432, + "maxRtt": 87.648, + "maxServerLatency": 2.718999999999994, + "totalByteWeight": 687170, + "totalTaskTime": 269.5119999999988, + "mainDocumentTransferSize": 1485 } ] } @@ -216087,7 +213526,7 @@ "http": { "url": "https://mesevenementsemploi.pole-emploi.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 07:18:48 GMT", + "end_time": "Sun, 14 Jan 2024 07:11:07 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -216098,14 +213537,14 @@ "Content-Encoding": "gzip", "Content-Length": "1332", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 07:18:47 GMT", + "Date": "Sun, 14 Jan 2024 07:11:05 GMT", "Last-Modified": "Tue, 19 Dec 2023 15:08:18 GMT", - "Set-Cookie": "TS01e1f9f1=01b3abf0a2a9042a378a5fbb5a240d7d2f3260acea63ea28f5d56dc4460c73002e7c3b4429084ff93d879c9e9b5a1d8ec68d6c9cb1; Path=/; Domain=.mesevenementsemploi.pole-emploi.fr; Secure; HTTPOnly", + "Set-Cookie": "TS01e1f9f1=01b3abf0a2ccf286d358e1f62417062b8ed40268d5f1a6f06a899b8804331785820c9447d00d717623d80fcc909ebb58ad621c81e4; Path=/; Domain=.mesevenementsemploi.pole-emploi.fr; Secure; HTTPOnly", "Vary": "Accept-Encoding" }, - "scan_id": 46230959, + "scan_id": 46458199, "score": 20, - "start_time": "Sun, 07 Jan 2024 07:18:43 GMT", + "start_time": "Sun, 14 Jan 2024 07:11:02 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -216651,7 +214090,7 @@ "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "OK", - "finding": "107 >= 60 days" + "finding": "100 >= 60 days" }, { "id": "cert_notBefore", @@ -217361,7 +214800,7 @@ "ip": "mesevenementsemploi.pole-emploi.fr/185.215.64.42", "port": "443", "severity": "INFO", - "finding": "103" + "finding": "63" } ], "thirdparties": { @@ -217428,11 +214867,11 @@ }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=620985&idclient=lr35y7c0xi8x9o2f" + "url": "https://hd.pe.fr/event?s=620985&idclient=lrd5r7xhgfvgrmmp" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=620985&idclient=lr35y7c0xi8x9o2f" + "url": "https://hd.pe.fr/event?s=620985&idclient=lrd5r7xhgfvgrmmp" }, { "type": "google fonts", @@ -217468,11 +214907,11 @@ }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=620985&idclient=lr35y7c0xi8x9o2f" + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/style?pkgId=403&version=1847960380" }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/style?pkgId=403&version=1847960380" + "url": "https://hd.pe.fr/event?s=620985&idclient=lrd5r7xhgfvgrmmp" }, { "type": "google fonts", @@ -217504,17 +214943,17 @@ }, { "type": "unknown", - "url": "https://guidances-applicatives.pole-emploi.fr/know/api/hit?d=pn242&u=yc12r1wgd4q&e=1%7CdailyUser%7C&e=1%7CnewMonthlyUser%7C&stamp=1704611965241&tl=fr&al=fr" + "url": "https://guidances-applicatives.pole-emploi.fr/know/api/hit?d=pn242&u=v5v198wfpnd&e=1%7CdailyUser%7C&e=1%7CnewMonthlyUser%7C&stamp=1705216299965&tl=fr&al=fr" } ], "cookies": [ { "name": "TS01e1f9f1", - "value": "01b3abf0a24ac90800822de0304fd13741c0b591dc2757dd8286120edfd7c670fccf0089fac2c17f678aafd6f2107f5263ecb437fa8db84c8688408a35d14eaabcb60156819a5df2ddccc244d4daf07d28ad01e3e70531b650ad2e99299068bd7a3d5997782f04948e97f38fb674dcdb1cfaae5be4aee5c0a0a8f7a9b25ddd15f8a6b402212de36e6e9a985299484d13f5e42802ba", + "value": "01b3abf0a2571b3d82fc24f7bfa483adbe6b31c733600ca9bb41754c6ad965bf867346af51926af6358d4eba5ca70ffef95080c039b2fe005693b47053c9e8a545dcf10bf26bf38c4943e57d843521d818f3f0f5ea59ab5321e003c34f2f308a62440d35a15c0b7702ed07f236b2f9aadb873ea107b4ec940a3c35943126d8ab0875d553f9", "domain": ".mesevenementsemploi.pole-emploi.fr", "path": "/", "expires": -1, - "size": 308, + "size": 276, "httpOnly": true, "secure": true, "session": true, @@ -217524,10 +214963,10 @@ }, { "name": "ADRUM_BTa", - "value": "R:75|g:f88a6be8-21cd-4ae4-9a98-231039b82fba|n:pole-emploi_39312bed-46a3-4e23-aac7-07f3e30d3139", + "value": "R:75|g:3da37796-87eb-44de-b2ca-0a5116ea033e|n:pole-emploi_39312bed-46a3-4e23-aac7-07f3e30d3139", "domain": "mesevenementsemploi.pole-emploi.fr", "path": "/", - "expires": 1704611992.478531, + "expires": 1705216328.177109, "size": 103, "httpOnly": false, "secure": false, @@ -217541,7 +214980,7 @@ "value": "None", "domain": "mesevenementsemploi.pole-emploi.fr", "path": "/", - "expires": 1704611992.478547, + "expires": 1705216328.177122, "size": 12, "httpOnly": false, "secure": true, @@ -217552,10 +214991,10 @@ }, { "name": "TCPID", - "value": "12410719212692289218", + "value": "12410711375263121228", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1738567161, + "expires": 1739171497, "size": 25, "httpOnly": false, "secure": false, @@ -217567,10 +215006,10 @@ }, { "name": "_pcid", - "value": "%7B%22browserId%22%3A%22lr35y7c0xi8x9o2f%22%2C%22_t%22%3A%22m6rkvoo8%22%7D", + "value": "%7B%22browserId%22%3A%22lrd5r7xhgfvgrmmp%22%2C%22_t%22%3A%22m71kop9q%22%7D", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1738739961, + "expires": 1739344297, "size": 79, "httpOnly": false, "secure": true, @@ -217582,11 +215021,11 @@ }, { "name": "_pctx", - "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAGwwA1gDdKlAJwgAvkA", + "value": "%7Bu%7DN4IgrgzgpgThIC4B2YA2qA05owMoBcBDfSREQpAeyRCwgEt8oBJAE0RXSwH18yBbAOwBGANaUADgE4YIAL5A", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1738739961, - "size": 95, + "expires": 1739344297, + "size": 96, "httpOnly": false, "secure": true, "session": false, @@ -217600,7 +215039,7 @@ "value": "%7B%7D", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1738739962, + "expires": 1739344297, "size": 13, "httpOnly": false, "secure": true, @@ -217612,11 +215051,11 @@ }, { "name": "ADRUM_BT1", - "value": "R:75|i:2321410|e:98", + "value": "R:75|i:2321410|e:154", "domain": "mesevenementsemploi.pole-emploi.fr", "path": "/", - "expires": 1704611992.478573, - "size": 28, + "expires": 1705216328.177145, + "size": 29, "httpOnly": false, "secure": false, "session": false, @@ -217629,7 +215068,7 @@ "value": "%22optin%22", "domain": ".pole-emploi.fr", "path": "/", - "expires": 1738739961, + "expires": 1739344297, "size": 21, "httpOnly": false, "secure": true, @@ -217647,9 +215086,9 @@ "content-encoding": "gzip", "content-length": "1332", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 07:19:19 GMT", + "date": "Sun, 14 Jan 2024 07:11:36 GMT", "last-modified": "Tue, 19 Dec 2023 15:08:18 GMT", - "set-cookie": "TS01e1f9f1=01b3abf0a2c7d6b3a44c47ece5f8c2a0fbb278c65d2757dd8286120edfd7c670fccf0089fa1d4221fb4124050553c4fd3016f73e71; Path=/; Domain=.mesevenementsemploi.pole-emploi.fr; Secure; HTTPOnly", + "set-cookie": "TS01e1f9f1=01b3abf0a22b090a91f467252665c5d85c3dc527b0600ca9bb41754c6ad965bf867346af511fadd919cf09392b23313c94c127e8b0; Path=/; Domain=.mesevenementsemploi.pole-emploi.fr; Secure; HTTPOnly", "vary": "Accept-Encoding" }, "endpoints": [ @@ -217711,7 +215150,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.217.138", + "ip": "172.253.62.95", "geoip": { "continent": { "code": "NA", @@ -217731,7 +215170,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -217751,7 +215190,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -217765,7 +215204,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.176.3", + "ip": "142.251.163.94", "geoip": { "continent": { "code": "NA", @@ -217785,7 +215224,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -217805,7 +215244,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -217839,7 +215278,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -217859,7 +215298,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -217887,7 +215326,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "13.33.21.9", + "ip": "18.160.18.10", "geoip": { "continent": { "code": "NA", @@ -217907,7 +215346,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -217927,7 +215366,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -218017,7 +215456,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -218037,7 +215476,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -218065,7 +215504,7 @@ }, { "hostname": "privacy.trustcommander.net", - "ip": "35.181.254.247", + "ip": "52.47.53.150", "geoip": { "city": { "geoname_id": 2988507, @@ -218122,7 +215561,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -218141,7 +215580,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -218159,7 +215600,7 @@ }, { "hostname": "hd.pe.fr", - "ip": "18.164.174.102", + "ip": "18.160.18.7", "geoip": { "continent": { "code": "NA", @@ -218179,7 +215620,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -218199,7 +215640,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -218381,7 +215822,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 07:18:15", + "@generated": "Sun, 14 Jan 2024 07:10:36", "site": [ { "@name": "https://mesevenementsemploi.pole-emploi.fr", @@ -218559,7 +216000,7 @@ "type": "dns", "host": "mesevenementsemploi.pole-emploi.fr.", "matched-at": "mesevenementsemploi.pole-emploi.fr", - "timestamp": "2024-01-07T07:22:14.21493161Z", + "timestamp": "2024-01-14T07:13:41.077886384Z", "matcher-status": true }, { @@ -218590,12 +216031,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.666488034Z", + "timestamp": "2024-01-14T07:14:32.902945659Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218627,12 +216068,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.666534019Z", + "timestamp": "2024-01-14T07:14:32.902984512Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218664,12 +216105,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.666548015Z", + "timestamp": "2024-01-14T07:14:32.902996484Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218701,12 +216142,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.666560208Z", + "timestamp": "2024-01-14T07:14:32.903005601Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218738,12 +216179,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.666580666Z", + "timestamp": "2024-01-14T07:14:32.903020289Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218775,12 +216216,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-frame-options", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.666598209Z", + "timestamp": "2024-01-14T07:14:32.903035868Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218812,12 +216253,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.666614359Z", + "timestamp": "2024-01-14T07:14:32.90317069Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218849,12 +216290,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.666635969Z", + "timestamp": "2024-01-14T07:14:32.903186139Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218886,12 +216327,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.66665218Z", + "timestamp": "2024-01-14T07:14:32.903205846Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218923,12 +216364,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/error/409.html", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:32.666670394Z", + "timestamp": "2024-01-14T07:14:32.903222557Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -218969,18 +216410,18 @@ "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:23:51.814167614Z", + "timestamp": "2024-01-14T07:14:48.27950285Z", "interaction": { "protocol": "dns", - "unique-id": "cmd529uc4pgvbcur6h9gskdgthgma9rdu", - "full-id": "CMD529UC4PGvBcUR6H9gSkDGthgMa9rDU", + "unique-id": "cmhoj9mm7tivat5p0uj0bopk97djezur1", + "full-id": "cmhoj9mm7tivat5p0uj0bopk97djezur1", "q-type": "A", - "raw-request": ";; opcode: QUERY, status: NOERROR, id: 15089\n;; flags: cd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0\n\n;; QUESTION SECTION:\n;CMD529UC4PGvBcUR6H9gSkDGthgMa9rDU.oaSt.pRo.\tIN\t A\n", - "raw-response": ";; opcode: QUERY, status: NOERROR, id: 15089\n;; flags: qr aa cd; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2\n\n;; QUESTION SECTION:\n;CMD529UC4PGvBcUR6H9gSkDGthgMa9rDU.oaSt.pRo.\tIN\t A\n\n;; ANSWER SECTION:\nCMD529UC4PGvBcUR6H9gSkDGthgMa9rDU.oaSt.pRo.\t3600\tIN\tA\t178.128.212.209\n\n;; AUTHORITY SECTION:\nCMD529UC4PGvBcUR6H9gSkDGthgMa9rDU.oaSt.pRo.\t3600\tIN\tNS\tns1.oast.pro.\nCMD529UC4PGvBcUR6H9gSkDGthgMa9rDU.oaSt.pRo.\t3600\tIN\tNS\tns2.oast.pro.\n\n;; ADDITIONAL SECTION:\nns1.oast.pro.\t3600\tIN\tA\t178.128.212.209\nns2.oast.pro.\t3600\tIN\tA\t178.128.212.209\n", - "remote-address": "172.253.0.4", - "timestamp": "2024-01-07T07:23:48.826477916Z" + "raw-request": ";; opcode: QUERY, status: NOERROR, id: 46522\n;; flags:; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1\n\n;; OPT PSEUDOSECTION:\n; EDNS: version 0; flags: do; udp: 1452\n\n;; QUESTION SECTION:\n;cmhoj9mm7tivat5p0uj0bopk97djezur1.oast.me.\tIN\t A\n", + "raw-response": ";; opcode: QUERY, status: NOERROR, id: 46522\n;; flags: qr aa; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2\n\n;; QUESTION SECTION:\n;cmhoj9mm7tivat5p0uj0bopk97djezur1.oast.me.\tIN\t A\n\n;; ANSWER SECTION:\ncmhoj9mm7tivat5p0uj0bopk97djezur1.oast.me.\t3600\tIN\tA\t178.128.209.14\n\n;; AUTHORITY SECTION:\ncmhoj9mm7tivat5p0uj0bopk97djezur1.oast.me.\t3600\tIN\tNS\tns1.oast.me.\ncmhoj9mm7tivat5p0uj0bopk97djezur1.oast.me.\t3600\tIN\tNS\tns2.oast.me.\n\n;; ADDITIONAL SECTION:\nns1.oast.me.\t3600\tIN\tA\t178.128.209.14\nns2.oast.me.\t3600\tIN\tA\t178.128.209.14\n", + "remote-address": "172.70.33.166", + "timestamp": "2024-01-14T07:14:43.551047619Z" }, - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'Host: cmd529uc4pgvbcur6h9gskdgthgma9rdu.oast.pro' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'Host: cmhoj9mm7tivat5p0uj0bopk97djezur1.oast.me' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, { @@ -219012,7 +216453,7 @@ "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:24:06.913553621Z", + "timestamp": "2024-01-14T07:14:55.275235452Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr'", "matcher-status": true }, @@ -219052,7 +216493,7 @@ "host": "https://mesevenementsemploi.pole-emploi.fr", "matched-at": "https://mesevenementsemploi.pole-emploi.fr/", "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:24:12.646157201Z", + "timestamp": "2024-01-14T07:14:59.095442089Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mesevenementsemploi.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mesevenementsemploi.pole-emploi.fr/'", "matcher-status": true }, @@ -219083,7 +216524,7 @@ "Entrust, Inc." ], "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:28:28.840626123Z", + "timestamp": "2024-01-14T07:19:40.226995995Z", "matcher-status": true }, { @@ -219114,7 +216555,7 @@ "www.mesevenementsemploi.pole-emploi.fr" ], "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:28:28.840764561Z", + "timestamp": "2024-01-14T07:19:40.227138491Z", "matcher-status": true }, { @@ -219145,7 +216586,7 @@ "tls12" ], "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:28:30.94963602Z", + "timestamp": "2024-01-14T07:19:43.30568723Z", "matcher-status": true }, { @@ -219176,7 +216617,7 @@ "tls13" ], "ip": "185.215.64.42", - "timestamp": "2024-01-07T07:28:31.4332145Z", + "timestamp": "2024-01-14T07:19:43.517679031Z", "matcher-status": true } ], @@ -219184,7 +216625,7 @@ { "requestedUrl": "https://mesevenementsemploi.pole-emploi.fr/", "finalUrl": "https://mesevenementsemploi.pole-emploi.fr/mes-evenements-emploi/", - "fetchTime": "2024-01-07T07:18:30.056Z", + "fetchTime": "2024-01-14T07:10:50.577Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mesevenementsemploi.pole-emploi.fr/) was redirected to https://mesevenementsemploi.pole-emploi.fr/mes-evenements-emploi/. Try testing the second URL directly." ], @@ -219197,7 +216638,7 @@ "snapshot" ], "id": "performance", - "score": 0.7128435134887695 + "score": 0.60994873046875 }, "accessibility": { "title": "Accessibility", @@ -219249,53 +216690,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9670, + "numericValue": 9789, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5578, - "firstMeaningfulPaint": 5908, - "largestContentfulPaint": 11390, - "interactive": 9670, - "speedIndex": 8289, - "totalBlockingTime": 251, - "maxPotentialFID": 181, - "cumulativeLayoutShift": 0.4113518191443549, - "cumulativeLayoutShiftMainFrame": 0.4113518191443549, - "totalCumulativeLayoutShift": 0.4113518191443549, + "firstContentfulPaint": 5169, + "firstMeaningfulPaint": 5532, + "largestContentfulPaint": 10164, + "interactive": 9789, + "speedIndex": 12526, + "totalBlockingTime": 216, + "maxPotentialFID": 170, + "cumulativeLayoutShift": 0.18212462022569445, + "cumulativeLayoutShiftMainFrame": 0.18212462022569445, + "totalCumulativeLayoutShift": 0.18212462022569445, "observedTimeOrigin": 0, - "observedTimeOriginTs": 279665535, + "observedTimeOriginTs": 165117818, "observedNavigationStart": 0, - "observedNavigationStartTs": 279665535, - "observedFirstPaint": 2805, - "observedFirstPaintTs": 282470128, - "observedFirstContentfulPaint": 2805, - "observedFirstContentfulPaintTs": 282470128, - "observedFirstContentfulPaintAllFrames": 2805, - "observedFirstContentfulPaintAllFramesTs": 282470128, - "observedFirstMeaningfulPaint": 3370, - "observedFirstMeaningfulPaintTs": 283035397, - "observedLargestContentfulPaint": 3397, - "observedLargestContentfulPaintTs": 283062943, - "observedLargestContentfulPaintAllFrames": 3397, - "observedLargestContentfulPaintAllFramesTs": 283062943, - "observedTraceEnd": 6270, - "observedTraceEndTs": 285935180, - "observedLoad": 3962, - "observedLoadTs": 283627208, - "observedDomContentLoaded": 2121, - "observedDomContentLoadedTs": 281786530, - "observedCumulativeLayoutShift": 0.4113518191443549, - "observedCumulativeLayoutShiftMainFrame": 0.4113518191443549, - "observedTotalCumulativeLayoutShift": 0.4113518191443549, - "observedFirstVisualChange": 2806, - "observedFirstVisualChangeTs": 282471535, - "observedLastVisualChange": 3406, - "observedLastVisualChangeTs": 283071535, - "observedSpeedIndex": 2975, - "observedSpeedIndexTs": 282640361 + "observedNavigationStartTs": 165117818, + "observedFirstPaint": 1681, + "observedFirstPaintTs": 166799106, + "observedFirstContentfulPaint": 1681, + "observedFirstContentfulPaintTs": 166799106, + "observedFirstContentfulPaintAllFrames": 1681, + "observedFirstContentfulPaintAllFramesTs": 166799106, + "observedFirstMeaningfulPaint": 2138, + "observedFirstMeaningfulPaintTs": 167255431, + "observedLargestContentfulPaint": 2049, + "observedLargestContentfulPaintTs": 167167204, + "observedLargestContentfulPaintAllFrames": 2049, + "observedLargestContentfulPaintAllFramesTs": 167167204, + "observedTraceEnd": 4670, + "observedTraceEndTs": 169787707, + "observedLoad": 2360, + "observedLoadTs": 167478174, + "observedDomContentLoaded": 1322, + "observedDomContentLoadedTs": 166439610, + "observedCumulativeLayoutShift": 0.18212462022569445, + "observedCumulativeLayoutShiftMainFrame": 0.18212462022569445, + "observedTotalCumulativeLayoutShift": 0.18212462022569445, + "observedFirstVisualChange": 1692, + "observedFirstVisualChangeTs": 166809818, + "observedLastVisualChange": 4075, + "observedLastVisualChangeTs": 169192818, + "observedSpeedIndex": 3485, + "observedSpeedIndexTs": 168603089 }, { "lcpInvalidated": false @@ -219313,22 +216754,22 @@ "type": "debugdata", "items": [ { - "numRequests": 52, + "numRequests": 54, "numScripts": 15, "numStylesheets": 5, "numFonts": 3, - "numTasks": 1082, - "numTasksOver10ms": 8, + "numTasks": 1096, + "numTasksOver10ms": 9, "numTasksOver25ms": 2, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 8.717999999999996, - "throughput": 3723969.9214048884, - "maxRtt": 149.411, - "maxServerLatency": 196.252, - "totalByteWeight": 2029815, - "totalTaskTime": 400.436999999999, + "rtt": 1.3129999999999997, + "throughput": 6579314.549829087, + "maxRtt": 93.679, + "maxServerLatency": 11.41, + "totalByteWeight": 2044992, + "totalTaskTime": 424.522999999999, "mainDocumentTransferSize": 1810 } ] @@ -219433,8 +216874,8 @@ "cookiesCount": 9, "trackersGrade": "F", "trackersCount": 24, - "lighthouse_performance": 0.7128435134887695, - "lighthouse_performanceGrade": "B", + "lighthouse_performance": 0.60994873046875, + "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, @@ -219456,7 +216897,194 @@ "url": "https://mobilic.beta.gouv.fr", "category": "startup", "betaId": "mobilic", - "http": null, + "http": { + "url": "https://mobilic.beta.gouv.fr", + "algorithm_version": 2, + "end_time": "Sun, 14 Jan 2024 04:30:25 GMT", + "grade": "B", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "no-cache", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html", + "Date": "Sun, 14 Jan 2024 04:30:24 GMT", + "Referrer-Policy": "no-referrer", + "Strict-Transport-Security": "max-age=63072000", + "Transfer-Encoding": "chunked", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "DENY", + "X-XSS-Protection": "1; mode=block" + }, + "scan_id": 46442659, + "score": 75, + "start_time": "Sun, 14 Jan 2024 04:30:22 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 1, + "tests_passed": 11, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://mobilic.beta.gouv.fr/", + "redirects": true, + "route": [ + "http://mobilic.beta.gouv.fr/", + "https://mobilic.beta.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "no-referrer", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000", + "includeSubDomains": false, + "max-age": 63072000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "DENY" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": "1; mode=block" + }, + "pass": true, + "result": "x-xss-protection-enabled-mode-block", + "score_description": "X-XSS-Protection header set to \"1; mode=block\"", + "score_modifier": 0 + } + } + }, "updownio": { "token": "okwz", "url": "https://mobilic.beta.gouv.fr", @@ -219465,7 +217093,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-06T21:46:47Z", + "up_since": "2024-01-11T05:39:03Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -219477,8 +217105,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T07:43:59Z", - "next_check_at": "2024-01-07T07:48:58Z", + "last_check_at": "2024-01-14T07:34:13Z", + "next_check_at": "2024-01-14T07:39:12Z", "created_at": "2021-04-22T19:59:33Z", "mute_until": null, "favicon_url": "https://mobilic.beta.gouv.fr/favicon.ico", @@ -219486,7 +217114,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T07:19:09Z", + "tested_at": "2024-01-14T06:49:25Z", "expires_at": "2024-02-13T15:13:20Z", "valid": true, "error": null @@ -219495,11 +217123,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 115, - "connection": 113, - "handshake": 121, - "response": 129, - "total": 478 + "namelookup": 338, + "connection": 124, + "handshake": 130, + "response": 161, + "total": 753 } }, "uptimeGrade": "A", @@ -219532,77 +217160,77 @@ "testssl": [ { "id": "service", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -219610,7 +217238,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -219618,7 +217246,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -219626,7 +217254,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -219634,7 +217262,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -219642,7 +217270,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -219650,490 +217278,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "047DAD3307A7B3BE0A13FF8E7D1F992A04B7" }, { "id": "cert_serialNumberLen", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "0398AB062AA5F20124A35A92A1C85E4EC3AD08F8" }, { "id": "cert_fingerprintSHA256", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "D4C4E1252206EA85451BDC3811CED02C892669AFEB65A5978644627048F4FD72" }, { "id": "cert", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "mobilic.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "mobilic.beta.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "mobilic.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "2023-11-15 15:13" }, { "id": "cert_notAfter", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "2024-02-13 15:13" }, { "id": "cert_extlifeSpan", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", - "finding": "1704613093" + "finding": "1705217187" }, { "id": "HSTS_time", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -220141,7 +217769,7 @@ }, { "id": "heartbleed", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -220150,7 +217778,7 @@ }, { "id": "CCS", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -220159,7 +217787,7 @@ }, { "id": "ticketbleed", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -220168,7 +217796,7 @@ }, { "id": "ROBOT", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -220177,7 +217805,7 @@ }, { "id": "secure_renego", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -220185,7 +217813,7 @@ }, { "id": "secure_client_renego", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -220194,7 +217822,7 @@ }, { "id": "CRIME_TLS", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -220203,7 +217831,7 @@ }, { "id": "BREACH", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -220212,7 +217840,7 @@ }, { "id": "POODLE_SSL", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -220221,14 +217849,14 @@ }, { "id": "fallback_SCSV", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -220237,7 +217865,7 @@ }, { "id": "FREAK", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -220246,7 +217874,7 @@ }, { "id": "DROWN", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -220255,7 +217883,7 @@ }, { "id": "DROWN_hint", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -220264,7 +217892,7 @@ }, { "id": "LOGJAM", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -220273,7 +217901,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -220282,7 +217910,7 @@ }, { "id": "BEAST", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -220291,7 +217919,7 @@ }, { "id": "LUCKY13", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -220300,7 +217928,7 @@ }, { "id": "winshock", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -220309,7 +217937,7 @@ }, { "id": "RC4", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -220318,325 +217946,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mobilic.beta.gouv.fr/185.179.148.183", + "ip": "mobilic.beta.gouv.fr/185.231.167.184", "port": "443", "severity": "INFO", - "finding": "101" + "finding": "102" } ], "thirdparties": { @@ -220695,7 +218323,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.18/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220703,7 +218331,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.18/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220711,7 +218339,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/css/player.css", + "url": "https://f.vimeocdn.com/p/4.26.18/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -220719,15 +218347,23 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/player.module.js", + "url": "https://i.vimeocdn.com/video/1737343335-e617f3ad7ffd84a65c49f8e86782915337fbfda10f639bfa0d3d9945d69dfbd1-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" } }, + { + "type": "unknown", + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" + }, + { + "type": "unknown", + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" + }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.18/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220735,7 +218371,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/css/player.css", + "url": "https://f.vimeocdn.com/p/4.26.18/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220743,7 +218379,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.18/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -220751,7 +218387,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/vendor.module.js", + "url": "https://i.vimeocdn.com/video/1737350279-6e01140a7393ab77b818eef15ac9dec17c304542a8158665786ad970469b0ef0-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -220759,7 +218395,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.18/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220767,7 +218403,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/css/player.css", + "url": "https://f.vimeocdn.com/p/4.26.18/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220775,7 +218411,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.18/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -220783,7 +218419,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/css/player.css", + "url": "https://i.vimeocdn.com/video/1737344409-d9884ce96a49c834efe232713321f98c9e7ea9add4a0b0f0c1614712faf77161-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -220791,7 +218427,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737344409-d9884ce96a49c834efe232713321f98c9e7ea9add4a0b0f0c1614712faf77161-d?mw=80&q=85", + "url": "https://f.vimeocdn.com/p/4.26.18/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220799,7 +218435,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737343335-e617f3ad7ffd84a65c49f8e86782915337fbfda10f639bfa0d3d9945d69dfbd1-d?mw=80&q=85", + "url": "https://f.vimeocdn.com/p/4.26.18/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220807,7 +218443,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737349163-45b1f020d410d716ae420f19fa7855bf93e0cecef8ac56b609b908ad7e822a23-d?mw=80&q=85", + "url": "https://f.vimeocdn.com/p/4.26.18/css/player.css", "details": { "id": "vimeo", "message": "use peertube" @@ -220822,16 +218458,16 @@ } }, { - "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" - }, - { - "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "type": "vimeo", + "url": "https://f.vimeocdn.com/p/4.26.18/js/player.module.js", + "details": { + "id": "vimeo", + "message": "use peertube" + } }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.18/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220839,7 +218475,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/vendor.module.js", + "url": "https://i.vimeocdn.com/video/1737349163-45b1f020d410d716ae420f19fa7855bf93e0cecef8ac56b609b908ad7e822a23-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -220847,7 +218483,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/player.module.js", + "url": "https://f.vimeocdn.com/p/4.26.18/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220855,7 +218491,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/vendor.module.js", + "url": "https://f.vimeocdn.com/p/4.26.18/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220863,7 +218499,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737350279-6e01140a7393ab77b818eef15ac9dec17c304542a8158665786ad970469b0ef0-d?mw=80&q=85", + "url": "https://f.vimeocdn.com/p/4.26.18/js/player.module.js", "details": { "id": "vimeo", "message": "use peertube" @@ -220871,15 +218507,19 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737349532-0af48b58dcb35a6450481d73bbb7e921cc6fcc43286697e25c89e5edbe9176a1-d?mw=80&q=85", + "url": "https://f.vimeocdn.com/p/4.26.18/js/vendor.module.js", "details": { "id": "vimeo", "message": "use peertube" } }, + { + "type": "unknown", + "url": "https://client.crisp.chat/settings/website/e433738e-c2a9-4490-b31b-cb03aa080be9/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-7-25" + }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/player.module.js", + "url": "https://i.vimeocdn.com/video/1737351156-805f8c946e43d69f73f3ad782f68fa953d125268f3cb006162bef1d5dd879517-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -220887,7 +218527,7 @@ }, { "type": "vimeo", - "url": "https://f.vimeocdn.com/p/4.26.17/js/vendor.module.js", + "url": "https://i.vimeocdn.com/video/1737349532-0af48b58dcb35a6450481d73bbb7e921cc6fcc43286697e25c89e5edbe9176a1-d?mw=80&q=85", "details": { "id": "vimeo", "message": "use peertube" @@ -220903,7 +218543,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737344409-d9884ce96a49c834efe232713321f98c9e7ea9add4a0b0f0c1614712faf77161-d?mw=320&mh=320", + "url": "https://i.vimeocdn.com/video/1737343335-e617f3ad7ffd84a65c49f8e86782915337fbfda10f639bfa0d3d9945d69dfbd1-d?mw=320&mh=320", "details": { "id": "vimeo", "message": "use peertube" @@ -220911,7 +218551,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=a13786436ab752527a4b37afe3f3ee2d1431e8c01704613007", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=9fe5166e466f8f4e1fc982748c690fed3a2dfc201705217101", "details": { "id": "vimeo", "message": "use peertube" @@ -220927,7 +218567,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737343335-e617f3ad7ffd84a65c49f8e86782915337fbfda10f639bfa0d3d9945d69dfbd1-d?mw=320&mh=320", + "url": "https://i.vimeocdn.com/video/1737350279-6e01140a7393ab77b818eef15ac9dec17c304542a8158665786ad970469b0ef0-d?mw=400&mh=393", "details": { "id": "vimeo", "message": "use peertube" @@ -220935,7 +218575,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=cb42c7a81e501f96bcdf7e905313f54327d030fb1704613007", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=5bc8ceae1e25e78133baab7790a5cc43350a1c6d1705217101", "details": { "id": "vimeo", "message": "use peertube" @@ -220951,7 +218591,7 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737349163-45b1f020d410d716ae420f19fa7855bf93e0cecef8ac56b609b908ad7e822a23-d?mw=400&mh=393", + "url": "https://i.vimeocdn.com/video/1737344409-d9884ce96a49c834efe232713321f98c9e7ea9add4a0b0f0c1614712faf77161-d?mw=320&mh=320", "details": { "id": "vimeo", "message": "use peertube" @@ -220959,7 +218599,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=3faa254bfe167853175517b5535c11f2fe4c0b0b1704613007", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=b6401e0064d5b01c8cfbc970d68c4eb1eee43ad61705217101", "details": { "id": "vimeo", "message": "use peertube" @@ -220983,7 +218623,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=ca392a37c0ec0b071b87514ba18f42e94185e96a1704613007", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=1ba0397dbe11a281d7c3f79c676ed06fb17878531705217101", "details": { "id": "vimeo", "message": "use peertube" @@ -220991,39 +218631,51 @@ }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737351156-805f8c946e43d69f73f3ad782f68fa953d125268f3cb006162bef1d5dd879517-d?mw=80&q=85", + "url": "https://f.vimeocdn.com/js_opt/modules/utils/vuid.min.js", "details": { "id": "vimeo", "message": "use peertube" } }, { - "type": "unknown", - "url": "https://client.crisp.chat/settings/website/e433738e-c2a9-4490-b31b-cb03aa080be9/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-7-36" + "type": "vimeo", + "url": "https://i.vimeocdn.com/video/1737349163-45b1f020d410d716ae420f19fa7855bf93e0cecef8ac56b609b908ad7e822a23-d?mw=400&mh=393", + "details": { + "id": "vimeo", + "message": "use peertube" + } }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737349532-0af48b58dcb35a6450481d73bbb7e921cc6fcc43286697e25c89e5edbe9176a1-d?mw=400&mh=393", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=fd27188af4e3ebe1f277061477f63b68d84f77231705217102", "details": { "id": "vimeo", "message": "use peertube" } }, + { + "type": "unknown", + "url": "https://vimeo.com/ablincoln/vuid?pid=9fe5166e466f8f4e1fc982748c690fed3a2dfc201705217101" + }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=a34d54dd3d47a955241e11fd6c3215be7f946ee71704613007", + "url": "https://f.vimeocdn.com/js_opt/modules/utils/vuid.min.js", "details": { "id": "vimeo", "message": "use peertube" } }, { - "type": "unknown", - "url": "https://vimeo.com/ablincoln/vuid?pid=a13786436ab752527a4b37afe3f3ee2d1431e8c01704613007" + "type": "vimeo", + "url": "https://i.vimeocdn.com/video/1737349532-0af48b58dcb35a6450481d73bbb7e921cc6fcc43286697e25c89e5edbe9176a1-d?mw=400&mh=393", + "details": { + "id": "vimeo", + "message": "use peertube" + } }, { "type": "vimeo", - "url": "https://i.vimeocdn.com/video/1737350279-6e01140a7393ab77b818eef15ac9dec17c304542a8158665786ad970469b0ef0-d?mw=400&mh=393", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=bd29ec607a13541f1ab938dfe6866ef034815d901705217102", "details": { "id": "vimeo", "message": "use peertube" @@ -221031,7 +218683,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=ca7328e06398e9c7aa9f2cba7715c624ef561d0e1704613007", + "url": "https://f.vimeocdn.com/js_opt/modules/utils/vuid.min.js", "details": { "id": "vimeo", "message": "use peertube" @@ -221047,7 +218699,7 @@ }, { "type": "vimeo", - "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=618a23377e9e8b848b24513247c92fd049c3f7911704613008", + "url": "https://fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=457a19f13e692dae57e4a550fb16d61a2201537d1705217102", "details": { "id": "vimeo", "message": "use peertube" @@ -221055,11 +218707,11 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/e433738e-c2a9-4490-b31b-cb03aa080be9/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1704377002503" + "url": "https://client.crisp.chat/settings/website/e433738e-c2a9-4490-b31b-cb03aa080be9/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1704728759726" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?e0efffc" } ], "cookies": [ @@ -221068,7 +218720,7 @@ "value": "1", "domain": "mobilic.beta.gouv.fr", "path": "/", - "expires": 1704614808, + "expires": 1705218902, "size": 17, "httpOnly": false, "secure": false, @@ -221080,10 +218732,10 @@ }, { "name": "_pk_id.163.5533", - "value": "d9f645e17f969bfc.1704613009.", + "value": "ed6d3d034bc5a7f9.1705217103.", "domain": "mobilic.beta.gouv.fr", "path": "/", - "expires": 1738568209, + "expires": 1739172303, "size": 43, "httpOnly": false, "secure": false, @@ -221095,11 +218747,11 @@ }, { "name": "bln_challengejs", - "value": "8X-ZEyC27UxRwgek1s-dx_BpXGik4Xu8gCVkSPZyf8DckH_T1kZgobdg2EjG8VtOxzf88onm7smNiMt0xUamYxsaIYRpHLjvrOVxH6001VVAt9t-URr5YjgATN4ymYX5rbSBhdiMxsLDhAn_gHK0BF4U-JmCwv8eeSxsoD3aI_IsupgG0n82R59FX1GS2-2hlVIYdPqKeYh4qD49Dntuh6A3zWPkGNymohYugqrJ0YRHiSCTiPq_wcsNifi9tPiW", + "value": "nfX0idsJ2QFMv05P4s4qZdzYJ8KUvb_NDRARJEmhnXxh1leQLgD0yMVdhxJ91onHhd4Mg8AoWi5ZKjkSqVPEPS29fgYmI2E-tJdhbW1dK9HQLgJcta0aM0N-_4ZbJgDjFEiKRzaT2fFuaYaU968aFYSFA4R8HPb67DMfPKA0Be11K3wURuNL8RyDeyOIl7BK2m527MlX07_RrPTqKdiC_YMQ1yQckqfF9JKcTq-ON8Zf1Cx0JXP6KTqUsfbESc91sRnTJu5E6ZoRWKO1wIGTCQ", "domain": ".beta.gouv.fr", "path": "/", - "expires": 1704613906.003453, - "size": 271, + "expires": 1705218000.013137, + "size": 293, "httpOnly": false, "secure": false, "session": false, @@ -221115,7 +218767,7 @@ "content-encoding": "gzip", "content-security-policy": "object-src 'self'; connect-src 'self' https://client.crisp.chat https://api-adresse.data.gouv.fr https://sentry.incubateur.net wss://client.relay.crisp.chat https://stats.data.gouv.fr https://client.axept.io/ https://api.axept.io; base-uri 'self'; default-src 'self'; script-src 'self' https://client.crisp.chat https://stats.data.gouv.fr https://static.axept.io/ https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net 'unsafe-eval' 'unsafe-inline'; img-src 'self' data: https://client.crisp.chat https://image.crisp.chat https://stats.data.gouv.fr https://res.cloudinary.com https://images.unsplash.com https://axeptio.imgix.net https://favicons.axept.io https://t1.gstatic.com https://www.google.com/ https://www.google.fr/ https://googleads.g.doubleclick.net; style-src 'self' 'unsafe-inline' https://client.crisp.chat https://cdn.jsdelivr.net; font-src 'self' https://client.crisp.chat https://cdn.jsdelivr.net; frame-src https://metabase.mobilic.beta.gouv.fr https://www.slideshare.net https://fr.slideshare.net https://cgu.mobilic.beta.gouv.fr https://form.typeform.com https://player.vimeo.com https://bid.g.doubleclick.net/;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 07:36:46 GMT", + "date": "Sun, 14 Jan 2024 07:25:00 GMT", "etag": "W/\"6580868d-c6f\"", "last-modified": "Mon, 18 Dec 2023 17:51:09 GMT", "referrer-policy": "origin-when-cross-origin", @@ -221124,14 +218776,14 @@ "via": "1.1 varnish (Varnish/6.0)", "x-content-type-options": "nosniff", "x-frame-options": "deny", - "x-request-id": "713815605354a533ccb6baeae14c2c59", - "x-varnish": "24227710", + "x-request-id": "cd89e14d353efaaecf34713aa870a266", + "x-varnish": "32401818", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "mobilic.beta.gouv.fr", - "ip": "185.179.148.183", + "ip": "185.231.167.184", "geoip": { "continent": { "code": "EU", @@ -221187,7 +218839,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.46.202", + "ip": "142.250.68.74", "geoip": { "continent": { "code": "NA", @@ -221207,7 +218859,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221227,7 +218879,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221241,18 +218893,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "151.101.41.229", + "ip": "146.75.93.229", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 5368361, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -221273,7 +218926,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221285,19 +218938,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, + "latitude": 34.0544, + "longitude": -118.244, + "metro_code": 803, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95141" + "code": "90012" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221381,7 +219034,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221423,7 +219076,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221437,13 +219090,13 @@ }, { "hostname": "player.vimeo.com", - "ip": "162.159.128.61", + "ip": "162.159.138.60", "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221457,19 +219110,19 @@ }, { "hostname": "f.vimeocdn.com", - "ip": "151.101.202.109", + "ip": "146.75.94.109", "geoip": { "city": { - "geoname_id": 5393015, + "geoname_id": 5368361, "names": { - "de": "Santa Clara", - "en": "Santa Clara", - "es": "Santa Clara", - "fr": "Santa Clara", - "ja": "サンタクララ", - "pt-BR": "Santa Clara", - "ru": "Санта-Клара", - "zh-CN": "圣克拉拉" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -221490,7 +219143,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221502,19 +219155,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.3931, - "longitude": -121.962, - "metro_code": 807, + "latitude": 34.0544, + "longitude": -118.244, + "metro_code": 803, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95054" + "code": "90012" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221544,19 +219197,19 @@ }, { "hostname": "i.vimeocdn.com", - "ip": "151.101.200.217", + "ip": "146.75.92.217", "geoip": { "city": { - "geoname_id": 5393015, + "geoname_id": 5368361, "names": { - "de": "Santa Clara", - "en": "Santa Clara", - "es": "Santa Clara", - "fr": "Santa Clara", - "ja": "サンタクララ", - "pt-BR": "Santa Clara", - "ru": "Санта-Клара", - "zh-CN": "圣克拉拉" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -221577,7 +219230,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221589,19 +219242,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.3931, - "longitude": -121.962, - "metro_code": 807, + "latitude": 34.0544, + "longitude": -118.244, + "metro_code": 803, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95054" + "code": "90012" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221663,7 +219316,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221687,7 +219340,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221716,13 +219369,13 @@ }, { "hostname": "vimeo.com", - "ip": "162.159.138.60", + "ip": "162.159.128.61", "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -221801,7 +219454,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 07:21:27", + "@generated": "Sun, 14 Jan 2024 07:23:20", "site": [ { "@name": "https://mobilic.beta.gouv.fr", @@ -221899,24 +219552,20 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -221925,34 +219574,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "mobilic.beta.gouv.fr.", - "matched-at": "_dmarc.mobilic.beta.gouv.fr", + "matched-at": "mobilic.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2024-01-07T07:39:59.950667469Z", + "timestamp": "2024-01-14T07:28:14.148294653Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -221967,31 +219619,26 @@ "type": "dns", "host": "mobilic.beta.gouv.fr.", "matched-at": "mobilic.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2024-01-07T07:39:59.959582688Z", + "timestamp": "2024-01-14T07:28:14.231465529Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -222008,29 +219655,30 @@ "host": "mobilic.beta.gouv.fr.", "matched-at": "mobilic.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "\"v=spf1 include:_spf.alwaysdata.com ~all\"", + "\"brevo-code:e54d286e740248bbb7abb72db6a1a5c4\"" ], - "timestamp": "2024-01-07T07:39:59.961270172Z", + "timestamp": "2024-01-14T07:28:14.253894037Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -222040,32 +219688,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "mobilic.beta.gouv.fr.", - "matched-at": "mobilic.beta.gouv.fr", - "timestamp": "2024-01-07T07:39:59.96167609Z", + "matched-at": "_dmarc.mobilic.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2024-01-14T07:28:14.278419868Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -222082,10 +219735,10 @@ "host": "mobilic.beta.gouv.fr.", "matched-at": "mobilic.beta.gouv.fr", "extracted-results": [ - "\"brevo-code:e54d286e740248bbb7abb72db6a1a5c4\"", - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2024-01-07T07:40:00.466635607Z", + "timestamp": "2024-01-14T07:28:15.373545033Z", "matcher-status": true }, { @@ -222125,7 +219778,7 @@ "1; mode=block" ], "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:40:19.868651311Z", + "timestamp": "2024-01-14T07:28:33.798123085Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -222152,7 +219805,7 @@ "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:40:57.705940467Z", + "timestamp": "2024-01-14T07:29:11.315231222Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -222184,12 +219837,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:41:12.8812329Z", + "timestamp": "2024-01-14T07:29:26.384313081Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -222221,12 +219874,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:41:12.881272655Z", + "timestamp": "2024-01-14T07:29:26.384352224Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -222258,12 +219911,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:41:12.881289276Z", + "timestamp": "2024-01-14T07:29:26.384373523Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -222295,12 +219948,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:41:12.881306288Z", + "timestamp": "2024-01-14T07:29:26.384391587Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -222332,12 +219985,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:41:12.881320585Z", + "timestamp": "2024-01-14T07:29:26.384406094Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -222369,12 +220022,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:41:12.881332857Z", + "timestamp": "2024-01-14T07:29:26.384421192Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -222406,12 +220059,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://mobilic.beta.gouv.fr", "matched-at": "https://mobilic.beta.gouv.fr", "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:41:12.881345491Z", + "timestamp": "2024-01-14T07:29:26.384433264Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobilic.beta.gouv.fr'", "matcher-status": true }, @@ -222442,7 +220095,7 @@ "Let's Encrypt" ], "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:43:44.94157496Z", + "timestamp": "2024-01-14T07:32:01.219948743Z", "matcher-status": true }, { @@ -222472,7 +220125,7 @@ "mobilic.beta.gouv.fr" ], "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:43:44.941696989Z", + "timestamp": "2024-01-14T07:32:01.220054209Z", "matcher-status": true }, { @@ -222503,7 +220156,7 @@ "tls12" ], "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:43:48.239590605Z", + "timestamp": "2024-01-14T07:32:04.154759241Z", "matcher-status": true }, { @@ -222534,7 +220187,7 @@ "tls13" ], "ip": "185.231.167.184", - "timestamp": "2024-01-07T07:43:48.556319367Z", + "timestamp": "2024-01-14T07:32:04.55902209Z", "matcher-status": true } ], @@ -222542,7 +220195,7 @@ { "requestedUrl": "https://mobilic.beta.gouv.fr/", "finalUrl": "https://mobilic.beta.gouv.fr/", - "fetchTime": "2024-01-07T07:21:41.341Z", + "fetchTime": "2024-01-14T07:23:34.539Z", "runWarnings": [], "categories": { "performance": { @@ -222553,7 +220206,7 @@ "snapshot" ], "id": "performance", - "score": 0.21275863647460938 + "score": 0.21276569366455078 }, "accessibility": { "title": "Accessibility", @@ -222605,53 +220258,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 14717, + "numericValue": 11351, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 9137, - "firstMeaningfulPaint": 9155, - "largestContentfulPaint": 12434, - "interactive": 14717, - "speedIndex": 11713, - "totalBlockingTime": 674, - "maxPotentialFID": 824, + "firstContentfulPaint": 9112, + "firstMeaningfulPaint": 9131, + "largestContentfulPaint": 12558, + "interactive": 11351, + "speedIndex": 9773, + "totalBlockingTime": 1066, + "maxPotentialFID": 864, "cumulativeLayoutShift": 0.0008294270833333335, "cumulativeLayoutShiftMainFrame": 0.0008294270833333335, "totalCumulativeLayoutShift": 0.0008294270833333335, "observedTimeOrigin": 0, - "observedTimeOriginTs": 190452130, + "observedTimeOriginTs": 244306583, "observedNavigationStart": 0, - "observedNavigationStartTs": 190452130, - "observedFirstPaint": 1698, - "observedFirstPaintTs": 192149795, - "observedFirstContentfulPaint": 1698, - "observedFirstContentfulPaintTs": 192149795, - "observedFirstContentfulPaintAllFrames": 1698, - "observedFirstContentfulPaintAllFramesTs": 192149795, - "observedFirstMeaningfulPaint": 1698, - "observedFirstMeaningfulPaintTs": 192149795, - "observedLargestContentfulPaint": 1867, - "observedLargestContentfulPaintTs": 192319139, - "observedLargestContentfulPaintAllFrames": 1867, - "observedLargestContentfulPaintAllFramesTs": 192319139, - "observedTraceEnd": 5012, - "observedTraceEndTs": 195463782, - "observedLoad": 2666, - "observedLoadTs": 193118182, - "observedDomContentLoaded": 1721, - "observedDomContentLoadedTs": 192173284, + "observedNavigationStartTs": 244306583, + "observedFirstPaint": 1703, + "observedFirstPaintTs": 246009352, + "observedFirstContentfulPaint": 1703, + "observedFirstContentfulPaintTs": 246009352, + "observedFirstContentfulPaintAllFrames": 1703, + "observedFirstContentfulPaintAllFramesTs": 246009352, + "observedFirstMeaningfulPaint": 1703, + "observedFirstMeaningfulPaintTs": 246009352, + "observedLargestContentfulPaint": 1945, + "observedLargestContentfulPaintTs": 246251339, + "observedLargestContentfulPaintAllFrames": 1945, + "observedLargestContentfulPaintAllFramesTs": 246251339, + "observedTraceEnd": 4997, + "observedTraceEndTs": 249303459, + "observedLoad": 2655, + "observedLoadTs": 246961168, + "observedDomContentLoaded": 1738, + "observedDomContentLoadedTs": 246044556, "observedCumulativeLayoutShift": 0.0008294270833333335, "observedCumulativeLayoutShiftMainFrame": 0.0008294270833333335, "observedTotalCumulativeLayoutShift": 0.0008294270833333335, - "observedFirstVisualChange": 1706, - "observedFirstVisualChangeTs": 192158130, - "observedLastVisualChange": 4990, - "observedLastVisualChangeTs": 195442130, - "observedSpeedIndex": 2397, - "observedSpeedIndexTs": 192848954 + "observedFirstVisualChange": 1700, + "observedFirstVisualChangeTs": 246006583, + "observedLastVisualChange": 4983, + "observedLastVisualChangeTs": 249289583, + "observedSpeedIndex": 2403, + "observedSpeedIndexTs": 246709132 }, { "lcpInvalidated": false @@ -222673,19 +220326,19 @@ "numScripts": 27, "numStylesheets": 12, "numFonts": 13, - "numTasks": 2772, - "numTasksOver10ms": 26, - "numTasksOver25ms": 12, + "numTasks": 2882, + "numTasksOver10ms": 21, + "numTasksOver25ms": 11, "numTasksOver50ms": 8, - "numTasksOver100ms": 1, + "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 1.083, - "throughput": 19332662.94008825, - "maxRtt": 151.25199999999998, - "maxServerLatency": 217.22899999999998, - "totalByteWeight": 2554548, - "totalTaskTime": 1775.9950000000015, - "mainDocumentTransferSize": 2077 + "rtt": 1.8860000000000001, + "throughput": 16411140.83277726, + "maxRtt": 145.828, + "maxServerLatency": 131.027, + "totalByteWeight": 2554511, + "totalTaskTime": 1762.2540000000033, + "mainDocumentTransferSize": 2071 } ] } @@ -222768,6 +220421,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "B", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -222775,14 +220429,14 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, + "testsslExpireSoon": true, "testsslExpireDate": "2024-02-13T15:13:00.000Z", "testsslGrade": "A+", "cookiesGrade": "C", "cookiesCount": 3, "trackersGrade": "F", - "trackersCount": 60, - "lighthouse_performance": 0.21275863647460938, + "trackersCount": 63, + "lighthouse_performance": 0.21276569366455078, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.94, "lighthouse_accessibilityGrade": "A", @@ -222811,7 +220465,7 @@ "http": { "url": "https://app.moncomptepro.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 07:29:49 GMT", + "end_time": "Sun, 14 Jan 2024 07:30:20 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -222823,12 +220477,12 @@ "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 07:29:48 GMT", + "Date": "Sun, 14 Jan 2024 07:30:18 GMT", "Expires": "0", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "no-referrer", "Server": "nginx", - "Set-Cookie": "session=s%3A8snZ9cazbyVTXWmTIevGcaeGOd0Kvzbe.b7GIKJPILLc2zB%2F6HGD0tA%2FSJkUwEBRUcT5lp1Gi5iY; Path=/; Expires=Mon, 08 Jan 2024 07:29:48 GMT; HttpOnly; Secure; SameSite=Lax", + "Set-Cookie": "session=s%3A9Y2NWwFPQqgu2fMqaaBYhwtSn1y1dfVp.mZhmvcMeYkIFQtkhtcZe5Hg3u7%2Fdu7NBWRSStH47d0w; Path=/; Expires=Mon, 15 Jan 2024 07:30:18 GMT; HttpOnly; Secure; SameSite=Lax", "Strict-Transport-Security": "max-age=15552000", "Surrogate-Control": "no-store", "Transfer-Encoding": "chunked", @@ -222840,9 +220494,9 @@ "X-Robots-Tag": "noindex,nofollow", "X-XSS-Protection": "0" }, - "scan_id": 46231087, - "score": 120, - "start_time": "Sun, 07 Jan 2024 07:29:44 GMT", + "scan_id": 46458456, + "score": 115, + "start_time": "Sun, 14 Jan 2024 07:30:15 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -222858,34 +220512,34 @@ "'self'" ], "connect-src": [ - "stats.data.gouv.fr", - "'self'" + "'self'", + "stats.data.gouv.fr" ], "default-src": [ "'self'" ], "font-src": [ - "data:", - "'self'" + "'self'", + "data:" ], "form-action": [ - "*", - "'self'" + "'self'", + "*" ], "frame-ancestors": [ "'self'" ], "img-src": [ + "'self'", "data:", - "stats.data.gouv.fr", - "'self'" + "stats.data.gouv.fr" ], "object-src": [ "'none'" ], "script-src": [ - "stats.data.gouv.fr", - "'self'" + "'self'", + "stats.data.gouv.fr" ], "script-src-attr": [ "'none'" @@ -222937,7 +220591,7 @@ "data": { "session": { "domain": "app.moncomptepro.beta.gouv.fr", - "expires": 1704698988, + "expires": 1705303818, "httponly": true, "max-age": null, "path": "/", @@ -222987,12 +220641,12 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", + "destination": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in?notification=session_expired", "redirects": true, "route": [ "http://app.moncomptepro.beta.gouv.fr/", "https://app.moncomptepro.beta.gouv.fr/", - "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in" + "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in?notification=session_expired" ], "status_code": 200 }, @@ -223005,14 +220659,14 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "no-referrer", + "data": "no-referrer, no-referrer-when-downgrade", "http": true, - "meta": false + "meta": true }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-no-referrer-when-downgrade", + "score_description": "Referrer-Policy header set to \"no-referrer-when-downgrade\"", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", @@ -223089,40 +220743,40 @@ "version": "8.2p1 Ubuntu 4ubuntu0.11", "vulnerabilities": [ { - "id": "CVE-2020-15778", - "cvss": "6.8", + "type": "cve", "is_exploit": "false", - "type": "cve" + "id": "CVE-2020-15778", + "cvss": "6.8" }, { - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "cvss": "6.8", + "type": "githubexploit", "is_exploit": "true", - "type": "githubexploit" + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "cvss": "6.8" }, { - "id": "10213DBE-F683-58BB-B6D3-353173626207", - "cvss": "6.8", + "type": "githubexploit", "is_exploit": "true", - "type": "githubexploit" + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "cvss": "6.8" }, { - "id": "PRION:CVE-2020-12062", - "cvss": "5.0", + "type": "prion", "is_exploit": "false", - "type": "prion" + "id": "PRION:CVE-2020-12062", + "cvss": "5.0" }, { - "id": "PRION:CVE-2016-20012", - "cvss": "5.0", + "type": "prion", "is_exploit": "false", - "type": "prion" + "id": "PRION:CVE-2016-20012", + "cvss": "5.0" }, { - "id": "CVE-2020-12062", - "cvss": "5.0", + "type": "cve", "is_exploit": "false", - "type": "cve" + "id": "CVE-2020-12062", + "cvss": "5.0" } ] } @@ -223426,7 +221080,7 @@ "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "045F48EC1B5B44181BDDF6009D326F70D7CB" + "finding": "0464CFF4FE49CF40C31F154E32C47BEAE267" }, { "id": "cert_serialNumberLen", @@ -223440,21 +221094,21 @@ "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "36C287EAF7F09CA5E5B0DCC67001FA5142A8C63C" + "finding": "65180F5779118E9BE0A053215618FDA89561EB2D" }, { "id": "cert_fingerprintSHA256", "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "CC79F8832AB0FF32A5D34446374809AC3F5E21BD8F8BD7458BED2B449B598A6D" + "finding": "04014056B94523765C9DAE698507F79C0372247D2C6C78E0089EA1AB583A45AB" }, { "id": "cert", "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -223503,21 +221157,21 @@ "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "OK", - "finding": "33 >= 30 days" + "finding": "86 >= 30 days" }, { "id": "cert_notBefore", "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "2023-11-12 02:07" + "finding": "2024-01-11 02:03" }, { "id": "cert_notAfter", "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "OK", - "finding": "2024-02-10 02:07" + "finding": "2024-04-10 02:03" }, { "id": "cert_extlifeSpan", @@ -223580,7 +221234,7 @@ "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", @@ -223638,6 +221292,48 @@ "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, + { + "id": "intermediate_cert <#2>", + "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, { "id": "intermediate_cert_badOCSP", "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", @@ -223664,7 +221360,7 @@ "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "1704612712" + "finding": "1705217506" }, { "id": "HSTS_time", @@ -223900,7 +221596,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=CC79F8832AB0FF32A5D34446374809AC3F5E21BD8F8BD7458BED2B449B598A6D" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=04014056B94523765C9DAE698507F79C0372247D2C6C78E0089EA1AB583A45AB" }, { "id": "LOGJAM", @@ -224276,7 +221972,7 @@ "ip": "app.moncomptepro.beta.gouv.fr/213.32.72.48", "port": "443", "severity": "INFO", - "finding": "103" + "finding": "56" } ], "thirdparties": { @@ -224287,7 +221983,7 @@ "value": "1", "domain": "app.moncomptepro.beta.gouv.fr", "path": "/", - "expires": 1704614421, + "expires": 1705219252, "size": 16, "httpOnly": false, "secure": false, @@ -224299,10 +221995,10 @@ }, { "name": "_pk_id.85.5d49", - "value": "43a143959cbf7e0b.1704612621.", + "value": "9424bebea26ce255.1705217453.", "domain": "app.moncomptepro.beta.gouv.fr", "path": "/", - "expires": 1738567821, + "expires": 1739172653, "size": 42, "httpOnly": false, "secure": false, @@ -224314,11 +222010,11 @@ }, { "name": "session", - "value": "s%3AsDktk9HWw_A4BEeSRDQ9iytF83M1SQyi.wExL%2BlDN5urA7gbozhthX6Mv4qD%2Bxt3MWlPZVsweiwE", + "value": "s%3AlJqs8V56wEU53AeEzA4b8OXXyW4P-fZ6.RIWzxx5lrWFPws1%2FA%2BdvZlKkz9jJ4wqeZ9CRjy5r%2FIc", "domain": "app.moncomptepro.beta.gouv.fr", "path": "/", - "expires": 1704699019.618075, - "size": 91, + "expires": 1705303851.914108, + "size": 93, "httpOnly": true, "secure": true, "session": false, @@ -224336,12 +222032,12 @@ "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 07 Jan 2024 07:30:19 GMT", + "date": "Sun, 14 Jan 2024 07:30:51 GMT", "expires": "0", "origin-agent-cluster": "?1", "referrer-policy": "no-referrer", "server": "nginx", - "set-cookie": "session=s%3AsDktk9HWw_A4BEeSRDQ9iytF83M1SQyi.wExL%2BlDN5urA7gbozhthX6Mv4qD%2Bxt3MWlPZVsweiwE; Path=/; Expires=Mon, 08 Jan 2024 07:30:19 GMT; HttpOnly; Secure; SameSite=Lax", + "set-cookie": "session=s%3AlJqs8V56wEU53AeEzA4b8OXXyW4P-fZ6.RIWzxx5lrWFPws1%2FA%2BdvZlKkz9jJ4wqeZ9CRjy5r%2FIc; Path=/; Expires=Mon, 15 Jan 2024 07:30:51 GMT; HttpOnly; Secure; SameSite=Lax", "strict-transport-security": "max-age=15552000", "surrogate-control": "no-store", "transfer-encoding": "chunked", @@ -224417,7 +222113,7 @@ "https://app.moncomptepro.beta.gouv.fr/": { "status": 302 }, - "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in": { + "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in?notification=session_expired": { "status": 200 } }, @@ -224483,7 +222179,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 07:29:18", + "@generated": "Sun, 14 Jan 2024 07:29:51", "site": [ { "@name": "https://app.moncomptepro.beta.gouv.fr", @@ -224612,7 +222308,7 @@ "type": "dns", "host": "app.moncomptepro.beta.gouv.fr.", "matched-at": "app.moncomptepro.beta.gouv.fr", - "timestamp": "2024-01-07T07:33:16.743877483Z", + "timestamp": "2024-01-14T07:32:52.00944256Z", "matcher-status": true }, { @@ -224641,7 +222337,7 @@ "GET,HEAD" ], "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:33:28.182115966Z", + "timestamp": "2024-01-14T07:32:58.790038849Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -224680,7 +222376,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:33:36.407186821Z", + "timestamp": "2024-01-14T07:33:03.436267174Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -224705,9 +222401,9 @@ "matcher-name": "nginx", "type": "http", "host": "https://app.moncomptepro.beta.gouv.fr", - "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", + "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in?notification=session_expired", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:34:15.344125521Z", + "timestamp": "2024-01-14T07:33:27.503132503Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -224734,7 +222430,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:34:15.388238157Z", + "timestamp": "2024-01-14T07:33:27.573428919Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -224769,9 +222465,9 @@ "matcher-name": "permissions-policy", "type": "http", "host": "https://app.moncomptepro.beta.gouv.fr", - "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", + "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in?notification=session_expired", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:34:31.553098082Z", + "timestamp": "2024-01-14T07:33:37.298920977Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -224806,9 +222502,9 @@ "matcher-name": "clear-site-data", "type": "http", "host": "https://app.moncomptepro.beta.gouv.fr", - "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", + "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in?notification=session_expired", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:34:31.553136584Z", + "timestamp": "2024-01-14T07:33:37.298958147Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -224843,9 +222539,9 @@ "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://app.moncomptepro.beta.gouv.fr", - "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", + "matched-at": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in?notification=session_expired", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:34:31.553150631Z", + "timestamp": "2024-01-14T07:33:37.298968597Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr'", "matcher-status": true }, @@ -224884,7 +222580,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/.well-known/openid-configuration", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:34:35.953244027Z", + "timestamp": "2024-01-14T07:33:39.759271692Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr/.well-known/openid-configuration'", "matcher-status": true }, @@ -224912,7 +222608,7 @@ "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/.well-known/openid-configuration", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:35:08.180025864Z", + "timestamp": "2024-01-14T07:33:58.295048884Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr/.well-known/openid-configuration'", "matcher-status": true }, @@ -224947,12 +222643,12 @@ ] } }, - "matcher-name": "nginxgeneric", + "matcher-name": "ats", "type": "http", "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:35:10.181402675Z", + "timestamp": "2024-01-14T07:33:59.604355061Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.moncomptepro.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr/'", "matcher-status": true }, @@ -224987,12 +222683,12 @@ ] } }, - "matcher-name": "ats", + "matcher-name": "nginxgeneric", "type": "http", "host": "https://app.moncomptepro.beta.gouv.fr", "matched-at": "https://app.moncomptepro.beta.gouv.fr/", "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:35:10.181445465Z", + "timestamp": "2024-01-14T07:33:59.604401899Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.moncomptepro.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.moncomptepro.beta.gouv.fr/'", "matcher-status": true }, @@ -225042,7 +222738,7 @@ "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11" ], "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:36:12.048459687Z", + "timestamp": "2024-01-14T07:34:44.565130308Z", "matcher-status": true }, { @@ -225072,7 +222768,7 @@ "Let's Encrypt" ], "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:36:52.970807345Z", + "timestamp": "2024-01-14T07:35:29.698083715Z", "matcher-status": true }, { @@ -225103,7 +222799,7 @@ "auth.api.gouv.fr" ], "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:36:52.970928241Z", + "timestamp": "2024-01-14T07:35:29.698197047Z", "matcher-status": true }, { @@ -225134,7 +222830,7 @@ "tls12" ], "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:36:55.858177874Z", + "timestamp": "2024-01-14T07:35:32.344175044Z", "matcher-status": true }, { @@ -225165,17 +222861,17 @@ "tls13" ], "ip": "213.32.72.48", - "timestamp": "2024-01-07T07:36:56.172115871Z", + "timestamp": "2024-01-14T07:35:32.519871545Z", "matcher-status": true } ], "lhr": [ { "requestedUrl": "https://app.moncomptepro.beta.gouv.fr/", - "finalUrl": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in", - "fetchTime": "2024-01-07T07:29:32.465Z", + "finalUrl": "https://app.moncomptepro.beta.gouv.fr/users/start-sign-in?notification=session_expired", + "fetchTime": "2024-01-14T07:30:05.064Z", "runWarnings": [ - "The page may not be loading as expected because your test URL (https://app.moncomptepro.beta.gouv.fr/) was redirected to https://app.moncomptepro.beta.gouv.fr/users/start-sign-in. Try testing the second URL directly." + "The page may not be loading as expected because your test URL (https://app.moncomptepro.beta.gouv.fr/) was redirected to https://app.moncomptepro.beta.gouv.fr/users/start-sign-in?notification=session_expired. Try testing the second URL directly." ], "categories": { "performance": { @@ -225238,53 +222934,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5609, + "numericValue": 5584, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5609, - "firstMeaningfulPaint": 5609, - "largestContentfulPaint": 5981, - "interactive": 5609, - "speedIndex": 5609, + "firstContentfulPaint": 5584, + "firstMeaningfulPaint": 5584, + "largestContentfulPaint": 5958, + "interactive": 5584, + "speedIndex": 5584, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.0009408509996202256, - "cumulativeLayoutShiftMainFrame": 0.0009408509996202256, - "totalCumulativeLayoutShift": 0.0009408509996202256, + "cumulativeLayoutShift": 0.0009504937065972222, + "cumulativeLayoutShiftMainFrame": 0.0009504937065972222, + "totalCumulativeLayoutShift": 0.0009504937065972222, "observedTimeOrigin": 0, - "observedTimeOriginTs": 296946008, + "observedTimeOriginTs": 268705056, "observedNavigationStart": 0, - "observedNavigationStartTs": 296946008, - "observedFirstPaint": 1093, - "observedFirstPaintTs": 298038975, - "observedFirstContentfulPaint": 1093, - "observedFirstContentfulPaintTs": 298038975, - "observedFirstContentfulPaintAllFrames": 1093, - "observedFirstContentfulPaintAllFramesTs": 298038975, - "observedFirstMeaningfulPaint": 1093, - "observedFirstMeaningfulPaintTs": 298038975, - "observedLargestContentfulPaint": 1093, - "observedLargestContentfulPaintTs": 298038975, - "observedLargestContentfulPaintAllFrames": 1093, - "observedLargestContentfulPaintAllFramesTs": 298038975, - "observedTraceEnd": 4080, - "observedTraceEndTs": 301026130, - "observedLoad": 1770, - "observedLoadTs": 298716313, + "observedNavigationStartTs": 268705056, + "observedFirstPaint": 674, + "observedFirstPaintTs": 269379257, + "observedFirstContentfulPaint": 674, + "observedFirstContentfulPaintTs": 269379257, + "observedFirstContentfulPaintAllFrames": 674, + "observedFirstContentfulPaintAllFramesTs": 269379257, + "observedFirstMeaningfulPaint": 674, + "observedFirstMeaningfulPaintTs": 269379257, + "observedLargestContentfulPaint": 674, + "observedLargestContentfulPaintTs": 269379257, + "observedLargestContentfulPaintAllFrames": 674, + "observedLargestContentfulPaintAllFramesTs": 269379257, + "observedTraceEnd": 3365, + "observedTraceEndTs": 272069813, + "observedLoad": 1055, + "observedLoadTs": 269760344, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 296946653, - "observedCumulativeLayoutShift": 0.0009408509996202256, - "observedCumulativeLayoutShiftMainFrame": 0.0009408509996202256, - "observedTotalCumulativeLayoutShift": 0.0009408509996202256, - "observedFirstVisualChange": 1092, - "observedFirstVisualChangeTs": 298038008, - "observedLastVisualChange": 3591, - "observedLastVisualChangeTs": 300537008, - "observedSpeedIndex": 1143, - "observedSpeedIndexTs": 298089409 + "observedDomContentLoadedTs": 268705607, + "observedCumulativeLayoutShift": 0.0009504937065972222, + "observedCumulativeLayoutShiftMainFrame": 0.0009504937065972222, + "observedTotalCumulativeLayoutShift": 0.0009504937065972222, + "observedFirstVisualChange": 684, + "observedFirstVisualChangeTs": 269389056, + "observedLastVisualChange": 3167, + "observedLastVisualChangeTs": 271872056, + "observedSpeedIndex": 721, + "observedSpeedIndexTs": 269425723 }, { "lcpInvalidated": false @@ -225302,23 +222998,23 @@ "type": "debugdata", "items": [ { - "numRequests": 18, + "numRequests": 19, "numScripts": 3, "numStylesheets": 3, "numFonts": 3, - "numTasks": 34, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 145.875, - "throughput": 10650610.41179018, - "maxRtt": 146.22, - "maxServerLatency": 13.086999999999989, - "totalByteWeight": 1011469, - "totalTaskTime": 4.757999999999998, - "mainDocumentTransferSize": 3261 + "rtt": 88.474, + "throughput": 15466837.909688279, + "maxRtt": 88.687, + "maxServerLatency": 4.498999999999995, + "totalByteWeight": 1012843, + "totalTaskTime": 2.563, + "mainDocumentTransferSize": 3370 } ] } @@ -225415,8 +223111,8 @@ "nmapGrade": "D", "nmapOpenPortsCount": 3, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-02-10T02:07:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-04-10T02:03:00.000Z", "testsslGrade": "A+", "cookiesGrade": "C", "cookiesCount": 3, @@ -225451,29 +223147,29 @@ "http": { "url": "https://mon-entreprise.urssaf.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 07:41:35 GMT", + "end_time": "Sun, 14 Jan 2024 07:39:43 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Accept-Ranges": "bytes", - "Age": "39", + "Age": "2", "Cache-Control": "public,max-age=0,must-revalidate", "Cache-Status": "\"Netlify Edge\"; hit", "Content-Encoding": "gzip", - "Content-Length": "11677", + "Content-Length": "11698", "Content-Security-Policy": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline' mon-entreprise.zammad.com; connect-src 'self' *.incubateur.net raw.githubusercontent.com tm.urssaf.fr mon-entreprise.zammad.com api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net mon-entreprise.zammad.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com mon-entreprise.zammad.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 07 Jan 2024 07:41:35 GMT", - "Etag": "\"8e1255cb20ad878776998d94f4633467-ssl-df\"", + "Date": "Sun, 14 Jan 2024 07:39:43 GMT", + "Etag": "\"9d561252e92645cb81a1159b01f32d0c-ssl-df\"", "Server": "Netlify", "Strict-Transport-Security": "max-age=31536000", "Vary": "Accept-Encoding", - "X-Nf-Request-Id": "01HKHDXD095T0H7R24WCH1T6M8" + "X-Nf-Request-Id": "01HM3EK0KDMCBD19NQY6949A0W" }, - "scan_id": 46231155, + "scan_id": 46458575, "score": 0, - "start_time": "Sun, 07 Jan 2024 07:41:33 GMT", + "start_time": "Sun, 14 Jan 2024 07:39:34 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 7, @@ -225486,60 +223182,60 @@ "output": { "data": { "connect-src": [ - "user-images.githubusercontent.com", - "*.algolianet.com", - "polyfill.io", + "api.recherche-entreprises.fabrique.social.gouv.fr", "*.incubateur.net", "mon-entreprise.zammad.com", - "geo.api.gouv.fr", "tm.urssaf.fr", + "polyfill.io", + "geo.api.gouv.fr", "raw.githubusercontent.com", - "'self'", - "api.recherche-entreprises.fabrique.social.gouv.fr", + "jedonnemonavis.numerique.gouv.fr", "*.algolia.net", - "jedonnemonavis.numerique.gouv.fr" + "'self'", + "*.algolianet.com", + "user-images.githubusercontent.com" ], "default-src": [ "mon-entreprise.fr", "'self'" ], "form-action": [ + "'self'", "*.sibforms.com", - "*.incubateur.net", "mon-entreprise.zammad.com", - "'self'" + "*.incubateur.net" ], "frame-src": [ - "https://www.youtube-nocookie.com", + "https://reso-staging.osc-fr1.scalingo.io", "https://codesandbox.io", - "https://stackblitz.com", + "https://www.youtube-nocookie.com", + "https://place-des-entreprises.beta.gouv.fr", "'self'", - "https://reso-staging.osc-fr1.scalingo.io", - "https://place-des-entreprises.beta.gouv.fr" + "https://stackblitz.com" ], "img-src": [ - "mon-entreprise.urssaf.fr", "tm.urssaf.fr", "data:", + "mon-entreprise.urssaf.fr", + "jedonnemonavis.numerique.gouv.fr", "'self'", - "user-images.githubusercontent.com", - "jedonnemonavis.numerique.gouv.fr" + "user-images.githubusercontent.com" ], "script-src": [ - "polyfill.io", "*.incubateur.net", "mon-entreprise.zammad.com", "'unsafe-eval'", - "stonly.com", + "code.jquery.com", "tm.urssaf.fr", + "polyfill.io", + "'unsafe-inline'", "'self'", - "code.jquery.com", - "'unsafe-inline'" + "stonly.com" ], "style-src": [ - "'unsafe-inline'", + "'self'", "mon-entreprise.zammad.com", - "'self'" + "'unsafe-inline'" ] }, "http": true, @@ -225740,77 +223436,77 @@ "testssl": [ { "id": "service", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -225818,7 +223514,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -225826,7 +223522,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -225834,7 +223530,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -225842,7 +223538,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -225850,7 +223546,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -225858,469 +223554,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "84D1318BEE30D01E4735933E8DE5F386" }, { "id": "cert_serialNumberLen", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "C80EC4A09D2982CD645230F790AB7B40D7F9CCF9" }, { "id": "cert_fingerprintSHA256", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "cert", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "mon-entreprise.urssaf.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "*.netlify.app" }, { "id": "cert_subjectAltName", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "mon-entreprise.urssaf.fr mycompanyinfrance.urssaf.fr www.mycompanyinfrance.urssaf.fr" }, { "id": "cert_trust", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "CRITICAL", "finding": "failed (chain incomplete)." }, { "id": "cert_certificatePolicies_EV", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", - "finding": "326 >= 60 days" + "finding": "319 >= 60 days" }, { "id": "cert_notBefore", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "2023-11-29 00:00" }, { "id": "cert_notAfter", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "2024-11-28 23:59" }, { "id": "cert_extlifeSpan", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "http://crl.sectigo.com/MarketWareRSAOrganizationValidationSecureServerCA3.crl" }, { "id": "cert_ocspURL", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "iodef=mailto:hostmaster@acoss.fr, issue=certigna.fr, issue=digicert.com, issue=sectigo.com" }, { "id": "certificate_transparency", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "MarketWare RSA Organization Validation Secure Server CA 3 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIHxzCCBi+gAwIBAgIRAITRMYvuMNAeRzWTPo3l84YwDQYJKoZIhvcNAQEMBQAwgZAxCzAJBgNVBAYTAlBUMT0wOwYDVQQKDDRNYXJrZXRXYXJlIC0gU29sdcOnw7VlcyBwYXJhIE1lcmNhZG9zIERpZ2l0YWlzLCBMZGEuMUIwQAYDVQQDEzlNYXJrZXRXYXJlIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENBIDMwHhcNMjMxMTI5MDAwMDAwWhcNMjQxMTI4MjM1OTU5WjCBhjELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMTswOQYDVQQKEzJBR0VOQ0UgQ0VOVFJBTEUgREVTIE9SR0FOSVNNRVMgREUgU0VDVVJJVEUgU09DSUFMRTEhMB8GA1UEAxMYbW9uLWVudHJlcHJpc2UudXJzc2FmLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4VCaCIjGCLJzNFKezYrTK/mVFKTeMqomUkbGgGwHOfct6L/kEVqqL5imgcYrFg8KX2lC8wXQQzHxKZ/oTx8Ixkm2PMyi3Y0xWXgSwrp9Vz6mBxgL59aQ7tTQj+7QrpvO5IXelGo5iIxmJ5PzeAPodfGH0/EqsFcyC5e1/sa8xacFP1tmj/Y8vQEMLhfClOB7krtfm2K59i/wywH4GXk1rXv9zW27XBr6ny9xWKYFLP2vYgjl5Aqn285sRBQI2kkTjoT/cu0OM2M+gQYhXm9ZFXhDXuXuCoHJ3J7wOqGC9CA4BmWuWRwS2JnH6m1Hz9P9SijLfXqhI9n9NO9KbY6UwIDAQABo4IDojCCA54wHwYDVR0jBBgwFoAUoCUHdkIduNj/x0BuG6oT2R0H83swHQYDVR0OBBYEFMXDEzD8loMherVeZPFQa5ufpDk9MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgIiMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBeBgNVHR8EVzBVMFOgUaBPhk1odHRwOi8vY3JsLnNlY3RpZ28uY29tL01hcmtldFdhcmVSU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EzLmNybDCBkAYIKwYBBQUHAQEEgYMwgYAwWQYIKwYBBQUHMAKGTWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vTWFya2V0V2FyZVJTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQTMuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGMGiIUPQAABAMARjBEAiBrN0RIYEuBikYN6BazG7fg+q/t6ae8NAduVqNqHgMNNgIgEyF2oLAQT4ELZfWMbH70iYara5cr693Jd++yCqQWd2wAdQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYwaIhVkAAAEAwBGMEQCIGgci+dKwAHxR3mLbz6z4fPJutB9vqOOt+iiXOqnRHayAiAXMPuQ7v7HJ5LqbOe2v2HaBCHn8CBjKrLov4VoGreTcAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjBoiFGgAAAQDAEcwRQIgNyUExfW+LGn+Dpm2COpGP2P9cnLJkWFpzYQAr/0OmvsCIQCwmXK9Nk+/fQOjp7XAkx3gH4MQxxGlkqWeKmrIAGlPYjBhBgNVHREEWjBYghhtb24tZW50cmVwcmlzZS51cnNzYWYuZnKCG215Y29tcGFueWluZnJhbmNlLnVyc3NhZi5mcoIfd3d3Lm15Y29tcGFueWluZnJhbmNlLnVyc3NhZi5mcjANBgkqhkiG9w0BAQwFAAOCAYEAkEtuCByHtkCjYjI5S/1E2VTTaHY2X3jz5bNE/zgwf/WMngQFL8AEzML8yTPlCBBsjj/MrREqO7o7+dQBWL6GUgVvXFj/x/DqmnfbVQSRlafZ1NPvAvvHNqvuSaOf0DmPyhhbvAbp6cVWhVsAutbqKhv9TfrOPNlRXlQXJ7INvUHe0H7dlkPW5PqTq6GxVEE+L7P4nXqomg7IzI3ppSEBnnIDpbmcV0wfb4bFaDrewVbtnTJ7EKBqtXYsAf9h96SYiRzbRlIZSjyGNv9iTgdonaNmcfdp8CHg+UwcUT5Ae3BaRZsCcuwpj113H+Gj3h/QD81Hgo28cuIuVAXUpH2hv+blQx5r8oWUs0HKQaZwbJx8cDFg60TnMR7pzaqSJzM1SXdJJjwSqiOIFk+Ce/kr7Mcqpe8+aEXE20rk6Y+pKgNo4aD40VGPlUXxQfSUeifAbRCHMoCqUNXaA0dlnTRvt3UnFjENLE1fjRN24O5RqeJBXubqD9HTnjbesT4ShqAI\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "2023-11-29 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "2024-11-28 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "mon-entreprise.urssaf.fr <-- MarketWare RSA Organization Validation Secure Server CA 3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "+11452 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", - "finding": "1704613366" + "finding": "1705218046" }, { "id": "HTTP_headerAge", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", - "finding": "0 seconds" + "finding": "11452 seconds" }, { "id": "HSTS_time", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "Netlify" }, { "id": "banner_application", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Content-Security-Policy", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline' mon-entreprise.zammad.com; connect-src 'self' *.incubateur.net raw.githubusercontent.com tm.urssaf.fr mon-entreprise.zammad.com api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net mon-entreprise.zammad.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com mon-entreprise.zammad.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com" }, { "id": "Cache-Control", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "public,max-age=0,must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -226328,7 +224024,7 @@ }, { "id": "heartbleed", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -226337,7 +224033,7 @@ }, { "id": "CCS", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -226346,7 +224042,7 @@ }, { "id": "ticketbleed", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -226355,7 +224051,7 @@ }, { "id": "ROBOT", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -226364,7 +224060,7 @@ }, { "id": "secure_renego", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -226372,7 +224068,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -226381,7 +224077,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -226390,7 +224086,7 @@ }, { "id": "BREACH", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -226399,7 +224095,7 @@ }, { "id": "POODLE_SSL", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -226408,14 +224104,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -226424,7 +224120,7 @@ }, { "id": "FREAK", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -226433,7 +224129,7 @@ }, { "id": "DROWN", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -226442,7 +224138,7 @@ }, { "id": "DROWN_hint", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -226451,7 +224147,7 @@ }, { "id": "LOGJAM", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -226460,7 +224156,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -226469,7 +224165,7 @@ }, { "id": "BEAST", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -226478,7 +224174,7 @@ }, { "id": "LUCKY13", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -226487,7 +224183,7 @@ }, { "id": "winshock", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -226496,7 +224192,7 @@ }, { "id": "RC4", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -226505,399 +224201,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "mon-entreprise.urssaf.fr/50.18.142.31", + "ip": "mon-entreprise.urssaf.fr/54.84.236.175", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "service", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -226905,7 +224601,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -226913,7 +224609,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -226921,7 +224617,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -226929,7 +224625,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -226937,7 +224633,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -226945,469 +224641,469 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "'session ticket/#35' 'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "SHA384 with RSA" }, { "id": "cert_keySize", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "84D1318BEE30D01E4735933E8DE5F386" }, { "id": "cert_serialNumberLen", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "C80EC4A09D2982CD645230F790AB7B40D7F9CCF9" }, { "id": "cert_fingerprintSHA256", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "cert", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIHxzCCBi+gAwIBAgIRAITRMYvuMNAeRzWTPo3l84YwDQYJKoZIhvcNAQEMBQAwgZAxCzAJBgNVBAYTAlBUMT0wOwYDVQQKDDRNYXJrZXRXYXJlIC0gU29sdcOnw7VlcyBwYXJhIE1lcmNhZG9zIERpZ2l0YWlzLCBMZGEuMUIwQAYDVQQDEzlNYXJrZXRXYXJlIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENBIDMwHhcNMjMxMTI5MDAwMDAwWhcNMjQxMTI4MjM1OTU5WjCBhjELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMTswOQYDVQQKEzJBR0VOQ0UgQ0VOVFJBTEUgREVTIE9SR0FOSVNNRVMgREUgU0VDVVJJVEUgU09DSUFMRTEhMB8GA1UEAxMYbW9uLWVudHJlcHJpc2UudXJzc2FmLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4VCaCIjGCLJzNFKezYrTK/mVFKTeMqomUkbGgGwHOfct6L/kEVqqL5imgcYrFg8KX2lC8wXQQzHxKZ/oTx8Ixkm2PMyi3Y0xWXgSwrp9Vz6mBxgL59aQ7tTQj+7QrpvO5IXelGo5iIxmJ5PzeAPodfGH0/EqsFcyC5e1/sa8xacFP1tmj/Y8vQEMLhfClOB7krtfm2K59i/wywH4GXk1rXv9zW27XBr6ny9xWKYFLP2vYgjl5Aqn285sRBQI2kkTjoT/cu0OM2M+gQYhXm9ZFXhDXuXuCoHJ3J7wOqGC9CA4BmWuWRwS2JnH6m1Hz9P9SijLfXqhI9n9NO9KbY6UwIDAQABo4IDojCCA54wHwYDVR0jBBgwFoAUoCUHdkIduNj/x0BuG6oT2R0H83swHQYDVR0OBBYEFMXDEzD8loMherVeZPFQa5ufpDk9MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgIiMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBeBgNVHR8EVzBVMFOgUaBPhk1odHRwOi8vY3JsLnNlY3RpZ28uY29tL01hcmtldFdhcmVSU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EzLmNybDCBkAYIKwYBBQUHAQEEgYMwgYAwWQYIKwYBBQUHMAKGTWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vTWFya2V0V2FyZVJTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQTMuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGMGiIUPQAABAMARjBEAiBrN0RIYEuBikYN6BazG7fg+q/t6ae8NAduVqNqHgMNNgIgEyF2oLAQT4ELZfWMbH70iYara5cr693Jd++yCqQWd2wAdQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYwaIhVkAAAEAwBGMEQCIGgci+dKwAHxR3mLbz6z4fPJutB9vqOOt+iiXOqnRHayAiAXMPuQ7v7HJ5LqbOe2v2HaBCHn8CBjKrLov4VoGreTcAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjBoiFGgAAAQDAEcwRQIgNyUExfW+LGn+Dpm2COpGP2P9cnLJkWFpzYQAr/0OmvsCIQCwmXK9Nk+/fQOjp7XAkx3gH4MQxxGlkqWeKmrIAGlPYjBhBgNVHREEWjBYghhtb24tZW50cmVwcmlzZS51cnNzYWYuZnKCG215Y29tcGFueWluZnJhbmNlLnVyc3NhZi5mcoIfd3d3Lm15Y29tcGFueWluZnJhbmNlLnVyc3NhZi5mcjANBgkqhkiG9w0BAQwFAAOCAYEAkEtuCByHtkCjYjI5S/1E2VTTaHY2X3jz5bNE/zgwf/WMngQFL8AEzML8yTPlCBBsjj/MrREqO7o7+dQBWL6GUgVvXFj/x/DqmnfbVQSRlafZ1NPvAvvHNqvuSaOf0DmPyhhbvAbp6cVWhVsAutbqKhv9TfrOPNlRXlQXJ7INvUHe0H7dlkPW5PqTq6GxVEE+L7P4nXqomg7IzI3ppSEBnnIDpbmcV0wfb4bFaDrewVbtnTJ7EKBqtXYsAf9h96SYiRzbRlIZSjyGNv9iTgdonaNmcfdp8CHg+UwcUT5Ae3BaRZsCcuwpj113H+Gj3h/QD81Hgo28cuIuVAXUpH2hv+blQx5r8oWUs0HKQaZwbJx8cDFg60TnMR7pzaqSJzM1SXdJJjwSqiOIFk+Ce/kr7Mcqpe8+aEXE20rk6Y+pKgNo4aD40VGPlUXxQfSUeifAbRCHMoCqUNXaA0dlnTRvt3UnFjENLE1fjRN24O5RqeJBXubqD9HTnjbesT4ShqAI\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "mon-entreprise.urssaf.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "*.netlify.app" }, { "id": "cert_subjectAltName", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "mon-entreprise.urssaf.fr mycompanyinfrance.urssaf.fr www.mycompanyinfrance.urssaf.fr" }, { "id": "cert_trust", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "CRITICAL", "finding": "failed (chain incomplete)." }, { "id": "cert_certificatePolicies_EV", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", - "finding": "326 >= 60 days" + "finding": "319 >= 60 days" }, { "id": "cert_notBefore", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "2023-11-29 00:00" }, { "id": "cert_notAfter", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "2024-11-28 23:59" }, { "id": "cert_extlifeSpan", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "http://crl.sectigo.com/MarketWareRSAOrganizationValidationSecureServerCA3.crl" }, { "id": "cert_ocspURL", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "iodef=mailto:hostmaster@acoss.fr, issue=certigna.fr, issue=digicert.com, issue=sectigo.com" }, { "id": "certificate_transparency", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "MarketWare RSA Organization Validation Secure Server CA 3 (MarketWare - Soluções para Mercados Digitais, Lda. from PT)" }, { "id": "intermediate_cert <#1>", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIHxzCCBi+gAwIBAgIRAITRMYvuMNAeRzWTPo3l84YwDQYJKoZIhvcNAQEMBQAwgZAxCzAJBgNVBAYTAlBUMT0wOwYDVQQKDDRNYXJrZXRXYXJlIC0gU29sdcOnw7VlcyBwYXJhIE1lcmNhZG9zIERpZ2l0YWlzLCBMZGEuMUIwQAYDVQQDEzlNYXJrZXRXYXJlIFJTQSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENBIDMwHhcNMjMxMTI5MDAwMDAwWhcNMjQxMTI4MjM1OTU5WjCBhjELMAkGA1UEBhMCRlIxFzAVBgNVBAgMDsOObGUtZGUtRnJhbmNlMTswOQYDVQQKEzJBR0VOQ0UgQ0VOVFJBTEUgREVTIE9SR0FOSVNNRVMgREUgU0VDVVJJVEUgU09DSUFMRTEhMB8GA1UEAxMYbW9uLWVudHJlcHJpc2UudXJzc2FmLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4VCaCIjGCLJzNFKezYrTK/mVFKTeMqomUkbGgGwHOfct6L/kEVqqL5imgcYrFg8KX2lC8wXQQzHxKZ/oTx8Ixkm2PMyi3Y0xWXgSwrp9Vz6mBxgL59aQ7tTQj+7QrpvO5IXelGo5iIxmJ5PzeAPodfGH0/EqsFcyC5e1/sa8xacFP1tmj/Y8vQEMLhfClOB7krtfm2K59i/wywH4GXk1rXv9zW27XBr6ny9xWKYFLP2vYgjl5Aqn285sRBQI2kkTjoT/cu0OM2M+gQYhXm9ZFXhDXuXuCoHJ3J7wOqGC9CA4BmWuWRwS2JnH6m1Hz9P9SijLfXqhI9n9NO9KbY6UwIDAQABo4IDojCCA54wHwYDVR0jBBgwFoAUoCUHdkIduNj/x0BuG6oT2R0H83swHQYDVR0OBBYEFMXDEzD8loMherVeZPFQa5ufpDk9MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgIiMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBeBgNVHR8EVzBVMFOgUaBPhk1odHRwOi8vY3JsLnNlY3RpZ28uY29tL01hcmtldFdhcmVSU0FPcmdhbml6YXRpb25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EzLmNybDCBkAYIKwYBBQUHAQEEgYMwgYAwWQYIKwYBBQUHMAKGTWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vTWFya2V0V2FyZVJTQU9yZ2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQTMuY3J0MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGMGiIUPQAABAMARjBEAiBrN0RIYEuBikYN6BazG7fg+q/t6ae8NAduVqNqHgMNNgIgEyF2oLAQT4ELZfWMbH70iYara5cr693Jd++yCqQWd2wAdQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYwaIhVkAAAEAwBGMEQCIGgci+dKwAHxR3mLbz6z4fPJutB9vqOOt+iiXOqnRHayAiAXMPuQ7v7HJ5LqbOe2v2HaBCHn8CBjKrLov4VoGreTcAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjBoiFGgAAAQDAEcwRQIgNyUExfW+LGn+Dpm2COpGP2P9cnLJkWFpzYQAr/0OmvsCIQCwmXK9Nk+/fQOjp7XAkx3gH4MQxxGlkqWeKmrIAGlPYjBhBgNVHREEWjBYghhtb24tZW50cmVwcmlzZS51cnNzYWYuZnKCG215Y29tcGFueWluZnJhbmNlLnVyc3NhZi5mcoIfd3d3Lm15Y29tcGFueWluZnJhbmNlLnVyc3NhZi5mcjANBgkqhkiG9w0BAQwFAAOCAYEAkEtuCByHtkCjYjI5S/1E2VTTaHY2X3jz5bNE/zgwf/WMngQFL8AEzML8yTPlCBBsjj/MrREqO7o7+dQBWL6GUgVvXFj/x/DqmnfbVQSRlafZ1NPvAvvHNqvuSaOf0DmPyhhbvAbp6cVWhVsAutbqKhv9TfrOPNlRXlQXJ7INvUHe0H7dlkPW5PqTq6GxVEE+L7P4nXqomg7IzI3ppSEBnnIDpbmcV0wfb4bFaDrewVbtnTJ7EKBqtXYsAf9h96SYiRzbRlIZSjyGNv9iTgdonaNmcfdp8CHg+UwcUT5Ae3BaRZsCcuwpj113H+Gj3h/QD81Hgo28cuIuVAXUpH2hv+blQx5r8oWUs0HKQaZwbJx8cDFg60TnMR7pzaqSJzM1SXdJJjwSqiOIFk+Ce/kr7Mcqpe8+aEXE20rk6Y+pKgNo4aD40VGPlUXxQfSUeifAbRCHMoCqUNXaA0dlnTRvt3UnFjENLE1fjRN24O5RqeJBXubqD9HTnjbesT4ShqAI\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "E807507F23C6CE0464C216913497FE0647F0095411E307DDD9CD6BE6A809BB36" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "2023-11-29 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "2024-11-28 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "mon-entreprise.urssaf.fr <-- MarketWare RSA Organization Validation Secure Server CA 3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "+5017 seconds from localtime" + "finding": "+11485 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "1704613408" + "finding": "1705218089" }, { "id": "HTTP_headerAge", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "5017 seconds" + "finding": "11485 seconds" }, { "id": "HSTS_time", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "Netlify" }, { "id": "banner_application", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Content-Security-Policy", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline' mon-entreprise.zammad.com; connect-src 'self' *.incubateur.net raw.githubusercontent.com tm.urssaf.fr mon-entreprise.zammad.com api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net mon-entreprise.zammad.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com mon-entreprise.zammad.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com" }, { "id": "Cache-Control", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "public,max-age=0,must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -227415,7 +225111,7 @@ }, { "id": "heartbleed", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -227424,7 +225120,7 @@ }, { "id": "CCS", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -227433,7 +225129,7 @@ }, { "id": "ticketbleed", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -227442,7 +225138,7 @@ }, { "id": "ROBOT", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -227451,7 +225147,7 @@ }, { "id": "secure_renego", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -227459,7 +225155,7 @@ }, { "id": "secure_client_renego", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -227468,7 +225164,7 @@ }, { "id": "CRIME_TLS", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -227477,7 +225173,7 @@ }, { "id": "BREACH", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -227486,7 +225182,7 @@ }, { "id": "POODLE_SSL", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -227495,14 +225191,14 @@ }, { "id": "fallback_SCSV", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -227511,7 +225207,7 @@ }, { "id": "FREAK", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -227520,7 +225216,7 @@ }, { "id": "DROWN", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -227529,7 +225225,7 @@ }, { "id": "DROWN_hint", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -227538,7 +225234,7 @@ }, { "id": "LOGJAM", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -227547,7 +225243,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -227556,7 +225252,7 @@ }, { "id": "BEAST", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -227565,7 +225261,7 @@ }, { "id": "LUCKY13", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -227574,7 +225270,7 @@ }, { "id": "winshock", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -227583,7 +225279,7 @@ }, { "id": "RC4", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -227592,332 +225288,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "scanTime", - "ip": "mon-entreprise.urssaf.fr/52.9.166.110", + "ip": "mon-entreprise.urssaf.fr/44.217.161.11", "port": "443", "severity": "INFO", - "finding": "87" + "finding": "88" } ], "thirdparties": { @@ -227936,40 +225632,36 @@ }, { "type": "unknown", - "url": "https://tm.urssaf.fr/tm.ur?s=617190&idclient=7df7d84f-1663-4690-a467-f6e606b3848a&vc=false&vm=exempt&ts=1704613330798&vtag=5.29.4&ptag=js&env_language=fr&n:simulateur_embarque=0&events=%5B%7B%22name%22%3A%22page.display%22%2C%22data%22%3A%7B%22page%22%3A%7B%22chapter1%22%3A%22informations%22%2C%22chapter2%22%3A%22%22%2C%22chapter3%22%3A%22%22%2C%22%24%22%3A%22accueil%22%7D%7D%7D%5D&ref=" + "url": "https://tm.urssaf.fr/tm.ur?s=617190&idclient=22d435e7-e1d6-4c6f-a5ee-1761fc7778da&vc=false&vm=exempt&ts=1705218012391&vtag=5.29.4&ptag=js&env_language=fr&n:simulateur_embarque=0&events=%5B%7B%22name%22%3A%22page.display%22%2C%22data%22%3A%7B%22page%22%3A%7B%22chapter1%22%3A%22informations%22%2C%22chapter2%22%3A%22%22%2C%22chapter3%22%3A%22%22%2C%22%24%22%3A%22accueil%22%7D%7D%7D%5D&ref=" } ], "cookies": [], "headers": { "accept-ranges": "bytes", - "age": "0", + "age": "11417", "cache-control": "public,max-age=0,must-revalidate", - "cache-status": "\"Netlify Edge\"; fwd=stale", + "cache-status": "\"Netlify Edge\"; hit", "content-encoding": "br", + "content-length": "10894", "content-security-policy": "default-src 'self' mon-entreprise.fr; style-src 'self' 'unsafe-inline' mon-entreprise.zammad.com; connect-src 'self' *.incubateur.net raw.githubusercontent.com tm.urssaf.fr mon-entreprise.zammad.com api.recherche-entreprises.fabrique.social.gouv.fr geo.api.gouv.fr *.algolia.net *.algolianet.com polyfill.io jedonnemonavis.numerique.gouv.fr user-images.githubusercontent.com; form-action 'self' *.sibforms.com *.incubateur.net mon-entreprise.zammad.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' tm.urssaf.fr *.incubateur.net stonly.com code.jquery.com mon-entreprise.zammad.com polyfill.io; img-src 'self' data: mon-entreprise.urssaf.fr tm.urssaf.fr user-images.githubusercontent.com jedonnemonavis.numerique.gouv.fr; frame-src 'self' https://www.youtube-nocookie.com https://codesandbox.io https://place-des-entreprises.beta.gouv.fr https://reso-staging.osc-fr1.scalingo.io https://stackblitz.com", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 07:42:09 GMT", - "etag": "\"8e1255cb20ad878776998d94f4633467-ssl-df\"", + "date": "Sun, 14 Jan 2024 07:40:11 GMT", + "etag": "\"9d561252e92645cb81a1159b01f32d0c-ssl-df\"", "server": "Netlify", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", - "x-nf-request-id": "01HKHDYEHKGVF52E083RB4HBWC" + "x-nf-request-id": "01HM3EKW26GK5NNC3AAMBHSEXX" }, "endpoints": [ { "hostname": "mon-entreprise.urssaf.fr", - "ip": "13.57.148.141", + "ip": "54.84.236.175", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 4744870, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "en": "Ashburn", + "ru": "Ашберн" } }, "continent": { @@ -227990,7 +225682,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -228002,19 +225694,19 @@ }, "location": { "accuracy_radius": 1000, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, - "time_zone": "America/Los_Angeles" + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" }, "postal": { - "code": "95141" + "code": "20149" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -228026,17 +225718,15 @@ }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 6254928, + "iso_code": "VA", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" } } ] @@ -228044,7 +225734,7 @@ }, { "hostname": "polyfill.io", - "ip": "151.101.1.26", + "ip": "151.101.65.26", "geoip": { "continent": { "code": "NA", @@ -228064,7 +225754,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -228084,7 +225774,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -228152,7 +225842,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -228188,7 +225878,7 @@ }, { "hostname": "tm.urssaf.fr", - "ip": "13.226.210.86", + "ip": "108.156.211.91", "geoip": { "continent": { "code": "NA", @@ -228208,7 +225898,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -228228,7 +225918,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -228496,7 +226186,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 07:41:08", + "@generated": "Sun, 14 Jan 2024 07:39:10", "site": [ { "@name": "https://mon-entreprise.urssaf.fr", @@ -228681,7 +226371,7 @@ { "requestedUrl": "https://mon-entreprise.urssaf.fr/", "finalUrl": "https://mon-entreprise.urssaf.fr/", - "fetchTime": "2024-01-07T07:41:23.065Z", + "fetchTime": "2024-01-14T07:39:24.297Z", "runWarnings": [], "categories": { "performance": { @@ -228744,53 +226434,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7259, + "numericValue": 7048, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1476, - "firstMeaningfulPaint": 1476, - "largestContentfulPaint": 1953, - "interactive": 7259, - "speedIndex": 1476, - "totalBlockingTime": 2693, - "maxPotentialFID": 2445, - "cumulativeLayoutShift": 0, - "cumulativeLayoutShiftMainFrame": 0, - "totalCumulativeLayoutShift": 0, + "firstContentfulPaint": 990, + "firstMeaningfulPaint": 990, + "largestContentfulPaint": 990, + "interactive": 7048, + "speedIndex": 990, + "totalBlockingTime": 2548, + "maxPotentialFID": 2317, + "cumulativeLayoutShift": 0.03069560443030463, + "cumulativeLayoutShiftMainFrame": 0.03069560443030463, + "totalCumulativeLayoutShift": 0.03069560443030463, "observedTimeOrigin": 0, - "observedTimeOriginTs": 285632178, + "observedTimeOriginTs": 238511062, "observedNavigationStart": 0, - "observedNavigationStartTs": 285632178, - "observedFirstPaint": 339, - "observedFirstPaintTs": 285971020, - "observedFirstContentfulPaint": 339, - "observedFirstContentfulPaintTs": 285971020, - "observedFirstContentfulPaintAllFrames": 339, - "observedFirstContentfulPaintAllFramesTs": 285971020, - "observedFirstMeaningfulPaint": 339, - "observedFirstMeaningfulPaintTs": 285971020, - "observedLargestContentfulPaint": 339, - "observedLargestContentfulPaintTs": 285971020, - "observedLargestContentfulPaintAllFrames": 339, - "observedLargestContentfulPaintAllFramesTs": 285971020, - "observedTraceEnd": 3562, - "observedTraceEndTs": 289194388, - "observedLoad": 530, - "observedLoadTs": 286162139, - "observedDomContentLoaded": 521, - "observedDomContentLoadedTs": 286153118, - "observedCumulativeLayoutShift": 0, - "observedCumulativeLayoutShiftMainFrame": 0, - "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 339, - "observedFirstVisualChangeTs": 285971178, - "observedLastVisualChange": 1173, - "observedLastVisualChangeTs": 286805178, - "observedSpeedIndex": 398, - "observedSpeedIndexTs": 286030225 + "observedNavigationStartTs": 238511062, + "observedFirstPaint": 358, + "observedFirstPaintTs": 238868689, + "observedFirstContentfulPaint": 358, + "observedFirstContentfulPaintTs": 238868689, + "observedFirstContentfulPaintAllFrames": 358, + "observedFirstContentfulPaintAllFramesTs": 238868689, + "observedFirstMeaningfulPaint": 358, + "observedFirstMeaningfulPaintTs": 238868689, + "observedLargestContentfulPaint": 358, + "observedLargestContentfulPaintTs": 238868689, + "observedLargestContentfulPaintAllFrames": 358, + "observedLargestContentfulPaintAllFramesTs": 238868689, + "observedTraceEnd": 3491, + "observedTraceEndTs": 242002243, + "observedLoad": 543, + "observedLoadTs": 239054088, + "observedDomContentLoaded": 534, + "observedDomContentLoadedTs": 239044753, + "observedCumulativeLayoutShift": 0.03069560443030463, + "observedCumulativeLayoutShiftMainFrame": 0.03069560443030463, + "observedTotalCumulativeLayoutShift": 0.03069560443030463, + "observedFirstVisualChange": 362, + "observedFirstVisualChangeTs": 238873062, + "observedLastVisualChange": 546, + "observedLastVisualChangeTs": 239057062, + "observedSpeedIndex": 382, + "observedSpeedIndexTs": 238893277 }, { "lcpInvalidated": false @@ -228812,19 +226502,19 @@ "numScripts": 6, "numStylesheets": 1, "numFonts": 4, - "numTasks": 1038, - "numTasksOver10ms": 4, + "numTasks": 1000, + "numTasksOver10ms": 5, "numTasksOver25ms": 2, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 1, - "rtt": 8.052999999999999, - "throughput": 32068781.671037786, - "maxRtt": 146.588, - "maxServerLatency": 200.32599999999996, - "totalByteWeight": 667656, - "totalTaskTime": 893.9930000000011, - "mainDocumentTransferSize": 11923 + "rtt": 4.369000000000001, + "throughput": 40958336.8416154, + "maxRtt": 100.125, + "maxServerLatency": 132.20999999999998, + "totalByteWeight": 668865, + "totalTaskTime": 857.5350000000045, + "mainDocumentTransferSize": 11921 } ] } @@ -228956,7 +226646,7 @@ "http": { "url": "https://mrs.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 07:51:42 GMT", + "end_time": "Sun, 14 Jan 2024 07:44:26 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -228965,7 +226655,7 @@ "Content-Length": "12153", "Content-Security-Policy": "form-action 'self'; upgrade-insecure-requests; frame-ancestors 'self'; default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://stats.data.gouv.fr https://cdnjs.cloudflare.com; img-src 'self' https://stats.data.gouv.fr; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com https://cdnjs.cloudflare.com; base-uri 'self'; frame-src 'self' https://www.youtube.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://stats.data.gouv.fr https://cdn.ravenjs.com", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 07:51:40 GMT", + "Date": "Sun, 14 Jan 2024 07:44:24 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=15768000; includeSubDomains; preload", "Vary": "Accept-Language", @@ -228973,9 +226663,9 @@ "X-Frame-Options": "SAMEORIGIN", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 46231220, + "scan_id": 46458659, "score": 70, - "start_time": "Sun, 07 Jan 2024 07:51:35 GMT", + "start_time": "Sun, 14 Jan 2024 07:44:19 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -228991,11 +226681,11 @@ "'self'" ], "default-src": [ - "https://cdnjs.cloudflare.com", "https://stats.data.gouv.fr", - "'self'", "https://fonts.gstatic.com", - "'unsafe-inline'" + "https://cdnjs.cloudflare.com", + "'unsafe-inline'", + "'self'" ], "form-action": [ "'self'" @@ -229013,22 +226703,22 @@ ], "script-src": [ "https://cdn.ravenjs.com", - "https://cdnjs.cloudflare.com", "https://fonts.gstatic.com", "https://stats.data.gouv.fr", - "https://code.jquery.com", "'unsafe-eval'", - "'self'", + "https://cdnjs.cloudflare.com", "https://fonts.googleapis.com", + "https://code.jquery.com", "'unsafe-inline'", - "https://stackpath.bootstrapcdn.com" + "https://stackpath.bootstrapcdn.com", + "'self'" ], "style-src": [ "https://cdnjs.cloudflare.com", - "'self'", "https://fonts.googleapis.com", "'unsafe-inline'", - "https://stackpath.bootstrapcdn.com" + "https://stackpath.bootstrapcdn.com", + "'self'" ], "upgrade-insecure-requests": [ "'none'" @@ -229221,7 +226911,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-04T09:58:31Z", + "up_since": "2024-01-09T13:31:39Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -229233,8 +226923,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T07:58:37Z", - "next_check_at": "2024-01-07T08:03:35Z", + "last_check_at": "2024-01-14T07:46:32Z", + "next_check_at": "2024-01-14T07:51:31Z", "created_at": "2021-04-22T19:59:34Z", "mute_until": null, "favicon_url": "https://www.mrs.beta.gouv.fr/static/img/logos/launcher-icon-2x.png", @@ -229242,20 +226932,20 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T07:28:46Z", + "tested_at": "2024-01-14T07:01:49Z", "expires_at": "2024-02-17T23:39:22Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.667, + "apdex": 0.646, "timings": { - "redirect": 613, - "namelookup": 378, - "connection": 137, - "handshake": 158, - "response": 556, - "total": 1842 + "redirect": 539, + "namelookup": 350, + "connection": 125, + "handshake": 149, + "response": 569, + "total": 1733 } }, "uptimeGrade": "A", @@ -229651,7 +227341,7 @@ "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "OK", - "finding": "41 >= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", @@ -229854,7 +227544,7 @@ "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "1704614026" + "finding": "1705218358" }, { "id": "HSTS", @@ -230410,7 +228100,7 @@ "ip": "mrs.beta.gouv.fr/162.19.18.40", "port": "443", "severity": "INFO", - "finding": "132" + "finding": "75" } ], "thirdparties": { @@ -230423,6 +228113,10 @@ "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, + { + "type": "unknown", + "url": "https://cdn.ravenjs.com/3.26.4/raven.min.js" + }, { "type": "google fonts", "url": "https://fonts.googleapis.com/css?family=Raleway:400,700|Roboto+Slab:400,700&display=swap", @@ -230431,10 +228125,6 @@ "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, - { - "type": "unknown", - "url": "https://cdn.ravenjs.com/3.26.4/raven.min.js" - }, { "type": "jQuery", "url": "https://code.jquery.com/jquery-3.3.1.slim.min.js", @@ -230485,50 +228175,50 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/www-player.css", + "url": "https://www.youtube.com/s/player/80b90bfd/www-player.css", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", + "type": "youtube", + "url": "https://www.youtube.com/s/player/80b90bfd/player_ias.vflset/en_US/embed.js", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" } }, { - "type": "google fonts", - "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", + "type": "youtube", + "url": "https://www.youtube.com/s/player/80b90bfd/www-embed-player.vflset/www-embed-player.js", "details": { - "id": "google fonts", - "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" + "id": "youtube", + "message": "Dont embed youtube scripts, use peertube" } }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/player_ias.vflset/en_US/embed.js", + "url": "https://www.youtube.com/s/player/80b90bfd/player_ias.vflset/en_US/base.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" } }, { - "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/www-embed-player.vflset/www-embed-player.js", + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2", "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, { - "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/player_ias.vflset/en_US/base.js", + "type": "google fonts", + "url": "https://fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2", "details": { - "id": "youtube", - "message": "Dont embed youtube scripts, use peertube" + "id": "google fonts", + "message": "Host the font locally with https://github.com/neverpanic/google-font-download or https://google-webfonts-helper.herokuapp.com/" } }, { @@ -230581,7 +228271,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/s/player/4fd50162/player_ias.vflset/en_US/remote.js", + "url": "https://www.youtube.com/s/player/80b90bfd/player_ias.vflset/en_US/remote.js", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -230589,7 +228279,7 @@ }, { "type": "google", - "url": "https://www.google.com/js/th/sLx6qsRU46GEe0D3YqweyWcV0efz1f9DxDQkuEUxY-c.js", + "url": "https://www.google.com/js/th/1xEiQfu-UCiwbMaFnr-G2Uzcd5udG06umsh6raawdbQ.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -230621,7 +228311,7 @@ }, { "type": "google", - "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", + "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -230637,7 +228327,7 @@ }, { "type": "google", - "url": "https://jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT", + "url": "https://www.gstatic.com/cv/js/sender/v1/cast_sender.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -230645,7 +228335,7 @@ }, { "type": "youtube", - "url": "https://www.youtube.com/generate_204?nnSG2A", + "url": "https://www.youtube.com/generate_204?JfFrCw", "details": { "id": "youtube", "message": "Dont embed youtube scripts, use peertube" @@ -230666,7 +228356,7 @@ "value": "1", "domain": "www.mrs.beta.gouv.fr", "path": "/", - "expires": 1704615733, + "expires": 1705220096, "size": 16, "httpOnly": false, "secure": false, @@ -230678,10 +228368,10 @@ }, { "name": "_pk_id.40.3c86", - "value": "9272af75416f8349.1704613933.", + "value": "27a39f5cee00b80b.1705218296.", "domain": "www.mrs.beta.gouv.fr", "path": "/", - "expires": 1738569133, + "expires": 1739173496, "size": 42, "httpOnly": false, "secure": false, @@ -230697,7 +228387,7 @@ "content-length": "12153", "content-security-policy": "form-action 'self'; upgrade-insecure-requests; frame-ancestors 'self'; default-src 'self' 'unsafe-inline' https://fonts.gstatic.com https://stats.data.gouv.fr https://cdnjs.cloudflare.com; img-src 'self' https://stats.data.gouv.fr; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com https://cdnjs.cloudflare.com; base-uri 'self'; frame-src 'self' https://www.youtube.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://fonts.googleapis.com https://fonts.gstatic.com https://stats.data.gouv.fr https://cdn.ravenjs.com", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 07:52:12 GMT", + "date": "Sun, 14 Jan 2024 07:44:55 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=15768000; includeSubDomains; preload", "vary": "Accept-Language", @@ -230710,14 +228400,6 @@ "hostname": "mrs.beta.gouv.fr", "ip": "162.19.18.40", "geoip": { - "city": { - "geoname_id": 3021150, - "names": { - "en": "Domont", - "ru": "Домон", - "zh-CN": "多蒙" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -230748,14 +228430,11 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 49.0302, - "longitude": 2.3235, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "95330" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -230770,35 +228449,12 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "pt-BR": "Ilha de França" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise" - } - } - ] + } } }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.189.10", + "ip": "142.251.163.95", "geoip": { "continent": { "code": "NA", @@ -230818,7 +228474,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -230838,7 +228494,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -230852,7 +228508,7 @@ }, { "hostname": "cdn.ravenjs.com", - "ip": "151.101.194.217", + "ip": "151.101.66.217", "geoip": { "continent": { "code": "NA", @@ -230872,7 +228528,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -230892,7 +228548,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -230906,7 +228562,7 @@ }, { "hostname": "code.jquery.com", - "ip": "151.101.130.137", + "ip": "151.101.194.137", "geoip": { "continent": { "code": "NA", @@ -230926,7 +228582,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -230946,7 +228602,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -230960,7 +228616,7 @@ }, { "hostname": "www.youtube.com", - "ip": "142.251.40.46", + "ip": "142.251.179.136", "geoip": { "continent": { "code": "NA", @@ -230980,7 +228636,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231000,7 +228656,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231014,7 +228670,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.188.227", + "ip": "172.253.122.94", "geoip": { "continent": { "code": "NA", @@ -231034,7 +228690,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231054,7 +228710,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231068,7 +228724,7 @@ }, { "hostname": "googleads.g.doubleclick.net", - "ip": "142.251.40.34", + "ip": "172.253.115.156", "geoip": { "continent": { "code": "NA", @@ -231088,7 +228744,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231108,7 +228764,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231122,7 +228778,7 @@ }, { "hostname": "static.doubleclick.net", - "ip": "142.250.68.38", + "ip": "172.253.62.148", "geoip": { "continent": { "code": "NA", @@ -231142,7 +228798,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231162,7 +228818,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231176,7 +228832,7 @@ }, { "hostname": "jnn-pa.googleapis.com", - "ip": "142.250.72.170", + "ip": "142.251.167.95", "geoip": { "continent": { "code": "NA", @@ -231196,7 +228852,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231216,7 +228872,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231230,7 +228886,7 @@ }, { "hostname": "www.google.com", - "ip": "172.217.14.100", + "ip": "172.253.122.104", "geoip": { "continent": { "code": "NA", @@ -231250,7 +228906,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231270,7 +228926,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231284,7 +228940,7 @@ }, { "hostname": "i.ytimg.com", - "ip": "142.250.68.22", + "ip": "172.253.62.119", "geoip": { "continent": { "code": "NA", @@ -231304,7 +228960,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231324,7 +228980,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231338,7 +228994,7 @@ }, { "hostname": "yt3.ggpht.com", - "ip": "142.250.72.225", + "ip": "172.253.63.132", "geoip": { "continent": { "code": "NA", @@ -231358,7 +229014,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231378,7 +229034,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231392,7 +229048,7 @@ }, { "hostname": "www.gstatic.com", - "ip": "172.217.12.131", + "ip": "172.253.122.94", "geoip": { "continent": { "code": "NA", @@ -231412,7 +229068,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231432,7 +229088,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -231641,7 +229297,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 07:51:09", + "@generated": "Sun, 14 Jan 2024 07:43:54", "site": [ { "@name": "https://mrs.beta.gouv.fr", @@ -231760,23 +229416,22 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -231792,11 +229447,7 @@ "type": "dns", "host": "mrs.beta.gouv.fr.", "matched-at": "mrs.beta.gouv.fr", - "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." - ], - "timestamp": "2024-01-07T07:55:45.432106292Z", + "timestamp": "2024-01-14T07:47:21.292815302Z", "matcher-status": true }, { @@ -231832,27 +229483,31 @@ "host": "mrs.beta.gouv.fr.", "matched-at": "mrs.beta.gouv.fr", "extracted-results": [ - "\"google-site-verification=g8F_SJHY9iEXLva-8QpFM42tFhaEPyI92cDkFUMOPe0\"", - "\"v=spf1 include:spf.mailjet.com ip4:162.19.18.40/32 ~all\"" + "\"v=spf1 include:spf.mailjet.com ip4:162.19.18.40/32 ~all\"", + "\"google-site-verification=g8F_SJHY9iEXLva-8QpFM42tFhaEPyI92cDkFUMOPe0\"" ], - "timestamp": "2024-01-07T07:55:45.448987844Z", + "timestamp": "2024-01-14T07:47:21.52597395Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -231868,30 +229523,27 @@ "host": "mrs.beta.gouv.fr.", "matched-at": "mrs.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2024-01-07T07:55:45.452518989Z", + "timestamp": "2024-01-14T07:47:22.200218181Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -231906,7 +229558,11 @@ "type": "dns", "host": "mrs.beta.gouv.fr.", "matched-at": "mrs.beta.gouv.fr", - "timestamp": "2024-01-07T07:55:46.455192503Z", + "extracted-results": [ + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." + ], + "timestamp": "2024-01-14T07:47:22.510662196Z", "matcher-status": true }, { @@ -231939,12 +229595,12 @@ "host": "https://mrs.beta.gouv.fr", "matched-at": "https://www.mrs.beta.gouv.fr/", "extracted-results": [ - "https://code.jquery.com/jquery-3.3.1.slim.min.js", "https://stats.data.gouv.fr/matomo.js", - "https://cdn.ravenjs.com/3.26.4/raven.min.js" + "https://cdn.ravenjs.com/3.26.4/raven.min.js", + "https://code.jquery.com/jquery-3.3.1.slim.min.js" ], "ip": "162.19.18.40", - "timestamp": "2024-01-07T07:57:29.833332821Z", + "timestamp": "2024-01-14T07:48:26.933152402Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: mrs.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mrs.beta.gouv.fr/'", "matcher-status": true }, @@ -231994,7 +229650,7 @@ "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6" ], "ip": "162.19.18.40", - "timestamp": "2024-01-07T07:58:45.481618754Z", + "timestamp": "2024-01-14T07:49:21.734448387Z", "matcher-status": true }, { @@ -232024,7 +229680,7 @@ "Let's Encrypt" ], "ip": "162.19.18.40", - "timestamp": "2024-01-07T07:59:36.340038786Z", + "timestamp": "2024-01-14T07:50:15.856729988Z", "matcher-status": true }, { @@ -232055,7 +229711,7 @@ "www.mrs.beta.gouv.fr" ], "ip": "162.19.18.40", - "timestamp": "2024-01-07T07:59:36.340173416Z", + "timestamp": "2024-01-14T07:50:15.856841696Z", "matcher-status": true }, { @@ -232086,7 +229742,7 @@ "tls12" ], "ip": "162.19.18.40", - "timestamp": "2024-01-07T07:59:38.44166056Z", + "timestamp": "2024-01-14T07:50:17.444822965Z", "matcher-status": true }, { @@ -232117,7 +229773,7 @@ "tls13" ], "ip": "162.19.18.40", - "timestamp": "2024-01-07T07:59:38.859745732Z", + "timestamp": "2024-01-14T07:50:17.664456742Z", "matcher-status": true } ], @@ -232125,7 +229781,7 @@ { "requestedUrl": "https://mrs.beta.gouv.fr/", "finalUrl": "https://www.mrs.beta.gouv.fr/", - "fetchTime": "2024-01-07T07:51:23.318Z", + "fetchTime": "2024-01-14T07:44:07.912Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mrs.beta.gouv.fr/) was redirected to https://www.mrs.beta.gouv.fr/. Try testing the second URL directly." ], @@ -232138,7 +229794,7 @@ "snapshot" ], "id": "performance", - "score": 0.8294672012329102 + "score": 0.8293897628784179 }, "accessibility": { "title": "Accessibility", @@ -232190,53 +229846,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12268, + "numericValue": 11928, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3045, - "firstMeaningfulPaint": 3045, - "largestContentfulPaint": 5749, - "interactive": 12268, - "speedIndex": 8745, - "totalBlockingTime": 281, - "maxPotentialFID": 221, + "firstContentfulPaint": 2754, + "firstMeaningfulPaint": 2754, + "largestContentfulPaint": 5469, + "interactive": 11928, + "speedIndex": 7881, + "totalBlockingTime": 370, + "maxPotentialFID": 252, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 272962724, + "observedTimeOriginTs": 238279373, "observedNavigationStart": 0, - "observedNavigationStartTs": 272962724, - "observedFirstPaint": 1476, - "observedFirstPaintTs": 274438717, - "observedFirstContentfulPaint": 1476, - "observedFirstContentfulPaintTs": 274438717, - "observedFirstContentfulPaintAllFrames": 1476, - "observedFirstContentfulPaintAllFramesTs": 274438717, - "observedFirstMeaningfulPaint": 1476, - "observedFirstMeaningfulPaintTs": 274438717, - "observedLargestContentfulPaint": 1643, - "observedLargestContentfulPaintTs": 274605900, - "observedLargestContentfulPaintAllFrames": 1643, - "observedLargestContentfulPaintAllFramesTs": 274605900, - "observedTraceEnd": 4382, - "observedTraceEndTs": 277345035, - "observedLoad": 2070, - "observedLoadTs": 275032314, - "observedDomContentLoaded": 1638, - "observedDomContentLoadedTs": 274600388, + "observedNavigationStartTs": 238279373, + "observedFirstPaint": 1067, + "observedFirstPaintTs": 239346387, + "observedFirstContentfulPaint": 1067, + "observedFirstContentfulPaintTs": 239346387, + "observedFirstContentfulPaintAllFrames": 1067, + "observedFirstContentfulPaintAllFramesTs": 239346387, + "observedFirstMeaningfulPaint": 1067, + "observedFirstMeaningfulPaintTs": 239346387, + "observedLargestContentfulPaint": 1166, + "observedLargestContentfulPaintTs": 239445861, + "observedLargestContentfulPaintAllFrames": 1166, + "observedLargestContentfulPaintAllFramesTs": 239445861, + "observedTraceEnd": 3847, + "observedTraceEndTs": 242126866, + "observedLoad": 1541, + "observedLoadTs": 239820515, + "observedDomContentLoaded": 1135, + "observedDomContentLoadedTs": 239414698, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 1476, - "observedFirstVisualChangeTs": 274438724, - "observedLastVisualChange": 1642, - "observedLastVisualChangeTs": 274604724, - "observedSpeedIndex": 1513, - "observedSpeedIndexTs": 274475521 + "observedFirstVisualChange": 1077, + "observedFirstVisualChangeTs": 239356373, + "observedLastVisualChange": 1177, + "observedLastVisualChangeTs": 239456373, + "observedSpeedIndex": 1099, + "observedSpeedIndexTs": 239378258 }, { "lcpInvalidated": false @@ -232258,19 +229914,19 @@ "numScripts": 12, "numStylesheets": 5, "numFonts": 4, - "numTasks": 1226, + "numTasks": 1179, "numTasksOver10ms": 7, - "numTasksOver25ms": 4, + "numTasksOver25ms": 6, "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 7.968, - "throughput": 15983225.34461481, - "maxRtt": 160.45600000000002, - "maxServerLatency": 153.35, - "totalByteWeight": 1418371, - "totalTaskTime": 554.9809999999991, - "mainDocumentTransferSize": 12878 + "rtt": 5.1000000000000005, + "throughput": 26847428.74991907, + "maxRtt": 89.61600000000001, + "maxServerLatency": 92.437, + "totalByteWeight": 1418777, + "totalTaskTime": 577.726999999999, + "mainDocumentTransferSize": 12855 } ] } @@ -232371,7 +230027,7 @@ "sonarcloud": null, "summary": { "httpGrade": "B", - "apdex": 0.667, + "apdex": 0.646, "apdexGrade": "F", "uptime": 100, "uptimeGrade": "A", @@ -232385,7 +230041,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 31, - "lighthouse_performance": 0.8294672012329102, + "lighthouse_performance": 0.8293897628784179, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.61, "lighthouse_accessibilityGrade": "C", @@ -232419,7 +230075,7 @@ "http": { "url": "https://nosgestesclimat.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:50:18 GMT", + "end_time": "Sun, 14 Jan 2024 01:49:08 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -232429,7 +230085,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 01:50:13 GMT", + "Date": "Sun, 14 Jan 2024 01:49:04 GMT", "Server": "Vercel", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -232439,11 +230095,11 @@ "X-Powered-By": "Next.js", "X-Vercel-Cache": "MISS", "X-Vercel-Execution-Region": "cdg1", - "X-Vercel-Id": "sfo1::cdg1::qktwv-1704592212571-b41210d7d330" + "X-Vercel-Id": "sfo1::cdg1::4sw6p-1705196944052-2e4168aca8e4" }, - "scan_id": 46226538, + "scan_id": 46435252, "score": 40, - "start_time": "Sun, 07 Jan 2024 01:50:11 GMT", + "start_time": "Sun, 14 Jan 2024 01:49:02 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -232907,7 +230563,7 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "039CBAEEF8C92F37D4AFA0FC7665470D869F" + "finding": "049E472CC1047688621CA6FA6A2D6AB73A28" }, { "id": "cert_serialNumberLen", @@ -232921,28 +230577,28 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "665668F9EE1AF445CEBF6D82AF9D1033E3389EAA" + "finding": "B22A7D9BD8AAFA95070850AE5956EC8158EAF590" }, { "id": "cert_fingerprintSHA256", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "C05BAEF524F0A7DED476DA9D0E5CC76525D1EF63BF822989A91F6A5AE44EECCE" + "finding": "430BC7CABA5501F51AD64697C80050CCF7B0B3CF8A95FB7573F72DE3CC37BB00" }, { "id": "cert", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "nosgestesclimat.fr" + "finding": "*.nosgestesclimat.fr" }, { "id": "cert_commonName_wo_SNI", @@ -232956,14 +230612,14 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "nosgestesclimat.fr" + "finding": "*.nosgestesclimat.fr nosgestesclimat.fr" }, { "id": "cert_trust", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "Ok via SAN and CN (SNI mandatory)" + "finding": "Ok via SAN (SNI mandatory)" }, { "id": "cert_chain_of_trust", @@ -232984,21 +230640,21 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "73 >= 30 days" + "finding": "85 >= 30 days" }, { "id": "cert_notBefore", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "2023-12-21 22:44" + "finding": "2024-01-09 08:19" }, { "id": "cert_notAfter", "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "OK", - "finding": "2024-03-20 22:44" + "finding": "2024-04-08 08:19" }, { "id": "cert_extlifeSpan", @@ -233194,7 +230850,7 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "1704614643" + "finding": "1705218529" }, { "id": "HTTP_headerAge", @@ -233388,7 +231044,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=C05BAEF524F0A7DED476DA9D0E5CC76525D1EF63BF822989A91F6A5AE44EECCE" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=430BC7CABA5501F51AD64697C80050CCF7B0B3CF8A95FB7573F72DE3CC37BB00" }, { "id": "LOGJAM", @@ -233764,7 +231420,7 @@ "ip": "nosgestesclimat.fr/76.76.21.21", "port": "443", "severity": "INFO", - "finding": "43" + "finding": "47" } ], "thirdparties": { @@ -233806,16 +231462,12 @@ "url": "https://sentry.incubateur.net/api/118/envelope/?sentry_key=75dcf9dfe74c4439977a517be2805122&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.80.0" }, { - "type": "unknown", - "url": "https://vitals.vercel-insights.com/v1/vitals" - }, - { - "type": "unknown", - "url": "https://vitals.vercel-insights.com/v1/vitals" - }, - { - "type": "unknown", - "url": "https://sentry.incubateur.net/api/118/envelope/?sentry_key=75dcf9dfe74c4439977a517be2805122&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.80.0" + "type": "polyfill.io", + "url": "https://polyfill.io/v3/polyfill.min.js?features=IntersectionObserver", + "details": { + "id": "polyfill.io", + "message": "Bundle your polyfills and host locally" + } } ], "cookies": [], @@ -233824,7 +231476,7 @@ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "br", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 08:03:26 GMT", + "date": "Sun, 14 Jan 2024 07:48:11 GMT", "server": "Vercel", "strict-transport-security": "max-age=63072000", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url", @@ -233833,7 +231485,7 @@ "x-powered-by": "Next.js", "x-vercel-cache": "MISS", "x-vercel-execution-region": "cdg1", - "x-vercel-id": "sfo1::cdg1::2d5wn-1704614605602-a7a96bbac03c" + "x-vercel-id": "sfo1::cdg1::vzljc-1705218490753-169d4886efb5" }, "endpoints": [ { @@ -233866,7 +231518,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -233890,7 +231542,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -233920,7 +231572,7 @@ }, { "hostname": "polyfill.io", - "ip": "151.101.1.26", + "ip": "151.101.193.26", "geoip": { "continent": { "code": "NA", @@ -233940,7 +231592,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -233960,7 +231612,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -233974,18 +231626,19 @@ }, { "hostname": "twemoji.maxcdn.com", - "ip": "169.150.221.147", + "ip": "143.244.50.83", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 5368361, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -234006,7 +231659,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -234018,22 +231671,22 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, + "latitude": 34.0544, + "longitude": -118.2441, + "metro_code": 803, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95141" + "code": "90060" }, "registered_country": { "geoname_id": 2635167, "iso_code": "GB", "names": { - "de": "Vereinigtes Königreich", + "de": "UK", "en": "United Kingdom", "es": "Reino Unido", - "fr": "Royaume Uni", + "fr": "Royaume-Uni", "ja": "英国", "pt-BR": "Reino Unido", "ru": "Британия", @@ -234060,18 +231713,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "151.101.41.229", + "ip": "146.75.93.229", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 5368361, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -234092,7 +231746,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -234104,19 +231758,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, + "latitude": 34.0544, + "longitude": -118.244, + "metro_code": 803, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95141" + "code": "90012" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -234200,7 +231854,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -234233,87 +231887,6 @@ } ] } - }, - { - "hostname": "vitals.vercel-insights.com", - "ip": "35.83.147.237", - "geoip": { - "city": { - "geoname_id": 5714964, - "names": { - "en": "Boardman", - "ru": "Бордман" - } - }, - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 45.8234, - "longitude": -119.7257, - "metro_code": 810, - "time_zone": "America/Los_Angeles" - }, - "postal": { - "code": "97818" - }, - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "subdivisions": [ - { - "geoname_id": 5744337, - "iso_code": "OR", - "names": { - "de": "Oregon", - "en": "Oregon", - "es": "Oregón", - "fr": "Oregon", - "ja": "オレゴン州", - "pt-BR": "Oregão", - "ru": "Орегон", - "zh-CN": "俄勒冈州" - } - } - ] - } } ] }, @@ -234574,7 +232147,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 08:02:45", + "@generated": "Sun, 14 Jan 2024 07:47:28", "site": [ { "@name": "https://nosgestesclimat.fr", @@ -234747,1219 +232320,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "nosgestesclimat.fr.", - "matched-at": "nosgestesclimat.fr", - "extracted-results": [ - "dns1.p07.nsone.net.", - "dns2.p07.nsone.net.", - "dns3.p07.nsone.net.", - "dns4.p07.nsone.net." - ], - "timestamp": "2024-01-07T08:06:33.692514899Z", - "matcher-status": true - }, - { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", - "info": { - "name": "MX Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "nosgestesclimat.fr.", - "matched-at": "nosgestesclimat.fr", - "extracted-results": [ - "50 fb.mail.gandi.net.", - "10 spool.mail.gandi.net." - ], - "timestamp": "2024-01-07T08:06:33.696844926Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "nosgestesclimat.fr.", - "matched-at": "nosgestesclimat.fr", - "extracted-results": [ - "\"google-site-verification=x7X9w2HaVRM_cpTV1NqvnDgyAphWQTWY2Io1jigjaVs\"", - "\"sendinblue-site-verification=2610165\"", - "\"brevo-code:4dc3300c431ca82c00785768559ea871\"", - "\"ahrefs-site-verification_0a8101067703d11ef7f7d42d54a788416189cad016d3b73d2b143e42ea1af6ce\"", - "\"google-site-verification=CyO_VhmdbTQjHCYcaFR_VxWHLHZrOtK3iteKhr7VBYE\"", - "\"v=spf1 include:_mailcust.gandi.net ?all\"" - ], - "timestamp": "2024-01-07T08:06:33.835710275Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "nosgestesclimat.fr.", - "matched-at": "nosgestesclimat.fr", - "timestamp": "2024-01-07T08:06:34.682897787Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.559897849Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.559949756Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.559966066Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.55997856Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.560003767Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.560096496Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.560120782Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.560135389Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.560148814Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://nosgestesclimat.fr", - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:07:54.560166688Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrationDate", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "2020-09-15T12:31:12Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.363545349Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantName", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "AGCE L ENVIRON MAITRISE L ENERGIE" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.363594932Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantOrg", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "AGCE L ENVIRON MAITRISE L ENERGIE" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.363606454Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantEmail", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "de563d8a8144b9e4cae99df7c291b33c-36293991@contact.gandi.net" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.363615511Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantAddress", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "20 avenue du Gresille BP 90406", - "Angers", - "49004", - "FR" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.36363106Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "secureDNS", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "false" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.363649043Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "status", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "active" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.363787358Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "lastChangeDate", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "2023-06-21T10:14:49.414384Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.36381526Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "expirationDate", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "2025-09-15T12:31:12Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.3638367Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantPhone", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "+33.241204120" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.363865925Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantCountry", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "FR" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.363886714Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "nameServers", - "type": "http", - "host": "https://nosgestesclimat.fr", - "matched-at": "https://rdap.nic.fr/domain/nosgestesclimat.fr", - "extracted-results": [ - "dns2.p07.nsone.net", - "dns4.p07.nsone.net", - "dns3.p07.nsone.net", - "dns1.p07.nsone.net" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T08:08:09.363907663Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/nosgestesclimat.fr'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "nosgestesclimat.fr", - "matched-at": "nosgestesclimat.fr:443", - "extracted-results": [ - "Let's Encrypt" - ], - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:10:27.917645692Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "nosgestesclimat.fr", - "matched-at": "nosgestesclimat.fr:443", - "extracted-results": [ - "nosgestesclimat.fr" - ], - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:10:27.917745028Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "nosgestesclimat.fr", - "matched-at": "nosgestesclimat.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:10:27.919608108Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "nosgestesclimat.fr", - "matched-at": "nosgestesclimat.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "76.76.21.21", - "timestamp": "2024-01-07T08:10:27.940725914Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://nosgestesclimat.fr/", "finalUrl": "https://nosgestesclimat.fr/", - "fetchTime": "2024-01-07T08:02:59.352Z", + "fetchTime": "2024-01-14T07:47:42.585Z", "runWarnings": [], "categories": { "performance": { @@ -236022,53 +232388,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4693, + "numericValue": 6715, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2096, - "firstMeaningfulPaint": 2096, - "largestContentfulPaint": 2949, - "interactive": 4693, - "speedIndex": 3172, - "totalBlockingTime": 121, - "maxPotentialFID": 163, - "cumulativeLayoutShift": 0.005050940619574652, - "cumulativeLayoutShiftMainFrame": 0.005050940619574652, - "totalCumulativeLayoutShift": 0.005050940619574652, + "firstContentfulPaint": 2066, + "firstMeaningfulPaint": 2066, + "largestContentfulPaint": 3217, + "interactive": 6715, + "speedIndex": 2066, + "totalBlockingTime": 234, + "maxPotentialFID": 220, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 357796749, + "observedTimeOriginTs": 375548641, "observedNavigationStart": 0, - "observedNavigationStartTs": 357796749, - "observedFirstPaint": 1451, - "observedFirstPaintTs": 359248155, - "observedFirstContentfulPaint": 1451, - "observedFirstContentfulPaintTs": 359248155, - "observedFirstContentfulPaintAllFrames": 1451, - "observedFirstContentfulPaintAllFramesTs": 359248155, - "observedFirstMeaningfulPaint": 1451, - "observedFirstMeaningfulPaintTs": 359248155, - "observedLargestContentfulPaint": 1451, - "observedLargestContentfulPaintTs": 359248155, - "observedLargestContentfulPaintAllFrames": 1451, - "observedLargestContentfulPaintAllFramesTs": 359248155, - "observedTraceEnd": 5939, - "observedTraceEndTs": 363735976, - "observedLoad": 1930, - "observedLoadTs": 359726811, - "observedDomContentLoaded": 1420, - "observedDomContentLoadedTs": 359216764, - "observedCumulativeLayoutShift": 0.005050940619574652, - "observedCumulativeLayoutShiftMainFrame": 0.005050940619574652, - "observedTotalCumulativeLayoutShift": 0.005050940619574652, - "observedFirstVisualChange": 1455, - "observedFirstVisualChangeTs": 359251749, - "observedLastVisualChange": 1705, - "observedLastVisualChangeTs": 359501749, - "observedSpeedIndex": 1471, - "observedSpeedIndexTs": 359267962 + "observedNavigationStartTs": 375548641, + "observedFirstPaint": 681, + "observedFirstPaintTs": 376229489, + "observedFirstContentfulPaint": 681, + "observedFirstContentfulPaintTs": 376229489, + "observedFirstContentfulPaintAllFrames": 681, + "observedFirstContentfulPaintAllFramesTs": 376229489, + "observedFirstMeaningfulPaint": 681, + "observedFirstMeaningfulPaintTs": 376229489, + "observedLargestContentfulPaint": 681, + "observedLargestContentfulPaintTs": 376229489, + "observedLargestContentfulPaintAllFrames": 681, + "observedLargestContentfulPaintAllFramesTs": 376229489, + "observedTraceEnd": 5172, + "observedTraceEndTs": 380721115, + "observedLoad": 969, + "observedLoadTs": 376517206, + "observedDomContentLoaded": 688, + "observedDomContentLoadedTs": 376236195, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 686, + "observedFirstVisualChangeTs": 376234641, + "observedLastVisualChange": 736, + "observedLastVisualChangeTs": 376284641, + "observedSpeedIndex": 689, + "observedSpeedIndexTs": 376237950 }, { "lcpInvalidated": false @@ -236086,23 +232452,23 @@ "type": "debugdata", "items": [ { - "numRequests": 76, + "numRequests": 72, "numScripts": 40, "numStylesheets": 1, "numFonts": 6, - "numTasks": 1224, - "numTasksOver10ms": 7, + "numTasks": 1164, + "numTasksOver10ms": 6, "numTasksOver25ms": 2, - "numTasksOver50ms": 0, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.0219999999999998, - "throughput": 27333394.71909486, - "maxRtt": 146.945, - "maxServerLatency": 148.74400000000003, - "totalByteWeight": 928144, - "totalTaskTime": 460.1649999999992, - "mainDocumentTransferSize": 75213 + "rtt": 8.129000000000001, + "throughput": 23280810.1635091, + "maxRtt": 151.046, + "maxServerLatency": 57.32400000000001, + "totalByteWeight": 926365, + "totalTaskTime": 453.38000000000017, + "mainDocumentTransferSize": 74855 } ] } @@ -236186,12 +232552,12 @@ "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, - "testsslExpireDate": "2024-03-20T22:44:00.000Z", + "testsslExpireDate": "2024-04-08T08:19:00.000Z", "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "C", - "trackersCount": 9, + "trackersCount": 7, "lighthouse_performance": 0.5, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.89, @@ -236225,7 +232591,7 @@ "http": { "url": "https://longuevieauxobjets.ademe.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:48:29 GMT", + "end_time": "Sun, 14 Jan 2024 01:43:56 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -236234,18 +232600,18 @@ "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 01:48:28 GMT", + "Date": "Sun, 14 Jan 2024 01:43:55 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "sc-sticky-session=JwCfaly9eEQGIrrutwwNG9r9cm9KWG9SAAxxWtbyzUkRHGvOtmVjmQXQkta4lYXCiJMk6hCnOhu2rFy5MDixVQ==; Expires=Mon, 08-Jan-24 01:48:28 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "Set-Cookie": "sc-sticky-session=fRVXQMpcaUL3EMAf1iALdsTODaJfKl3PfdGQceIDhCQNd0vJFANnt4QoY7YuZIufY6lqurp+wR7S4+ShsK3TPQ==; Expires=Mon, 15-Jan-24 01:43:55 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "ALLOWALL", - "X-Request-ID": "ede201c7-cbd3-4908-a6fa-5d976d1faa9b" + "X-Request-ID": "dbba6739-8601-4e17-8d6c-f404efe16834" }, - "scan_id": 46226503, + "scan_id": 46435177, "score": 45, - "start_time": "Sun, 07 Jan 2024 01:45:03 GMT", + "start_time": "Sun, 14 Jan 2024 01:43:52 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -236285,7 +232651,7 @@ "data": { "sc-sticky-session": { "domain": "longuevieauxobjets.ademe.fr", - "expires": 1704678509, + "expires": 1705283036, "httponly": true, "max-age": null, "path": "/", @@ -236446,8 +232812,8 @@ "syd" ], "recipients": [], - "last_check_at": "2024-01-07T08:17:59Z", - "next_check_at": "2024-01-07T08:22:58Z", + "last_check_at": "2024-01-14T08:18:19Z", + "next_check_at": "2024-01-14T08:23:18Z", "created_at": "2023-11-27T10:07:47Z", "mute_until": null, "favicon_url": "https://longuevieauxobjets.ademe.fr/static/favicon-16x16.8ef53b602d67.png", @@ -236455,7 +232821,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T08:08:01Z", + "tested_at": "2024-01-14T07:38:36Z", "expires_at": "2024-03-24T12:31:09Z", "valid": true, "error": null @@ -236464,11 +232830,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 18, - "connection": 26, - "handshake": 30, - "response": 78, - "total": 153 + "namelookup": 15, + "connection": 24, + "handshake": 29, + "response": 87, + "total": 155 } }, "uptimeGrade": "A", @@ -236501,77 +232867,77 @@ "testssl": [ { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236579,7 +232945,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236587,7 +232953,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236595,7 +232961,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -236603,7 +232969,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -236611,7 +232977,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -236619,525 +232985,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-25 12:31" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-24 12:31" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704614977" + "finding": "1705219369" }, { "id": "HSTS_time", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ALLOWALL" }, { "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -237145,7 +233511,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -237154,7 +233520,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -237163,7 +233529,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -237172,7 +233538,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -237181,7 +233547,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -237189,7 +233555,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -237198,7 +233564,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -237207,7 +233573,7 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -237216,7 +233582,7 @@ }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -237225,14 +233591,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -237241,7 +233607,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -237250,7 +233616,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -237259,7 +233625,7 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -237268,7 +233634,7 @@ }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -237277,7 +233643,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -237286,7 +233652,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -237295,7 +233661,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -237304,7 +233670,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -237313,7 +233679,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -237322,392 +233688,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", + "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -237715,7 +234081,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -237723,7 +234089,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -237731,7 +234097,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -237739,7 +234105,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -237747,7 +234113,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -237755,525 +234121,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-12-25 12:31" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-03-24 12:31" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704615034" + "finding": "1705219469" }, { "id": "HSTS_time", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ALLOWALL" }, { "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -238281,7 +234647,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -238290,7 +234656,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -238299,7 +234665,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -238308,7 +234674,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -238317,7 +234683,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -238325,7 +234691,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -238334,7 +234700,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -238343,7 +234709,7 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -238352,7 +234718,7 @@ }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -238361,14 +234727,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -238377,7 +234743,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -238386,7 +234752,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -238395,7 +234761,7 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -238404,7 +234770,7 @@ }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -238413,7 +234779,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -238422,7 +234788,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -238431,7 +234797,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -238440,7 +234806,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -238449,7 +234815,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -238458,392 +234824,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", + "ip": "longuevieauxobjets.ademe.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -238851,7 +235217,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -238859,7 +235225,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -238867,7 +235233,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -238875,7 +235241,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -238883,7 +235249,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -238891,525 +235257,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-12-25 12:31" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-03-24 12:31" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704615089" + "finding": "1705219569" }, { "id": "HSTS_time", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ALLOWALL" }, { "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -239417,7 +235783,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -239426,7 +235792,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -239435,7 +235801,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -239444,7 +235810,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -239453,7 +235819,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -239461,7 +235827,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -239470,7 +235836,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -239479,7 +235845,7 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -239488,7 +235854,7 @@ }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -239497,14 +235863,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -239513,7 +235879,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -239522,7 +235888,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -239531,7 +235897,7 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -239540,7 +235906,7 @@ }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -239549,7 +235915,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -239558,7 +235924,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -239567,7 +235933,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -239576,7 +235942,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -239585,7 +235951,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -239594,392 +235960,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/5.104.101.30", + "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -239987,7 +236353,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -239995,7 +236361,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -240003,7 +236369,7 @@ }, { "id": "cipherlist_LOW", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -240011,7 +236377,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -240019,7 +236385,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -240027,525 +236393,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-12-25 12:31" }, { "id": "cert_notAfter", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-03-24 12:31" }, { "id": "cert_extlifeSpan", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704615144" + "finding": "1705219672" }, { "id": "HSTS_time", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ALLOWALL" }, { "id": "X-Content-Type-Options", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -240553,7 +236919,7 @@ }, { "id": "heartbleed", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -240562,7 +236928,7 @@ }, { "id": "CCS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -240571,7 +236937,7 @@ }, { "id": "ticketbleed", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -240580,7 +236946,7 @@ }, { "id": "ROBOT", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -240589,7 +236955,7 @@ }, { "id": "secure_renego", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -240597,7 +236963,7 @@ }, { "id": "secure_client_renego", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -240606,7 +236972,7 @@ }, { "id": "CRIME_TLS", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -240615,7 +236981,7 @@ }, { "id": "BREACH", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -240624,7 +236990,7 @@ }, { "id": "POODLE_SSL", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -240633,14 +236999,14 @@ }, { "id": "fallback_SCSV", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -240649,7 +237015,7 @@ }, { "id": "FREAK", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -240658,7 +237024,7 @@ }, { "id": "DROWN", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -240667,7 +237033,7 @@ }, { "id": "DROWN_hint", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -240676,7 +237042,7 @@ }, { "id": "LOGJAM", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -240685,7 +237051,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -240694,7 +237060,7 @@ }, { "id": "BEAST", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -240703,7 +237069,7 @@ }, { "id": "LUCKY13", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -240712,7 +237078,7 @@ }, { "id": "winshock", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -240721,7 +237087,7 @@ }, { "id": "RC4", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -240730,325 +237096,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "longuevieauxobjets.ademe.fr/148.253.75.120", + "ip": "longuevieauxobjets.ademe.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "224" + "finding": "409" } ], "thirdparties": { @@ -241059,11 +237425,11 @@ }, { "type": "unknown", - "url": "https://eu.posthog.com/e/?ip=1&_=1704614937147&ver=1.96.0" + "url": "https://eu.posthog.com/e/?ip=1&_=1705219289597&ver=1.98.2" }, { "type": "unknown", - "url": "https://eu.posthog.com/decide/?v=3&ip=1&_=1704614937153&ver=1.96.0" + "url": "https://eu.posthog.com/decide/?v=3&ip=1&_=1705219289604&ver=1.98.2" } ], "cookies": [ @@ -241072,7 +237438,7 @@ "value": "1", "domain": ".longuevieauxobjets.ademe.fr", "path": "/", - "expires": 1704616737, + "expires": 1705221090, "size": 16, "httpOnly": false, "secure": true, @@ -241084,10 +237450,10 @@ }, { "name": "_pk_id.50.a290", - "value": "7f95574175782fe8.1704614937.", + "value": "c04f1eb93e94201a.1705219290.", "domain": ".longuevieauxobjets.ademe.fr", "path": "/", - "expires": 1738570137, + "expires": 1739174490, "size": 42, "httpOnly": false, "secure": true, @@ -241099,10 +237465,10 @@ }, { "name": "ph_phc_SGbYOrenShCMKJOQYyl62se9ZqCHntjTlzgKNhrKnzm_posthog", - "value": "%7B%22distinct_id%22%3A%22018ce2f7-c236-708a-a4b7-b95009db53bd%22%2C%22%24sesid%22%3A%5B1704614937145%2C%22018ce2f7-c239-7f6e-94ea-7d617bdffd93%22%2C1704614937145%5D%7D", + "value": "%7B%22distinct_id%22%3A%22018d06fd-71f8-7717-807b-1bb3d172433c%22%2C%22%24sesid%22%3A%5B1705219289595%2C%22018d06fd-71fb-7aef-9010-e150f5307775%22%2C1705219289595%5D%7D", "domain": ".ademe.fr", "path": "/", - "expires": 1736150937, + "expires": 1736755289, "size": 226, "httpOnly": false, "secure": true, @@ -241114,10 +237480,10 @@ }, { "name": "sc-sticky-session", - "value": "JwCfaly9eEQGIrrutwwNG2bFdJyrGsqNNMufgKdey3R6quQMVACxTJI3Jbg0gaivdzVn4z+/p/8Gw7aRWqlUVQ==", + "value": "fRVXQMpcaUL3EMAf1iALduz8wx7IKKbei1ag21bWDy5zuaB4/n7cAkudiwcuZSBX4+2wMjujJSy3DsSh6IUG5g==", "domain": "longuevieauxobjets.ademe.fr", "path": "/", - "expires": 1704701336.898212, + "expires": 1705305689.724884, "size": 105, "httpOnly": true, "secure": true, @@ -241132,19 +237498,28 @@ "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 08:08:56 GMT", + "date": "Sun, 14 Jan 2024 08:01:28 GMT", "referrer-policy": "same-origin", - "set-cookie": "sc-sticky-session=JwCfaly9eEQGIrrutwwNG2bFdJyrGsqNNMufgKdey3R6quQMVACxTJI3Jbg0gaivdzVn4z+/p/8Gw7aRWqlUVQ==; Expires=Mon, 08-Jan-24 08:08:56 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "set-cookie": "sc-sticky-session=fRVXQMpcaUL3EMAf1iALduz8wx7IKKbei1ag21bWDy5zuaB4/n7cAkudiwcuZSBX4+2wMjujJSy3DsSh6IUG5g==; Expires=Mon, 15-Jan-24 08:01:28 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "ALLOWALL", - "x-request-id": "9dac5f6a-e799-44cf-af60-a49e96c3ecfa" + "x-request-id": "3f32d512-0628-4535-8e3f-0d2621e90040" }, "endpoints": [ { "hostname": "longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", + "ip": "5.104.101.30", "geoip": { + "city": { + "geoname_id": 3034797, + "names": { + "de": "Bartenheim", + "en": "Bartenheim", + "fr": "Bartenheim", + "pt-BR": "Bartenheim" + } + }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -241176,10 +237551,13 @@ }, "location": { "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, + "latitude": 47.6376, + "longitude": 7.4798, "time_zone": "Europe/Paris" }, + "postal": { + "code": "68870" + }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -241194,12 +237572,33 @@ "ru": "Франция", "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 11071622, + "iso_code": "GES", + "names": { + "en": "Grand Est", + "fr": "Grand Est" + } + }, + { + "geoname_id": 3013663, + "iso_code": "68", + "names": { + "de": "Haut-Rhin", + "en": "Haut-Rhin", + "es": "Alto Rin", + "fr": "Haut-Rhin", + "pt-BR": "Alto Reno" + } + } + ] } }, { "hostname": "eu.posthog.com", - "ip": "18.67.65.27", + "ip": "108.138.246.68", "geoip": { "continent": { "code": "NA", @@ -241219,7 +237618,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -241239,7 +237638,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -241427,7 +237826,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 08:08:15", + "@generated": "Sun, 14 Jan 2024 08:00:48", "site": [ { "@name": "https://longuevieauxobjets.ademe.fr", @@ -241591,7 +237990,7 @@ "extracted-results": [ "quefairedemesobjets.osc-fr1.scalingo.io." ], - "timestamp": "2024-01-07T08:13:47.543702859Z", + "timestamp": "2024-01-14T08:09:43.458264632Z", "matcher-status": true }, { @@ -241626,7 +238025,7 @@ "type": "dns", "host": "longuevieauxobjets.ademe.fr.", "matched-at": "longuevieauxobjets.ademe.fr", - "timestamp": "2024-01-07T08:13:47.808864535Z", + "timestamp": "2024-01-14T08:09:43.505139033Z", "matcher-status": true }, { @@ -241654,8 +238053,8 @@ "extracted-results": [ "GET, POST, PUT, HEAD, OPTIONS" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:13:54.848530547Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:09:55.209511568Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -241693,8 +238092,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:13:59.833207023Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:10:04.121167217Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -241729,8 +238128,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr/admin/login/?next=/admin/", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:14:26.13875277Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:10:48.505772071Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr/admin/login/?next=/admin/'", "matcher-status": true }, @@ -241766,8 +238165,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:14:33.990589237Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:11:01.491149151Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -241803,8 +238202,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:14:33.990656362Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:11:01.491198533Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -241840,8 +238239,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:14:33.990675919Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:11:01.491210956Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -241877,8 +238276,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:14:33.990690847Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:11:01.491221446Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -241914,8 +238313,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:14:33.990710373Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:11:01.491237956Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -241951,8 +238350,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:14:33.990727906Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:11:01.491258014Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr'", "matcher-status": true }, @@ -241991,8 +238390,8 @@ "type": "http", "host": "https://longuevieauxobjets.ademe.fr", "matched-at": "https://longuevieauxobjets.ademe.fr/", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:14:57.451286991Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:11:43.155332704Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: longuevieauxobjets.ademe.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://longuevieauxobjets.ademe.fr/'", "matcher-status": true }, @@ -242022,8 +238421,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:20:37.978928248Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:17:38.705452353Z", "matcher-status": true }, { @@ -242052,8 +238451,8 @@ "extracted-results": [ "longuevieauxobjets.ademe.fr" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:20:37.979064022Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:17:38.705599628Z", "matcher-status": true }, { @@ -242083,8 +238482,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:20:39.273658529Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:17:40.774399169Z", "matcher-status": true }, { @@ -242114,8 +238513,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T08:20:39.465173511Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T08:17:41.085227081Z", "matcher-status": true } ], @@ -242123,7 +238522,7 @@ { "requestedUrl": "https://longuevieauxobjets.ademe.fr/", "finalUrl": "https://longuevieauxobjets.ademe.fr/", - "fetchTime": "2024-01-07T08:08:29.409Z", + "fetchTime": "2024-01-14T08:01:02.731Z", "runWarnings": [], "categories": { "performance": { @@ -242145,7 +238544,7 @@ "snapshot" ], "id": "accessibility", - "score": 1 + "score": 0.93 }, "best-practices": { "title": "Best Practices", @@ -242186,53 +238585,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2431, + "numericValue": 2736, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2431, - "firstMeaningfulPaint": 2431, - "largestContentfulPaint": 4724, - "interactive": 2431, - "speedIndex": 2431, + "firstContentfulPaint": 2736, + "firstMeaningfulPaint": 2736, + "largestContentfulPaint": 5130, + "interactive": 2736, + "speedIndex": 2736, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.0819385067621867, - "cumulativeLayoutShiftMainFrame": 0.0819385067621867, - "totalCumulativeLayoutShift": 0.0819385067621867, + "cumulativeLayoutShift": 0.10505178843604195, + "cumulativeLayoutShiftMainFrame": 0.10505178843604195, + "totalCumulativeLayoutShift": 0.10505178843604195, "observedTimeOrigin": 0, - "observedTimeOriginTs": 294206492, + "observedTimeOriginTs": 287047838, "observedNavigationStart": 0, - "observedNavigationStartTs": 294206492, - "observedFirstPaint": 423, - "observedFirstPaintTs": 294629726, - "observedFirstContentfulPaint": 423, - "observedFirstContentfulPaintTs": 294629726, - "observedFirstContentfulPaintAllFrames": 423, - "observedFirstContentfulPaintAllFramesTs": 294629726, - "observedFirstMeaningfulPaint": 423, - "observedFirstMeaningfulPaintTs": 294629726, - "observedLargestContentfulPaint": 536, - "observedLargestContentfulPaintTs": 294742634, - "observedLargestContentfulPaintAllFrames": 536, - "observedLargestContentfulPaintAllFramesTs": 294742634, - "observedTraceEnd": 3110, - "observedTraceEndTs": 297316378, - "observedLoad": 801, - "observedLoadTs": 295007913, + "observedNavigationStartTs": 287047838, + "observedFirstPaint": 669, + "observedFirstPaintTs": 287716622, + "observedFirstContentfulPaint": 669, + "observedFirstContentfulPaintTs": 287716622, + "observedFirstContentfulPaintAllFrames": 669, + "observedFirstContentfulPaintAllFramesTs": 287716622, + "observedFirstMeaningfulPaint": 669, + "observedFirstMeaningfulPaintTs": 287716622, + "observedLargestContentfulPaint": 717, + "observedLargestContentfulPaintTs": 287764676, + "observedLargestContentfulPaintAllFrames": 717, + "observedLargestContentfulPaintAllFramesTs": 287764676, + "observedTraceEnd": 3759, + "observedTraceEndTs": 290806378, + "observedLoad": 1449, + "observedLoadTs": 288497041, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 294207049, - "observedCumulativeLayoutShift": 0.0819385067621867, - "observedCumulativeLayoutShiftMainFrame": 0.0819385067621867, - "observedTotalCumulativeLayoutShift": 0.0819385067621867, - "observedFirstVisualChange": 431, - "observedFirstVisualChangeTs": 294637492, - "observedLastVisualChange": 1048, - "observedLastVisualChangeTs": 295254492, - "observedSpeedIndex": 494, - "observedSpeedIndexTs": 294700545 + "observedDomContentLoadedTs": 287048438, + "observedCumulativeLayoutShift": 0.10505178843604195, + "observedCumulativeLayoutShiftMainFrame": 0.10505178843604195, + "observedTotalCumulativeLayoutShift": 0.10505178843604195, + "observedFirstVisualChange": 673, + "observedFirstVisualChangeTs": 287720838, + "observedLastVisualChange": 1257, + "observedLastVisualChangeTs": 288304838, + "observedSpeedIndex": 732, + "observedSpeedIndexTs": 287780322 }, { "lcpInvalidated": false @@ -242254,19 +238653,19 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 4, - "numTasks": 14, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.284999999999998, - "throughput": 11073078.396637574, - "maxRtt": 89.625, - "maxServerLatency": 100.042, - "totalByteWeight": 729774, - "totalTaskTime": 2.285, - "mainDocumentTransferSize": 17973 + "rtt": 1.367, + "throughput": 6644970.205483796, + "maxRtt": 148.767, + "maxServerLatency": 161.56099999999998, + "totalByteWeight": 729994, + "totalTaskTime": 5.049, + "mainDocumentTransferSize": 17998 } ] } @@ -242332,7 +238731,7 @@ "trackersCount": 3, "lighthouse_performance": 1, "lighthouse_performanceGrade": "A", - "lighthouse_accessibility": 1, + "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, "lighthouse_best-practicesGrade": "A", @@ -242356,37 +238755,37 @@ "http": { "url": "https://openacademie.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 08:13:05 GMT", + "end_time": "Sun, 14 Jan 2024 08:01:24 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Accept-Ranges": "bytes", "Access-Control-Allow-Origin": "*", - "Age": "0", + "Age": "1", "Cache-Control": "max-age=600", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Length": "3401", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 08:13:04 GMT", + "Date": "Sun, 14 Jan 2024 08:01:23 GMT", "ETag": "W/\"65783098-3583\"", "Last-Modified": "Tue, 12 Dec 2023 10:06:16 GMT", "Server": "GitHub.com", "Vary": "Accept-Encoding", "Via": "1.1 varnish", - "X-Cache": "MISS", - "X-Cache-Hits": "0", - "X-Fastly-Request-ID": "571799ca007d221a6b5ac0099d4c59b69b529844", - "X-GitHub-Request-Id": "EBA0:4229:299C00:3499E2:659A5D0B", - "X-Served-By": "cache-pao-kpao1770031-PAO", - "X-Timer": "S1704615184.353077,VS0,VE91", - "expires": "Sun, 07 Jan 2024 08:23:04 GMT", + "X-Cache": "HIT", + "X-Cache-Hits": "1", + "X-Fastly-Request-ID": "8b26d1f3e36fb219675664e01c1cd6506356b663", + "X-GitHub-Request-Id": "BA3E:7C1D:1F5F896:2264156:65A394D0", + "X-Served-By": "cache-sjc1000100-SJC", + "X-Timer": "S1705219284.688432,VS0,VE1", + "expires": "Sun, 14 Jan 2024 08:11:22 GMT", "x-proxy-cache": "MISS" }, - "scan_id": 46231575, + "scan_id": 46458995, "score": 0, - "start_time": "Sun, 07 Jan 2024 08:13:01 GMT", + "start_time": "Sun, 14 Jan 2024 08:01:20 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -242580,77 +238979,77 @@ "testssl": [ { "id": "service", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -242658,7 +239057,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -242666,7 +239065,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -242674,7 +239073,7 @@ }, { "id": "cipherlist_LOW", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -242682,7 +239081,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -242690,7 +239089,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -242698,490 +239097,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2024-01-02 15:31" }, { "id": "cert_notAfter", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-04-01 15:31" }, { "id": "cert_extlifeSpan", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "insecure_redirect", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "HIGH", "finding": "Redirect to insecure URL: 'http://openacademie.fr/'" }, { "id": "HTTP_status_code", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704615266" + "finding": "1705219392" }, { "id": "HSTS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -243189,7 +239588,7 @@ }, { "id": "heartbleed", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -243198,7 +239597,7 @@ }, { "id": "CCS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -243207,7 +239606,7 @@ }, { "id": "ticketbleed", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -243216,7 +239615,7 @@ }, { "id": "ROBOT", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -243225,7 +239624,7 @@ }, { "id": "secure_renego", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -243233,7 +239632,7 @@ }, { "id": "secure_client_renego", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -243242,7 +239641,7 @@ }, { "id": "CRIME_TLS", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -243251,7 +239650,7 @@ }, { "id": "BREACH", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -243260,7 +239659,7 @@ }, { "id": "POODLE_SSL", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -243269,14 +239668,14 @@ }, { "id": "fallback_SCSV", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -243285,7 +239684,7 @@ }, { "id": "FREAK", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -243294,7 +239693,7 @@ }, { "id": "DROWN", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -243303,7 +239702,7 @@ }, { "id": "DROWN_hint", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -243312,7 +239711,7 @@ }, { "id": "LOGJAM", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -243321,7 +239720,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -243330,7 +239729,7 @@ }, { "id": "BEAST", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -243339,7 +239738,7 @@ }, { "id": "LUCKY13", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -243348,7 +239747,7 @@ }, { "id": "winshock", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -243357,7 +239756,7 @@ }, { "id": "RC4", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -243366,399 +239765,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "openacademie.beta.gouv.fr/109.232.233.130", + "ip": "openacademie.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -243766,7 +240165,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -243774,7 +240173,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -243782,7 +240181,7 @@ }, { "id": "cipherlist_LOW", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -243790,7 +240189,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -243798,7 +240197,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -243806,490 +240205,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2024-01-02 15:31" }, { "id": "cert_notAfter", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-04-01 15:31" }, { "id": "cert_extlifeSpan", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "insecure_redirect", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "HIGH", "finding": "Redirect to insecure URL: 'http://openacademie.fr/'" }, { "id": "HTTP_status_code", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704615321" + "finding": "1705219486" }, { "id": "HSTS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -244297,7 +240696,7 @@ }, { "id": "heartbleed", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -244306,7 +240705,7 @@ }, { "id": "CCS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -244315,7 +240714,7 @@ }, { "id": "ticketbleed", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -244324,7 +240723,7 @@ }, { "id": "ROBOT", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -244333,7 +240732,7 @@ }, { "id": "secure_renego", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -244341,7 +240740,7 @@ }, { "id": "secure_client_renego", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -244350,7 +240749,7 @@ }, { "id": "CRIME_TLS", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -244359,7 +240758,7 @@ }, { "id": "BREACH", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -244368,7 +240767,7 @@ }, { "id": "POODLE_SSL", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -244377,14 +240776,14 @@ }, { "id": "fallback_SCSV", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -244393,7 +240792,7 @@ }, { "id": "FREAK", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -244402,7 +240801,7 @@ }, { "id": "DROWN", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -244411,7 +240810,7 @@ }, { "id": "DROWN_hint", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -244420,7 +240819,7 @@ }, { "id": "LOGJAM", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -244429,7 +240828,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -244438,7 +240837,7 @@ }, { "id": "BEAST", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -244447,7 +240846,7 @@ }, { "id": "LUCKY13", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -244456,7 +240855,7 @@ }, { "id": "winshock", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -244465,7 +240864,7 @@ }, { "id": "RC4", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -244474,399 +240873,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "openacademie.beta.gouv.fr/148.253.75.120", + "ip": "openacademie.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244874,7 +241273,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244882,7 +241281,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244890,7 +241289,7 @@ }, { "id": "cipherlist_LOW", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -244898,7 +241297,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -244906,7 +241305,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -244914,490 +241313,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2024-01-02 15:31" }, { "id": "cert_notAfter", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-04-01 15:31" }, { "id": "cert_extlifeSpan", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "insecure_redirect", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "HIGH", "finding": "Redirect to insecure URL: 'http://openacademie.fr/'" }, { "id": "HTTP_status_code", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704615376" + "finding": "1705219580" }, { "id": "HSTS", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -245405,7 +241804,7 @@ }, { "id": "heartbleed", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -245414,7 +241813,7 @@ }, { "id": "CCS", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -245423,7 +241822,7 @@ }, { "id": "ticketbleed", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -245432,7 +241831,7 @@ }, { "id": "ROBOT", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -245441,7 +241840,7 @@ }, { "id": "secure_renego", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -245449,7 +241848,7 @@ }, { "id": "secure_client_renego", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -245458,7 +241857,7 @@ }, { "id": "CRIME_TLS", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -245467,7 +241866,7 @@ }, { "id": "BREACH", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -245476,7 +241875,7 @@ }, { "id": "POODLE_SSL", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -245485,14 +241884,14 @@ }, { "id": "fallback_SCSV", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -245501,7 +241900,7 @@ }, { "id": "FREAK", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -245510,7 +241909,7 @@ }, { "id": "DROWN", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -245519,7 +241918,7 @@ }, { "id": "DROWN_hint", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -245528,7 +241927,7 @@ }, { "id": "LOGJAM", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -245537,7 +241936,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -245546,7 +241945,7 @@ }, { "id": "BEAST", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -245555,7 +241954,7 @@ }, { "id": "LUCKY13", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -245564,7 +241963,7 @@ }, { "id": "winshock", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -245573,7 +241972,7 @@ }, { "id": "RC4", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -245582,399 +241981,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "openacademie.beta.gouv.fr/109.232.236.90", + "ip": "openacademie.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -245982,7 +242381,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -245990,7 +242389,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -245998,7 +242397,7 @@ }, { "id": "cipherlist_LOW", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -246006,7 +242405,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -246014,7 +242413,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -246022,490 +242421,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2024-01-02 15:31" }, { "id": "cert_notAfter", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-04-01 15:31" }, { "id": "cert_extlifeSpan", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "insecure_redirect", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "HIGH", "finding": "Redirect to insecure URL: 'http://openacademie.fr/'" }, { "id": "HTTP_status_code", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704615432" + "finding": "1705219674" }, { "id": "HSTS", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -246513,7 +242912,7 @@ }, { "id": "heartbleed", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -246522,7 +242921,7 @@ }, { "id": "CCS", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -246531,7 +242930,7 @@ }, { "id": "ticketbleed", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -246540,7 +242939,7 @@ }, { "id": "ROBOT", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -246549,7 +242948,7 @@ }, { "id": "secure_renego", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -246557,7 +242956,7 @@ }, { "id": "secure_client_renego", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -246566,7 +242965,7 @@ }, { "id": "CRIME_TLS", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -246575,7 +242974,7 @@ }, { "id": "BREACH", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -246584,7 +242983,7 @@ }, { "id": "POODLE_SSL", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -246593,14 +242992,14 @@ }, { "id": "fallback_SCSV", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -246609,7 +243008,7 @@ }, { "id": "FREAK", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -246618,7 +243017,7 @@ }, { "id": "DROWN", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -246627,7 +243026,7 @@ }, { "id": "DROWN_hint", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -246636,7 +243035,7 @@ }, { "id": "LOGJAM", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -246645,7 +243044,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -246654,7 +243053,7 @@ }, { "id": "BEAST", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -246663,7 +243062,7 @@ }, { "id": "LUCKY13", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -246672,7 +243071,7 @@ }, { "id": "winshock", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -246681,7 +243080,7 @@ }, { "id": "RC4", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -246690,332 +243089,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "openacademie.beta.gouv.fr/5.104.101.30", + "ip": "openacademie.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "228" + "finding": "380" } ], "thirdparties": { @@ -247165,31 +243564,31 @@ "headers": { "accept-ranges": "bytes", "access-control-allow-origin": "*", - "age": "45", + "age": "44", "cache-control": "max-age=600", "connection": "keep-alive", "content-encoding": "gzip", "content-length": "3401", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 08:13:38 GMT", + "date": "Sun, 14 Jan 2024 08:01:56 GMT", "etag": "W/\"65783098-3583\"", "last-modified": "Tue, 12 Dec 2023 10:06:16 GMT", "server": "GitHub.com", "vary": "Accept-Encoding", "via": "1.1 varnish", "x-cache": "HIT", - "x-cache-hits": "1", - "x-fastly-request-id": "2b519afe3053fa1838b60507d62c559d6e209115", - "x-github-request-id": "5BAE:4CB5:432BB18:5C4A119:659A5C9A", - "x-served-by": "cache-chi-kigq8000126-CHI", - "x-timer": "S1704615218.071178,VS0,VE2", - "expires": "Sun, 07 Jan 2024 08:21:06 GMT", + "x-cache-hits": "2", + "x-fastly-request-id": "ef866a17720849510ee8e22c78329f4922a16312", + "x-github-request-id": "4B04:39FB:705B31:892879:65A3945F", + "x-served-by": "cache-bur-kbur8200136-BUR", + "x-timer": "S1705219316.462542,VS0,VE0", + "expires": "Sun, 14 Jan 2024 08:09:28 GMT", "x-proxy-cache": "MISS" }, "endpoints": [ { "hostname": "openacademie.beta.gouv.fr", - "ip": "148.253.75.120", + "ip": "109.232.236.90", "geoip": { "continent": { "code": "EU", @@ -247245,7 +243644,7 @@ }, { "hostname": "openacademie.fr", - "ip": "185.199.111.153", + "ip": "185.199.110.153", "geoip": { "continent": { "code": "NA", @@ -247265,7 +243664,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -247285,7 +243684,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -247321,7 +243720,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -247335,7 +243734,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.217.2.42", + "ip": "142.251.40.42", "geoip": { "continent": { "code": "NA", @@ -247355,7 +243754,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -247375,7 +243774,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -247389,7 +243788,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.251.32.3", + "ip": "142.250.217.131", "geoip": { "continent": { "code": "NA", @@ -247409,7 +243808,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -247429,7 +243828,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -247455,7 +243854,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 08:12:37", + "@generated": "Sun, 14 Jan 2024 08:00:56", "site": [ { "@name": "https://openacademie.beta.gouv.fr", @@ -247605,7 +244004,7 @@ "extracted-results": [ "betagouv-redirections.osc-fr1.scalingo.io." ], - "timestamp": "2024-01-07T08:18:38.054368939Z", + "timestamp": "2024-01-14T08:09:37.914326665Z", "matcher-status": true }, { @@ -247640,7 +244039,7 @@ "type": "dns", "host": "openacademie.beta.gouv.fr.", "matched-at": "openacademie.beta.gouv.fr", - "timestamp": "2024-01-07T08:18:38.104294908Z", + "timestamp": "2024-01-14T08:09:38.782193093Z", "matcher-status": true }, { @@ -247678,8 +244077,8 @@ "type": "http", "host": "https://openacademie.beta.gouv.fr", "matched-at": "https://openacademie.beta.gouv.fr/", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T08:19:54.484486717Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:11:19.281996602Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: openacademie.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openacademie.beta.gouv.fr/'", "matcher-status": true }, @@ -247709,8 +244108,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T08:25:37.277534203Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:17:09.715811665Z", "matcher-status": true }, { @@ -247739,8 +244138,8 @@ "extracted-results": [ "openacademie.beta.gouv.fr" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T08:25:37.277649971Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:17:09.715930116Z", "matcher-status": true }, { @@ -247770,8 +244169,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T08:25:38.793765513Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:17:11.843329551Z", "matcher-status": true }, { @@ -247801,8 +244200,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T08:25:39.344961316Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:17:12.219067647Z", "matcher-status": true } ], @@ -247810,7 +244209,7 @@ { "requestedUrl": "https://openacademie.beta.gouv.fr/", "finalUrl": "http://openacademie.fr/", - "fetchTime": "2024-01-07T08:12:51.700Z", + "fetchTime": "2024-01-14T08:01:11.047Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://openacademie.beta.gouv.fr/) was redirected to http://openacademie.fr/. Try testing the second URL directly." ], @@ -247875,53 +244274,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4962, + "numericValue": 3521, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3652, - "firstMeaningfulPaint": 3652, - "largestContentfulPaint": 6784, - "interactive": 4962, - "speedIndex": 3652, - "totalBlockingTime": 34, - "maxPotentialFID": 117, + "firstContentfulPaint": 2790, + "firstMeaningfulPaint": 2790, + "largestContentfulPaint": 7072, + "interactive": 3521, + "speedIndex": 2790, + "totalBlockingTime": 38, + "maxPotentialFID": 126, "cumulativeLayoutShift": 0.010080518086751302, "cumulativeLayoutShiftMainFrame": 0.010080518086751302, "totalCumulativeLayoutShift": 0.010080518086751302, "observedTimeOrigin": 0, - "observedTimeOriginTs": 206683108, + "observedTimeOriginTs": 310461578, "observedNavigationStart": 0, - "observedNavigationStartTs": 206683108, - "observedFirstPaint": 437, - "observedFirstPaintTs": 207120032, - "observedFirstContentfulPaint": 437, - "observedFirstContentfulPaintTs": 207120032, - "observedFirstContentfulPaintAllFrames": 437, - "observedFirstContentfulPaintAllFramesTs": 207120032, - "observedFirstMeaningfulPaint": 437, - "observedFirstMeaningfulPaintTs": 207120032, - "observedLargestContentfulPaint": 485, - "observedLargestContentfulPaintTs": 207167894, - "observedLargestContentfulPaintAllFrames": 485, - "observedLargestContentfulPaintAllFramesTs": 207167894, - "observedTraceEnd": 2782, - "observedTraceEndTs": 209465572, - "observedLoad": 475, - "observedLoadTs": 207157780, - "observedDomContentLoaded": 414, - "observedDomContentLoadedTs": 207097322, + "observedNavigationStartTs": 310461578, + "observedFirstPaint": 663, + "observedFirstPaintTs": 311124121, + "observedFirstContentfulPaint": 663, + "observedFirstContentfulPaintTs": 311124121, + "observedFirstContentfulPaintAllFrames": 663, + "observedFirstContentfulPaintAllFramesTs": 311124121, + "observedFirstMeaningfulPaint": 663, + "observedFirstMeaningfulPaintTs": 311124121, + "observedLargestContentfulPaint": 878, + "observedLargestContentfulPaintTs": 311339417, + "observedLargestContentfulPaintAllFrames": 878, + "observedLargestContentfulPaintAllFramesTs": 311339417, + "observedTraceEnd": 3250, + "observedTraceEndTs": 313711903, + "observedLoad": 942, + "observedLoadTs": 311403753, + "observedDomContentLoaded": 655, + "observedDomContentLoadedTs": 311116705, "observedCumulativeLayoutShift": 0.010080518086751302, "observedCumulativeLayoutShiftMainFrame": 0.010080518086751302, "observedTotalCumulativeLayoutShift": 0.010080518086751302, - "observedFirstVisualChange": 425, - "observedFirstVisualChangeTs": 207108108, - "observedLastVisualChange": 1091, - "observedLastVisualChangeTs": 207774108, - "observedSpeedIndex": 490, - "observedSpeedIndexTs": 207173046 + "observedFirstVisualChange": 659, + "observedFirstVisualChangeTs": 311120578, + "observedLastVisualChange": 1359, + "observedLastVisualChangeTs": 311820578, + "observedSpeedIndex": 850, + "observedSpeedIndexTs": 311311714 }, { "lcpInvalidated": false @@ -247943,19 +244342,19 @@ "numScripts": 3, "numStylesheets": 4, "numFonts": 3, - "numTasks": 186, - "numTasksOver10ms": 4, + "numTasks": 354, + "numTasksOver10ms": 2, "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.46, - "throughput": 296698490.0140874, - "maxRtt": 101.52699999999999, - "maxServerLatency": 30.062, - "totalByteWeight": 913794, - "totalTaskTime": 90.10500000000008, - "mainDocumentTransferSize": 4079 + "rtt": 7.994999999999999, + "throughput": 93305622.22350556, + "maxRtt": 137.938, + "maxServerLatency": 113.42999999999999, + "totalByteWeight": 913712, + "totalTaskTime": 96.53900000000014, + "mainDocumentTransferSize": 4078 } ] } @@ -248077,7 +244476,7 @@ "http": { "url": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 08:33:04 GMT", + "end_time": "Sun, 14 Jan 2024 08:06:08 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -248088,12 +244487,12 @@ "Content-Type": "application/json", "Country-Package": "openfisca-france", "Country-Package-Version": "155.1.0", - "Date": "Sun, 07 Jan 2024 08:33:03 GMT", + "Date": "Sun, 14 Jan 2024 08:06:07 GMT", "Server": "nginx/1.18.0" }, - "scan_id": 46231852, + "scan_id": 46459100, "score": 20, - "start_time": "Sun, 07 Jan 2024 08:28:10 GMT", + "start_time": "Sun, 14 Jan 2024 08:06:04 GMT", "state": "FINISHED", "status_code": 300, "tests_failed": 5, @@ -248273,10 +244672,10 @@ "version": "8.4p1 Debian 5+deb11u3", "vulnerabilities": [ { - "type": "prion", - "is_exploit": "false", "id": "PRION:CVE-2016-20012", - "cvss": "5.0" + "type": "prion", + "cvss": "5.0", + "is_exploit": "false" } ] } @@ -248696,7 +245095,7 @@ "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "OK", - "finding": "80 >= 30 days" + "finding": "73 >= 30 days" }, { "id": "cert_notBefore", @@ -248899,7 +245298,7 @@ "ip": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr/5.135.137.147", "port": "443", "severity": "INFO", - "finding": "1704616491" + "finding": "1705219679" }, { "id": "HSTS", @@ -249467,7 +245866,7 @@ "content-type": "application/json", "country-package": "openfisca-france", "country-package-version": "155.1.0", - "date": "Sun, 07 Jan 2024 08:33:30 GMT", + "date": "Sun, 14 Jan 2024 08:06:38 GMT", "server": "nginx/1.18.0" }, "endpoints": [ @@ -249564,7 +245963,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 08:27:39", + "@generated": "Sun, 14 Jan 2024 08:05:34", "site": [ { "@name": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", @@ -249679,7 +246078,7 @@ "type": "dns", "host": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr.", "matched-at": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "timestamp": "2024-01-07T08:36:09.045857831Z", + "timestamp": "2024-01-14T08:09:17.061288571Z", "matcher-status": true }, { @@ -249708,7 +246107,7 @@ "HEAD, OPTIONS, GET" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:36:19.49760082Z", + "timestamp": "2024-01-14T08:09:28.558629254Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -249735,44 +246134,266 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:05.200211353Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.463811067Z", + "timestamp": "2024-01-14T08:10:14.497874162Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T08:10:29.719963283Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T08:10:29.720006634Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T08:10:29.720019418Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T08:10:29.720029447Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T08:10:29.720043533Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T08:10:29.720056246Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "ip": "5.135.137.147", + "timestamp": "2024-01-14T08:10:29.720072457Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -249809,44 +246430,7 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.463860169Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.463880256Z", + "timestamp": "2024-01-14T08:10:29.720086153Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -249883,7 +246467,7 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.463893842Z", + "timestamp": "2024-01-14T08:10:29.720098225Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -249920,192 +246504,7 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.463908269Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.463923867Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.46396804Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.464007023Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.464044773Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", - "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.464081412Z", + "timestamp": "2024-01-14T08:10:29.720110228Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -250142,7 +246541,7 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:20.464121636Z", + "timestamp": "2024-01-14T08:10:29.720123142Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr'", "matcher-status": true }, @@ -250182,7 +246581,7 @@ "host": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/", "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:37:58.159452258Z", + "timestamp": "2024-01-14T08:11:07.742786298Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: openfisca.mes-aides.1jeune1solution.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/'", "matcher-status": true }, @@ -250227,7 +246626,7 @@ "redirect": "%09/evil.com/" }, "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:38:07.675915979Z", + "timestamp": "2024-01-14T08:11:17.347511625Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://openfisca.mes-aides.1jeune1solution.beta.gouv.fr/%09/evil.com/'", "matcher-status": true }, @@ -250277,7 +246676,7 @@ "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:38:29.19396471Z", + "timestamp": "2024-01-14T08:11:38.986104427Z", "matcher-status": true }, { @@ -250307,7 +246706,7 @@ "Let's Encrypt" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:38:31.487125872Z", + "timestamp": "2024-01-14T08:11:41.461558269Z", "matcher-status": true }, { @@ -250334,11 +246733,11 @@ "host": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr", "matched-at": "openfisca.mes-aides.1jeune1solution.beta.gouv.fr:443", "extracted-results": [ - "www.mes-aides.1jeune1solution.beta.gouv.fr", - "openfisca.mes-aides.1jeune1solution.beta.gouv.fr" + "openfisca.mes-aides.1jeune1solution.beta.gouv.fr", + "www.mes-aides.1jeune1solution.beta.gouv.fr" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:38:31.487236979Z", + "timestamp": "2024-01-14T08:11:41.461669929Z", "matcher-status": true }, { @@ -250369,7 +246768,7 @@ "tls12" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:38:33.821822103Z", + "timestamp": "2024-01-14T08:11:43.790417325Z", "matcher-status": true }, { @@ -250400,7 +246799,7 @@ "tls13" ], "ip": "5.135.137.147", - "timestamp": "2024-01-07T08:38:34.140305113Z", + "timestamp": "2024-01-14T08:11:44.106696347Z", "matcher-status": true } ], @@ -250472,29 +246871,29 @@ "http": { "url": "https://pad.incubateur.net", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 08:33:04 GMT", + "end_time": "Sun, 14 Jan 2024 08:29:06 GMT", "grade": "D-", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-6d614d89-bfbe-4413-938b-693102a6ba46' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", + "Content-Security-Policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-64de9c9e-9935-4900-9a35-4387d381f3a5' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 08:33:02 GMT", + "Date": "Sun, 14 Jan 2024 08:29:04 GMT", "ETag": "W/\"38c5-cO2pHfqjC9Mqrc3iDYMvVnqOPTU\"", "HedgeDoc-Version": "1.8.2", "Referrer-Policy": "same-origin", - "Set-Cookie": "connect.sid=s%3A9gUxQeBQWWfhVRiyo2qrEa_ZTACHLEoc.j4g2FGMZdyD3hXRWFh3Mx3ajK5vnqU7%2BB6wpSC6wX%2Fk; Path=/; Expires=Sun, 21 Jan 2024 08:33:02 GMT; HttpOnly; Secure; SameSite=Lax", + "Set-Cookie": "connect.sid=s%3AoBaIy2ffW9ymR8bdmcr71oKsMXu0mqpi.0Ys%2BKxPP9lCQ7imbUbINEnEoxYpKxO2GlHaF58Kdq9Q; Path=/; Expires=Sun, 28 Jan 2024 08:29:04 GMT; HttpOnly; Secure; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000, max-age=31536000; includeSubDomains; preload", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Express", - "X-Request-ID": "55cc0e04-1597-48c9-8278-79dca37f50f6" + "X-Request-ID": "69bfa7bd-cafa-4f52-b673-5210eceb3ef0" }, - "scan_id": 46231881, + "scan_id": 46460364, "score": 25, - "start_time": "Sun, 07 Jan 2024 08:32:43 GMT", + "start_time": "Sun, 14 Jan 2024 08:29:01 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -250517,9 +246916,9 @@ ], "font-src": [ "https://*.disquscdn.com", - "data:", + "'self'", "https://public.slidesharecdn.com", - "'self'" + "data:" ], "img-src": [ "*" @@ -250531,23 +246930,23 @@ "*" ], "script-src": [ - "'nonce-6d614d89-bfbe-4413-938b-693102a6ba46'", - "https://*.disqus.com", "https://disqus.com", + "https://*.disquscdn.com", + "www.slideshare.net", "https://www.google-analytics.com", + "https://*.disqus.com", "'sha256-81aclznzisnygyzrsuoyhpzwdttxi7vc1ym4unxqwam='", "'unsafe-eval'", "https://gist.github.com", - "https://*.disquscdn.com", - "www.slideshare.net", - "'self'", - "vimeo.com" + "vimeo.com", + "'nonce-64de9c9e-9935-4900-9a35-4387d381f3a5'", + "'self'" ], "style-src": [ - "https://*.disquscdn.com", - "'unsafe-inline'", "https://github.githubassets.com", - "'self'" + "https://*.disquscdn.com", + "'self'", + "'unsafe-inline'" ] }, "http": true, @@ -250590,7 +246989,7 @@ "data": { "connect.sid": { "domain": "pad.incubateur.net", - "expires": 1705825983, + "expires": 1706430546, "httponly": true, "max-age": null, "path": "/", @@ -250735,7 +247134,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-07T08:28:56Z", + "up_since": "2024-01-12T13:10:47Z", "error": null, "period": 120, "apdex_t": 0.5, @@ -250747,8 +247146,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T08:50:51Z", - "next_check_at": "2024-01-07T08:52:50Z", + "last_check_at": "2024-01-14T08:45:05Z", + "next_check_at": "2024-01-14T08:47:05Z", "created_at": "2021-03-31T16:12:07Z", "mute_until": null, "favicon_url": "https://pad.incubateur.net/icons/favicon.ico", @@ -250756,24 +247155,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T08:48:54Z", + "tested_at": "2024-01-14T08:41:09Z", "expires_at": "2024-03-19T16:56:10Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.95, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 81, - "connection": 133, - "handshake": 133, - "response": 419, - "total": 766 + "namelookup": 79, + "connection": 136, + "handshake": 142, + "response": 175, + "total": 533 } }, "uptimeGrade": "A", - "apdexGrade": "F" + "apdexGrade": "A" }, "nmap": { "host": "pad.incubateur.net", @@ -251007,7 +247406,7 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -251147,7 +247546,7 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", - "finding": "72 >= 30 days" + "finding": "65 >= 30 days" }, { "id": "cert_notBefore", @@ -251350,7 +247749,7 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704616495" + "finding": "1705221054" }, { "id": "HSTS_multiple", @@ -251427,7 +247826,7 @@ "ip": "pad.incubateur.net/109.232.233.130", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-b4112cdc-d7ea-4119-96ca-b5de64bf89eb' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-13370283-0e9a-442d-920a-eda1b735f399' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", @@ -251938,77 +248337,77 @@ }, { "id": "service", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252016,7 +248415,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252024,7 +248423,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252032,7 +248431,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -252040,7 +248439,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -252048,7 +248447,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -252056,525 +248455,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "65 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-20 16:56" }, { "id": "cert_notAfter", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-19 16:56" }, { "id": "cert_extlifeSpan", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704616594" + "finding": "1705221153" }, { "id": "HSTS_multiple", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "Content-Security-Policy", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-9029bc4e-0a1c-49c2-bbc1-dbffba0c290d' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-f4fc5a5c-bc5b-4532-ace3-92a454a94b2e' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -252582,7 +248981,7 @@ }, { "id": "heartbleed", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -252591,7 +248990,7 @@ }, { "id": "CCS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -252600,7 +248999,7 @@ }, { "id": "ticketbleed", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -252609,7 +249008,7 @@ }, { "id": "ROBOT", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -252618,7 +249017,7 @@ }, { "id": "secure_renego", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -252626,7 +249025,7 @@ }, { "id": "secure_client_renego", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -252635,7 +249034,7 @@ }, { "id": "CRIME_TLS", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -252644,7 +249043,7 @@ }, { "id": "BREACH", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -252653,7 +249052,7 @@ }, { "id": "POODLE_SSL", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -252662,14 +249061,14 @@ }, { "id": "fallback_SCSV", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -252678,7 +249077,7 @@ }, { "id": "FREAK", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -252687,7 +249086,7 @@ }, { "id": "DROWN", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -252696,7 +249095,7 @@ }, { "id": "DROWN_hint", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -252705,7 +249104,7 @@ }, { "id": "LOGJAM", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -252714,7 +249113,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -252723,7 +249122,7 @@ }, { "id": "BEAST", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -252732,7 +249131,7 @@ }, { "id": "LUCKY13", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -252741,7 +249140,7 @@ }, { "id": "winshock", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -252750,7 +249149,7 @@ }, { "id": "RC4", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -252759,315 +249158,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pad.incubateur.net/109.232.236.90", + "ip": "pad.incubateur.net/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" @@ -253279,7 +249678,7 @@ "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -253419,7 +249818,7 @@ "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", - "finding": "72 >= 30 days" + "finding": "65 >= 30 days" }, { "id": "cert_notBefore", @@ -253622,7 +250021,7 @@ "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704616693" + "finding": "1705221254" }, { "id": "HSTS_multiple", @@ -253699,7 +250098,7 @@ "ip": "pad.incubateur.net/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-13140dbc-806f-4069-a20a-c49b5bf655a2' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-3f46a918-3df7-4b88-80a6-8392c874862a' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", @@ -254210,77 +250609,77 @@ }, { "id": "service", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -254288,7 +250687,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -254296,7 +250695,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -254304,7 +250703,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -254312,7 +250711,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -254320,7 +250719,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -254328,525 +250727,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "65 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-12-20 16:56" }, { "id": "cert_notAfter", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-03-19 16:56" }, { "id": "cert_extlifeSpan", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704616792" + "finding": "1705221353" }, { "id": "HSTS_multiple", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "Content-Security-Policy", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-30f64419-8462-423c-aced-a257fbf270fd' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" + "finding": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-86cb2b92-150d-4d4d-95f9-2baeefb4f3b8' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *" }, { "id": "Referrer-Policy", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -254854,7 +251253,7 @@ }, { "id": "heartbleed", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -254863,7 +251262,7 @@ }, { "id": "CCS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -254872,7 +251271,7 @@ }, { "id": "ticketbleed", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -254881,7 +251280,7 @@ }, { "id": "ROBOT", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -254890,7 +251289,7 @@ }, { "id": "secure_renego", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -254898,7 +251297,7 @@ }, { "id": "secure_client_renego", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -254907,7 +251306,7 @@ }, { "id": "CRIME_TLS", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -254916,7 +251315,7 @@ }, { "id": "BREACH", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -254925,7 +251324,7 @@ }, { "id": "POODLE_SSL", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -254934,14 +251333,14 @@ }, { "id": "fallback_SCSV", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -254950,7 +251349,7 @@ }, { "id": "FREAK", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -254959,7 +251358,7 @@ }, { "id": "DROWN", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -254968,7 +251367,7 @@ }, { "id": "DROWN_hint", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -254977,7 +251376,7 @@ }, { "id": "LOGJAM", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -254986,7 +251385,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -254995,7 +251394,7 @@ }, { "id": "BEAST", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -255004,7 +251403,7 @@ }, { "id": "LUCKY13", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -255013,7 +251412,7 @@ }, { "id": "winshock", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -255022,7 +251421,7 @@ }, { "id": "RC4", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -255031,325 +251430,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "pad.incubateur.net/5.104.101.30", + "ip": "pad.incubateur.net/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "400" + "finding": "402" } ], "thirdparties": { @@ -255357,10 +251756,10 @@ "cookies": [ { "name": "connect.sid", - "value": "s%3AavYVvFfmcqya8KPp-zUDfqlyCUSSclQ8.oovFTYIE64XeLuuHKLzaNkqxKr3TCMpu%2FvkbTe87wEk", + "value": "s%3AZ9gUORJxCwwVVWPyoWU-rDHP9zjr-tSf.dqvE8%2BVKWbEiW0dyTOQ7h4HemSKMNtMrtSLrEBE5V8k", "domain": "pad.incubateur.net", "path": "/", - "expires": 1705826019.466429, + "expires": 1706430578.578293, "size": 93, "httpOnly": true, "secure": true, @@ -255373,32 +251772,23 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-b42e1ad6-9d3e-4392-81bb-0ccd46637a72' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", + "content-security-policy": "default-src 'self';script-src 'self' vimeo.com https://gist.github.com www.slideshare.net 'unsafe-eval' https://disqus.com https://*.disqus.com https://*.disquscdn.com https://www.google-analytics.com 'nonce-cec7f9ad-1919-4294-a872-100b9d0ea917' 'sha256-81acLZNZISnyGYZrSuoYhpzwDTTxi7vC1YM4uNxqWaM=';img-src *;style-src 'self' 'unsafe-inline' https://github.githubassets.com https://*.disquscdn.com;font-src 'self' data: https://public.slidesharecdn.com https://*.disquscdn.com;object-src *;media-src *;child-src *;connect-src *", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 08:33:38 GMT", + "date": "Sun, 14 Jan 2024 08:29:37 GMT", "etag": "W/\"38c5-cO2pHfqjC9Mqrc3iDYMvVnqOPTU\"", "hedgedoc-version": "1.8.2", "referrer-policy": "same-origin", - "set-cookie": "connect.sid=s%3AavYVvFfmcqya8KPp-zUDfqlyCUSSclQ8.oovFTYIE64XeLuuHKLzaNkqxKr3TCMpu%2FvkbTe87wEk; Path=/; Expires=Sun, 21 Jan 2024 08:33:38 GMT; HttpOnly; Secure; SameSite=Lax", + "set-cookie": "connect.sid=s%3AZ9gUORJxCwwVVWPyoWU-rDHP9zjr-tSf.dqvE8%2BVKWbEiW0dyTOQ7h4HemSKMNtMrtSLrEBE5V8k; Path=/; Expires=Sun, 28 Jan 2024 08:29:37 GMT; HttpOnly; Secure; SameSite=Lax", "strict-transport-security": "max-age=31536000\nmax-age=31536000; includeSubDomains; preload", "vary": "Accept-Encoding", "x-powered-by": "Express", - "x-request-id": "35b39f98-4ec6-436d-b23a-4a90ea15abe4" + "x-request-id": "b2a02c5a-88f1-4803-bd71-96665e0bbcdd" }, "endpoints": [ { "hostname": "pad.incubateur.net", - "ip": "5.104.101.30", + "ip": "109.232.236.90", "geoip": { - "city": { - "geoname_id": 3034797, - "names": { - "de": "Bartenheim", - "en": "Bartenheim", - "fr": "Bartenheim", - "pt-BR": "Bartenheim" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -255430,13 +251820,10 @@ }, "location": { "accuracy_radius": 500, - "latitude": 47.6376, - "longitude": 7.4798, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "68870" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -255451,28 +251838,7 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071622, - "iso_code": "GES", - "names": { - "en": "Grand Est", - "fr": "Grand Est" - } - }, - { - "geoname_id": 3013663, - "iso_code": "68", - "names": { - "de": "Haut-Rhin", - "en": "Haut-Rhin", - "es": "Alto Rin", - "fr": "Haut-Rhin", - "pt-BR": "Alto Reno" - } - } - ] + } } } ] @@ -255691,7 +252057,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 08:32:17", + "@generated": "Sun, 14 Jan 2024 08:28:36", "site": [ { "@name": "https://pad.incubateur.net", @@ -255873,73 +252239,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "pad.incubateur.net.", "matched-at": "pad.incubateur.net", - "timestamp": "2024-01-07T08:41:42.389404804Z", + "extracted-results": [ + "betagouv-codimd.osc-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T08:37:44.818084838Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "pad.incubateur.net.", "matched-at": "pad.incubateur.net", - "extracted-results": [ - "betagouv-codimd.osc-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T08:41:43.492225974Z", + "timestamp": "2024-01-14T08:37:44.822340477Z", "matcher-status": true }, { @@ -255968,7 +252334,7 @@ "GET,HEAD" ], "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:41:54.393649137Z", + "timestamp": "2024-01-14T08:37:56.363871627Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -256000,7 +252366,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:42:02.785379305Z", + "timestamp": "2024-01-14T08:38:05.241486789Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -256039,7 +252405,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:42:02.787361872Z", + "timestamp": "2024-01-14T08:38:05.243390471Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -256066,7 +252432,266 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:42:42.782029955Z", + "timestamp": "2024-01-14T08:38:45.352795906Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://pad.incubateur.net", + "matched-at": "https://pad.incubateur.net", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:39:02.165199628Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://pad.incubateur.net", + "matched-at": "https://pad.incubateur.net", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:39:02.165247558Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://pad.incubateur.net", + "matched-at": "https://pad.incubateur.net", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:39:02.165265962Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://pad.incubateur.net", + "matched-at": "https://pad.incubateur.net", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:39:02.165285048Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://pad.incubateur.net", + "matched-at": "https://pad.incubateur.net", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:39:02.1653024Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://pad.incubateur.net", + "matched-at": "https://pad.incubateur.net", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:39:02.165319542Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://pad.incubateur.net", + "matched-at": "https://pad.incubateur.net", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T08:39:02.165342695Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -256103,266 +252728,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net", "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:00.222330767Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://pad.incubateur.net", - "matched-at": "https://pad.incubateur.net", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:00.222366354Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://pad.incubateur.net", - "matched-at": "https://pad.incubateur.net", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:00.222376974Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://pad.incubateur.net", - "matched-at": "https://pad.incubateur.net", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:00.222391191Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://pad.incubateur.net", - "matched-at": "https://pad.incubateur.net", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:00.22240687Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://pad.incubateur.net", - "matched-at": "https://pad.incubateur.net", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:00.222421297Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://pad.incubateur.net", - "matched-at": "https://pad.incubateur.net", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:00.22243373Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://pad.incubateur.net", - "matched-at": "https://pad.incubateur.net", - "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:00.222445352Z", + "timestamp": "2024-01-14T08:39:02.165359456Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net'", "matcher-status": true }, @@ -256405,7 +252771,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net/metrics", "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:08.578392512Z", + "timestamp": "2024-01-14T08:39:13.364655381Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net/metrics'", "matcher-status": true }, @@ -256436,7 +252802,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net/metrics", "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:23.52521115Z", + "timestamp": "2024-01-14T08:39:26.421183475Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net/metrics'", "matcher-status": true }, @@ -256476,7 +252842,7 @@ "host": "https://pad.incubateur.net", "matched-at": "https://pad.incubateur.net/", "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:43:42.823453608Z", + "timestamp": "2024-01-14T08:39:44.034727022Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: pad.incubateur.net' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pad.incubateur.net/'", "matcher-status": true }, @@ -256507,7 +252873,7 @@ "Let's Encrypt" ], "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:49:27.507464203Z", + "timestamp": "2024-01-14T08:45:37.459934046Z", "matcher-status": true }, { @@ -256537,7 +252903,7 @@ "pad.incubateur.net" ], "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:49:27.50758559Z", + "timestamp": "2024-01-14T08:45:37.460057717Z", "matcher-status": true }, { @@ -256568,7 +252934,7 @@ "tls12" ], "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:49:32.386438557Z", + "timestamp": "2024-01-14T08:45:39.738870131Z", "matcher-status": true }, { @@ -256599,7 +252965,7 @@ "tls13" ], "ip": "5.104.101.30", - "timestamp": "2024-01-07T08:49:32.695846726Z", + "timestamp": "2024-01-14T08:45:40.048183297Z", "matcher-status": true } ], @@ -256607,7 +252973,7 @@ { "requestedUrl": "https://pad.incubateur.net/", "finalUrl": "https://pad.incubateur.net/", - "fetchTime": "2024-01-07T08:32:31.099Z", + "fetchTime": "2024-01-14T08:28:50.910Z", "runWarnings": [], "categories": { "performance": { @@ -256670,53 +253036,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4858, + "numericValue": 4769, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1218, - "firstMeaningfulPaint": 3488, - "largestContentfulPaint": 3958, - "interactive": 4858, - "speedIndex": 3947, - "totalBlockingTime": 145, - "maxPotentialFID": 340, - "cumulativeLayoutShift": 0.0006871678034464519, - "cumulativeLayoutShiftMainFrame": 0.0006871678034464519, - "totalCumulativeLayoutShift": 0.0006871678034464519, + "firstContentfulPaint": 1211, + "firstMeaningfulPaint": 3403, + "largestContentfulPaint": 2411, + "interactive": 4769, + "speedIndex": 3631, + "totalBlockingTime": 67, + "maxPotentialFID": 183, + "cumulativeLayoutShift": 0.0006429045995076497, + "cumulativeLayoutShiftMainFrame": 0.0006429045995076497, + "totalCumulativeLayoutShift": 0.0006429045995076497, "observedTimeOrigin": 0, - "observedTimeOriginTs": 210172642, + "observedTimeOriginTs": 301087426, "observedNavigationStart": 0, - "observedNavigationStartTs": 210172642, - "observedFirstPaint": 1319, - "observedFirstPaintTs": 211491617, - "observedFirstContentfulPaint": 1319, - "observedFirstContentfulPaintTs": 211491617, - "observedFirstContentfulPaintAllFrames": 1319, - "observedFirstContentfulPaintAllFramesTs": 211491617, - "observedFirstMeaningfulPaint": 1490, - "observedFirstMeaningfulPaintTs": 211663065, - "observedLargestContentfulPaint": 1319, - "observedLargestContentfulPaintTs": 211491617, - "observedLargestContentfulPaintAllFrames": 1319, - "observedLargestContentfulPaintAllFramesTs": 211491617, - "observedTraceEnd": 3924, - "observedTraceEndTs": 214096665, - "observedLoad": 1480, - "observedLoadTs": 211652846, - "observedDomContentLoaded": 1471, - "observedDomContentLoadedTs": 211643751, - "observedCumulativeLayoutShift": 0.0006871678034464519, - "observedCumulativeLayoutShiftMainFrame": 0.0006871678034464519, - "observedTotalCumulativeLayoutShift": 0.0006871678034464519, - "observedFirstVisualChange": 1318, - "observedFirstVisualChangeTs": 211490642, - "observedLastVisualChange": 1935, - "observedLastVisualChangeTs": 212107642, - "observedSpeedIndex": 1343, - "observedSpeedIndexTs": 211516039 + "observedNavigationStartTs": 301087426, + "observedFirstPaint": 1153, + "observedFirstPaintTs": 302240277, + "observedFirstContentfulPaint": 1153, + "observedFirstContentfulPaintTs": 302240277, + "observedFirstContentfulPaintAllFrames": 1153, + "observedFirstContentfulPaintAllFramesTs": 302240277, + "observedFirstMeaningfulPaint": 1422, + "observedFirstMeaningfulPaintTs": 302509772, + "observedLargestContentfulPaint": 1153, + "observedLargestContentfulPaintTs": 302240277, + "observedLargestContentfulPaintAllFrames": 1153, + "observedLargestContentfulPaintAllFramesTs": 302240277, + "observedTraceEnd": 3820, + "observedTraceEndTs": 304907248, + "observedLoad": 1407, + "observedLoadTs": 302494855, + "observedDomContentLoaded": 1363, + "observedDomContentLoadedTs": 302450419, + "observedCumulativeLayoutShift": 0.0006429045995076497, + "observedCumulativeLayoutShiftMainFrame": 0.0006429045995076497, + "observedTotalCumulativeLayoutShift": 0.0006429045995076497, + "observedFirstVisualChange": 1150, + "observedFirstVisualChangeTs": 302237426, + "observedLastVisualChange": 1767, + "observedLastVisualChangeTs": 302854426, + "observedSpeedIndex": 1183, + "observedSpeedIndexTs": 302270409 }, { "lcpInvalidated": false @@ -256738,19 +253104,19 @@ "numScripts": 3, "numStylesheets": 3, "numFonts": 4, - "numTasks": 276, - "numTasksOver10ms": 3, + "numTasks": 302, + "numTasksOver10ms": 4, "numTasksOver25ms": 2, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 148.54500000000002, - "throughput": 10569734.082606915, - "maxRtt": 148.54500000000002, - "maxServerLatency": 18.041999999999973, - "totalByteWeight": 849220, - "totalTaskTime": 303.10499999999973, - "mainDocumentTransferSize": 4052 + "rtt": 148.696, + "throughput": 9108721.009743137, + "maxRtt": 148.696, + "maxServerLatency": 11.293999999999983, + "totalByteWeight": 849222, + "totalTaskTime": 229.51299999999986, + "mainDocumentTransferSize": 4053 } ] } @@ -256800,8 +253166,8 @@ "sonarcloud": null, "summary": { "httpGrade": "D-", - "apdex": 0.95, - "apdexGrade": "F", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -256840,7 +253206,7 @@ "http": { "url": "https://partaj.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:07:18 GMT", + "end_time": "Sun, 14 Jan 2024 04:47:46 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -256848,19 +253214,19 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 05:07:17 GMT", - "Set-Cookie": "csrftoken=UvQvdj62bOcS9Ub6cnh3iyGsMoXp7YqAB9NQtmwz33Lj3RhSHQdMJtM4fTKF5ifo; expires=Sun, 05 Jan 2025 05:07:17 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Date": "Sun, 14 Jan 2024 04:47:45 GMT", + "Set-Cookie": "csrftoken=RXxvdebyuk8O6royfz2bk3xExINtcDS57kAbXFrZ26thzNf8raXs4tzc4DRPzQRp; expires=Sun, 12 Jan 2025 04:47:45 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "07006d34-c73a-46df-b335-602109bb38fe", + "X-Request-ID": "f2244e77-3156-4bc2-9915-ca659d128379", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46228679, + "scan_id": 46454221, "score": 75, - "start_time": "Sun, 07 Jan 2024 04:53:15 GMT", + "start_time": "Sun, 14 Jan 2024 04:47:42 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -256900,7 +253266,7 @@ "data": { "csrftoken": { "domain": "partaj.beta.gouv.fr", - "expires": 1736053637, + "expires": 1736657265, "httponly": false, "max-age": null, "path": "/", @@ -257045,7 +253411,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-02T07:50:13Z", + "up_since": "2024-01-14T02:26:11Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -257057,8 +253423,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T09:01:41Z", - "next_check_at": "2024-01-07T09:06:41Z", + "last_check_at": "2024-01-14T08:39:29Z", + "next_check_at": "2024-01-14T08:44:26Z", "created_at": "2021-04-22T19:59:35Z", "mute_until": null, "favicon_url": null, @@ -257066,7 +253432,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T09:01:42Z", + "tested_at": "2024-01-14T08:34:32Z", "expires_at": "2024-03-21T21:47:08Z", "valid": true, "error": null @@ -257075,11 +253441,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 183, - "connection": 144, - "handshake": 152, - "response": 152, - "total": 629 + "namelookup": 180, + "connection": 148, + "handshake": 159, + "response": 163, + "total": 651 } }, "uptimeGrade": "A", @@ -257317,7 +253683,7 @@ "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -257457,7 +253823,7 @@ "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "74 >= 30 days" + "finding": "67 >= 30 days" }, { "id": "cert_notBefore", @@ -257660,7 +254026,7 @@ "ip": "partaj.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704617300" + "finding": "1705221091" }, { "id": "HSTS_time", @@ -258248,77 +254614,77 @@ }, { "id": "service", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -258326,7 +254692,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -258334,7 +254700,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -258342,7 +254708,7 @@ }, { "id": "cipherlist_LOW", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -258350,7 +254716,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -258358,7 +254724,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -258366,525 +254732,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "67 >= 30 days" }, { "id": "cert_notBefore", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-22 21:47" }, { "id": "cert_notAfter", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-21 21:47" }, { "id": "cert_extlifeSpan", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704617397" + "finding": "1705221145" }, { "id": "HSTS_time", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -258892,7 +255258,7 @@ }, { "id": "heartbleed", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -258901,7 +255267,7 @@ }, { "id": "CCS", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -258910,7 +255276,7 @@ }, { "id": "ticketbleed", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -258919,7 +255285,7 @@ }, { "id": "ROBOT", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -258928,7 +255294,7 @@ }, { "id": "secure_renego", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -258936,7 +255302,7 @@ }, { "id": "secure_client_renego", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -258945,7 +255311,7 @@ }, { "id": "CRIME_TLS", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -258954,7 +255320,7 @@ }, { "id": "BREACH", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -258963,7 +255329,7 @@ }, { "id": "POODLE_SSL", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -258972,14 +255338,14 @@ }, { "id": "fallback_SCSV", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -258988,7 +255354,7 @@ }, { "id": "FREAK", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -258997,7 +255363,7 @@ }, { "id": "DROWN", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -259006,7 +255372,7 @@ }, { "id": "DROWN_hint", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -259015,7 +255381,7 @@ }, { "id": "LOGJAM", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -259024,7 +255390,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -259033,7 +255399,7 @@ }, { "id": "BEAST", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -259042,7 +255408,7 @@ }, { "id": "LUCKY13", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -259051,7 +255417,7 @@ }, { "id": "winshock", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -259060,7 +255426,7 @@ }, { "id": "RC4", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -259069,392 +255435,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "partaj.beta.gouv.fr/80.247.13.145", + "ip": "partaj.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259462,7 +255828,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259470,7 +255836,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259478,7 +255844,7 @@ }, { "id": "cipherlist_LOW", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -259486,7 +255852,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -259494,7 +255860,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -259502,525 +255868,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "67 >= 30 days" }, { "id": "cert_notBefore", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-22 21:47" }, { "id": "cert_notAfter", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-21 21:47" }, { "id": "cert_extlifeSpan", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704617494" + "finding": "1705221200" }, { "id": "HSTS_time", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1/1 at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "banner_reverseproxy", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -260028,7 +256394,7 @@ }, { "id": "heartbleed", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -260037,7 +256403,7 @@ }, { "id": "CCS", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -260046,7 +256412,7 @@ }, { "id": "ticketbleed", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -260055,7 +256421,7 @@ }, { "id": "ROBOT", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -260064,7 +256430,7 @@ }, { "id": "secure_renego", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -260072,7 +256438,7 @@ }, { "id": "secure_client_renego", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -260081,7 +256447,7 @@ }, { "id": "CRIME_TLS", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -260090,7 +256456,7 @@ }, { "id": "BREACH", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -260099,7 +256465,7 @@ }, { "id": "POODLE_SSL", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -260108,14 +256474,14 @@ }, { "id": "fallback_SCSV", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -260124,7 +256490,7 @@ }, { "id": "FREAK", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -260133,7 +256499,7 @@ }, { "id": "DROWN", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -260142,7 +256508,7 @@ }, { "id": "DROWN_hint", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -260151,7 +256517,7 @@ }, { "id": "LOGJAM", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -260160,7 +256526,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -260169,7 +256535,7 @@ }, { "id": "BEAST", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -260178,7 +256544,7 @@ }, { "id": "LUCKY13", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -260187,7 +256553,7 @@ }, { "id": "winshock", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -260196,7 +256562,7 @@ }, { "id": "RC4", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -260205,315 +256571,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "partaj.beta.gouv.fr/148.253.96.193", + "ip": "partaj.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" @@ -260718,7 +257084,7 @@ "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -260865,7 +257231,7 @@ "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "74 >= 30 days" + "finding": "67 >= 30 days" }, { "id": "cert_notBefore", @@ -261068,7 +257434,7 @@ "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704617591" + "finding": "1705221254" }, { "id": "HSTS_time", @@ -261659,7 +258025,7 @@ "ip": "partaj.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "392" + "finding": "221" } ], "thirdparties": { @@ -261670,15 +258036,15 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/1ece6c2f-2fa1-4425-a3bb-c6be0432354a/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-8-46" + "url": "https://client.crisp.chat/settings/website/1ece6c2f-2fa1-4425-a3bb-c6be0432354a/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-8-30" }, { "type": "unknown", @@ -261686,16 +258052,16 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?e0efffc" } ], "cookies": [ { "name": "csrftoken", - "value": "ObbYHvVUvyG3cjlBdm4YSPGkRAQWpYxKJFyJ3VpHLPcaczwSksGvsB64gkVIs54k", + "value": "RPA624Gxo3FRkDvaExhyOjORfdjo4mANKOJAW7s8ZFxAAqvH6wzWgrNvbOLXRthn", "domain": "partaj.beta.gouv.fr", "path": "/", - "expires": 1736066813.220568, + "expires": 1736670638.760823, "size": 73, "httpOnly": false, "secure": true, @@ -261709,13 +258075,13 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 08:46:53 GMT", - "set-cookie": "csrftoken=ObbYHvVUvyG3cjlBdm4YSPGkRAQWpYxKJFyJ3VpHLPcaczwSksGvsB64gkVIs54k; expires=Sun, 05 Jan 2025 08:46:53 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "date": "Sun, 14 Jan 2024 08:30:38 GMT", + "set-cookie": "csrftoken=RPA624Gxo3FRkDvaExhyOjORfdjo4mANKOJAW7s8ZFxAAqvH6wzWgrNvbOLXRthn; expires=Sun, 12 Jan 2025 08:30:38 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "strict-transport-security": "max-age=31536000", "vary": "Cookie", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "5ae95d1b-f60b-4666-83a6-6af7dc4dc69b", + "x-request-id": "228a1a29-fe21-46bf-9642-a268ab38ee55", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -261797,7 +258163,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -261817,7 +258183,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -261949,7 +258315,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 08:46:11", + "@generated": "Sun, 14 Jan 2024 08:29:58", "site": [ { "@name": "https://partaj.beta.gouv.fr", @@ -262068,20 +258434,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -262096,30 +258465,27 @@ "type": "dns", "host": "partaj.beta.gouv.fr.", "matched-at": "partaj.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2024-01-07T08:54:58.929743399Z", + "timestamp": "2024-01-14T08:35:38.343346908Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -262129,32 +258495,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "partaj.beta.gouv.fr.", - "matched-at": "partaj.beta.gouv.fr", - "timestamp": "2024-01-07T08:54:59.04279457Z", + "matched-at": "_dmarc.partaj.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1;p=none;\"" + ], + "timestamp": "2024-01-14T08:35:38.490842049Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -262171,31 +258542,27 @@ "host": "partaj.beta.gouv.fr.", "matched-at": "partaj.beta.gouv.fr", "extracted-results": [ - "\"brevo-code:26b813dde72f6635200927081ab61ea3\"", - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2024-01-07T08:54:59.764322448Z", + "timestamp": "2024-01-14T08:35:38.494083153Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -262211,30 +258578,29 @@ "host": "partaj.beta.gouv.fr.", "matched-at": "partaj.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T08:55:00.033703148Z", + "timestamp": "2024-01-14T08:35:39.246094581Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "DNS TXT Record Detected", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "txt" ], - "description": "DNS DMARC information was detected.\n", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -262244,17 +258610,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "partaj.beta.gouv.fr.", - "matched-at": "_dmarc.partaj.beta.gouv.fr", + "matched-at": "partaj.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "\"v=spf1 include:_spf.alwaysdata.com ~all\"", + "\"brevo-code:26b813dde72f6635200927081ab61ea3\"" ], - "timestamp": "2024-01-07T08:55:00.035761024Z", + "timestamp": "2024-01-14T08:35:39.32925491Z", "matcher-status": true }, { @@ -262282,8 +258648,8 @@ "extracted-results": [ "GET, HEAD, OPTIONS" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:55:09.24023821Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:35:45.214697087Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262323,8 +258689,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:55:16.342421833Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:35:49.557497574Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262359,8 +258725,8 @@ "extracted-results": [ "https://be48f0adfc39472681ee7ff96bc88c99@o442012.ingest.sentry.io/5413011" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:55:16.344781167Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:35:49.559936515Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262392,12 +258758,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:56:04.064483908Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:36:20.739840416Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262429,12 +258795,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:56:04.064528982Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:36:20.739887925Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262466,12 +258832,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:56:04.064579958Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:36:20.739901751Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262503,12 +258869,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:56:04.064605746Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:36:20.739913423Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262540,12 +258906,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:56:04.064632025Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:36:20.739926377Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262577,12 +258943,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:56:04.064649909Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:36:20.739945933Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262614,12 +258980,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:56:04.064669035Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:36:20.740044501Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262651,12 +259017,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:56:04.064686247Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:36:20.740061382Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr'", "matcher-status": true }, @@ -262695,8 +259061,8 @@ "type": "http", "host": "https://partaj.beta.gouv.fr", "matched-at": "https://partaj.beta.gouv.fr/", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T08:56:38.956099895Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:36:42.551291314Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: partaj.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://partaj.beta.gouv.fr/'", "matcher-status": true }, @@ -262726,8 +259092,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T09:02:28.087509418Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:42:21.780200763Z", "matcher-status": true }, { @@ -262756,8 +259122,8 @@ "extracted-results": [ "partaj.beta.gouv.fr" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T09:02:28.087630133Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:42:21.780335744Z", "matcher-status": true }, { @@ -262787,8 +259153,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T09:02:30.31415985Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:42:23.427560839Z", "matcher-status": true }, { @@ -262818,8 +259184,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T09:02:30.668087174Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T08:42:23.621584437Z", "matcher-status": true } ], @@ -262827,7 +259193,7 @@ { "requestedUrl": "https://partaj.beta.gouv.fr/", "finalUrl": "https://partaj.beta.gouv.fr/", - "fetchTime": "2024-01-07T08:46:25.920Z", + "fetchTime": "2024-01-14T08:30:12.450Z", "runWarnings": [], "categories": { "performance": { @@ -262890,53 +259256,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7108, + "numericValue": 6949, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1302, - "firstMeaningfulPaint": 1810, - "largestContentfulPaint": 2085, - "interactive": 7108, - "speedIndex": 2244, - "totalBlockingTime": 297, - "maxPotentialFID": 485, - "cumulativeLayoutShift": 0.0034306377834743924, - "cumulativeLayoutShiftMainFrame": 0.0034306377834743924, - "totalCumulativeLayoutShift": 0.0034306377834743924, + "firstContentfulPaint": 1113, + "firstMeaningfulPaint": 1743, + "largestContentfulPaint": 1743, + "interactive": 6949, + "speedIndex": 1416, + "totalBlockingTime": 420, + "maxPotentialFID": 470, + "cumulativeLayoutShift": 0.0024551815456814235, + "cumulativeLayoutShiftMainFrame": 0.0024551815456814235, + "totalCumulativeLayoutShift": 0.0024551815456814235, "observedTimeOrigin": 0, - "observedTimeOriginTs": 374412441, + "observedTimeOriginTs": 369479309, "observedNavigationStart": 0, - "observedNavigationStartTs": 374412441, - "observedFirstPaint": 871, - "observedFirstPaintTs": 375283762, - "observedFirstContentfulPaint": 871, - "observedFirstContentfulPaintTs": 375283762, - "observedFirstContentfulPaintAllFrames": 871, - "observedFirstContentfulPaintAllFramesTs": 375283762, - "observedFirstMeaningfulPaint": 1400, - "observedFirstMeaningfulPaintTs": 375812802, - "observedLargestContentfulPaint": 1400, - "observedLargestContentfulPaintTs": 375812802, - "observedLargestContentfulPaintAllFrames": 1400, - "observedLargestContentfulPaintAllFramesTs": 375812802, - "observedTraceEnd": 3903, - "observedTraceEndTs": 378315189, - "observedLoad": 1595, - "observedLoadTs": 376007875, - "observedDomContentLoaded": 1552, - "observedDomContentLoadedTs": 375964633, - "observedCumulativeLayoutShift": 0.0034306377834743924, - "observedCumulativeLayoutShiftMainFrame": 0.0034306377834743924, - "observedTotalCumulativeLayoutShift": 0.0034306377834743924, - "observedFirstVisualChange": 872, - "observedFirstVisualChangeTs": 375284441, - "observedLastVisualChange": 2005, - "observedLastVisualChangeTs": 376417441, - "observedSpeedIndex": 1177, - "observedSpeedIndexTs": 375589642 + "observedNavigationStartTs": 369479309, + "observedFirstPaint": 497, + "observedFirstPaintTs": 369976098, + "observedFirstContentfulPaint": 497, + "observedFirstContentfulPaintTs": 369976098, + "observedFirstContentfulPaintAllFrames": 497, + "observedFirstContentfulPaintAllFramesTs": 369976098, + "observedFirstMeaningfulPaint": 796, + "observedFirstMeaningfulPaintTs": 370275671, + "observedLargestContentfulPaint": 790, + "observedLargestContentfulPaintTs": 370268953, + "observedLargestContentfulPaintAllFrames": 790, + "observedLargestContentfulPaintAllFramesTs": 370268953, + "observedTraceEnd": 3288, + "observedTraceEndTs": 372767059, + "observedLoad": 979, + "observedLoadTs": 370458221, + "observedDomContentLoaded": 946, + "observedDomContentLoadedTs": 370425536, + "observedCumulativeLayoutShift": 0.0024551815456814235, + "observedCumulativeLayoutShiftMainFrame": 0.0024551815456814235, + "observedTotalCumulativeLayoutShift": 0.0024551815456814235, + "observedFirstVisualChange": 505, + "observedFirstVisualChangeTs": 369984309, + "observedLastVisualChange": 1405, + "observedLastVisualChangeTs": 370884309, + "observedSpeedIndex": 673, + "observedSpeedIndexTs": 370152360 }, { "lcpInvalidated": false @@ -262958,19 +259324,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 486, + "numTasks": 477, "numTasksOver10ms": 2, "numTasksOver25ms": 1, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 8.772, - "throughput": 12235580.855024055, - "maxRtt": 133.826, - "maxServerLatency": 134.491, - "totalByteWeight": 1034162, - "totalTaskTime": 198.275, - "mainDocumentTransferSize": 3777 + "rtt": 5.703, + "throughput": 20068627.760139327, + "maxRtt": 81.229, + "maxServerLatency": 89.90999999999998, + "totalByteWeight": 1034169, + "totalTaskTime": 198.57699999999974, + "mainDocumentTransferSize": 3774 } ] } @@ -263106,38 +259472,38 @@ "http": { "url": "https://passculture.app", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 09:02:46 GMT", + "end_time": "Sun, 14 Jan 2024 08:41:01 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { + "Age": "0", + "Cache-Control": "public, max-age=3600", "Content-Encoding": "gzip", - "Content-Length": "8236", + "Content-Length": "8233", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 09:02:45 GMT", + "Date": "Sun, 14 Jan 2024 08:41:00 GMT", + "ETag": "W/\"3eada6ca5e6000b38208079422e1e952\"", + "Expires": "Sun, 14 Jan 2024 09:16:38 GMT", + "Last-Modified": "Wed, 10 Jan 2024 10:46:07 GMT", "Server": "Google Frontend", "Vary": "Accept-Encoding", "Via": "1.1 google", - "X-Cloud-Trace-Context": "bff53b625d8325b72132dfa9e074b6c6", + "X-Cloud-Trace-Context": "dd0908ad8670a99b8e7cab8701224409", "X-Powered-By": "Express", - "age": "1736", "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000, h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", - "cache-control": "public, max-age=3600", - "etag": "W/\"b9d4bae9fc4a2297d5d4458749b75cbf\"", - "expires": "Sun, 07 Jan 2024 09:33:49 GMT", - "last-modified": "Wed, 03 Jan 2024 11:25:45 GMT", - "x-goog-generation": "1704281145898582", - "x-goog-hash": "crc32c=kR/IJA==, md5=udS66fxKIpfV1EWHSbdcvw==", - "x-goog-meta-goog-reserved-file-mtime": "1704281114", + "x-goog-generation": "1704883567744745", + "x-goog-hash": "crc32c=DeNPiQ==, md5=Pq2myl5gALOCCAeUIuHpUg==", + "x-goog-meta-goog-reserved-file-mtime": "1704883537", "x-goog-metageneration": "1", "x-goog-storage-class": "STANDARD", "x-goog-stored-content-encoding": "identity", "x-goog-stored-content-length": "22408", - "x-guploader-uploadid": "ABPtcPrunvrlKSpnm54AxGh7dLgga4sgLco6pozpDaP7euuhgUfgrcCq5otw0fm-6nTbVzaETWXeC7swZTVJmsA" + "x-guploader-uploadid": "ABPtcPp9NnEcmLE3UODxW2YY17yR1g6fVLYVDUukFT9579BH2KahWUg5QuEN0-FcBza1MKeBFeTHigT1" }, - "scan_id": 46232073, + "scan_id": 46461047, "score": 55, - "start_time": "Sun, 07 Jan 2024 08:59:14 GMT", + "start_time": "Sun, 14 Jan 2024 08:40:59 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -263156,24 +259522,24 @@ "'none'" ], "script-src": [ - "'sha256-2okpzl87wqt94kg+jxsxyzikz3nnt0prjsiiohqurvu='", - "https://www.google.com/recaptcha/", - "https://oos.eu-west-2.outscale.com/public-ubble-ai/", - "https://www.googletagmanager.com", - "'sha256-nyrwihiwaw63qzgtxgqb8hick0zg41qybdtw+s7f+ue='", - "https://websdk.appsflyer.com", "https://accounts.google.com/gsi/client", + "'sha256-ubsranooyofjp7nk/gehsuwkrldqbqccv80qnjb+m4y='", "https://www.gstatic.com/recaptcha/", + "https://websdk.appsflyer.com", + "https://www.googletagmanager.com", "https://passculture.app/static/", + "'sha256-2okpzl87wqt94kg+jxsxyzikz3nnt0prjsiiohqurvu='", "*.youtube.com", + "'sha256-jrgjnrgzfvis35ctcz51cyyxzebgxekrkfczb+pd3cm='", + "https://oos.eu-west-2.outscale.com/public-ubble-ai/", + "https://www.google.com/recaptcha/", "'self'", - "'sha256-sxxkovfvqyew0lghj+a4h8ebzelujs5dr2qvklsuytm='", - "'sha256-jrgjnrgzfvis35ctcz51cyyxzebgxekrkfczb+pd3cm='" + "'sha256-sxxkovfvqyew0lghj+a4h8ebzelujs5dr2qvklsuytm='" ], "style-src": [ - "'unsafe-inline'", "'unsafe-eval'", - "'self'" + "'self'", + "'unsafe-inline'" ] }, "http": false, @@ -263541,7 +259907,7 @@ "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "OK", - "finding": "prime256v1" + "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", @@ -263554,8 +259920,8 @@ "id": "TLS_session_ticket", "ip": "passculture.app/34.111.135.217", "port": "443", - "severity": "LOW", - "finding": "valid for 100800 seconds (>daily)" + "severity": "INFO", + "finding": "valid for 7200 seconds only (= 60 days" }, { "id": "cert_notBefore", "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "2023-11-11 05:25" + "finding": "2024-01-08 11:55" }, { "id": "cert_notAfter", "ip": "passculture.app/34.111.135.217", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-09 06:19" + "severity": "OK", + "finding": "2024-04-07 12:48" }, { "id": "cert_extlifeSpan", @@ -263751,14 +260117,14 @@ "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "http://crls.pki.goog/gts1d4/zAUg34kyXVQ.crl" + "finding": "http://crls.pki.goog/gts1d4/mocb8gX3uX0.crl" }, { "id": "cert_ocspURL", "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "http://ocsp.pki.goog/s/gts1d4/IJybClAIgKU" + "finding": "http://ocsp.pki.goog/s/gts1d4/pYJ0oy5vrC4" }, { "id": "OCSP_stapling", @@ -263912,21 +260278,21 @@ "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "+1769 seconds from localtime" + "finding": "+3569 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "1704618213" + "finding": "1705221716" }, { "id": "HTTP_headerAge", "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "1784 seconds" + "finding": "3584 seconds" }, { "id": "HSTS", @@ -264099,7 +260465,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B67C005E9290DD211A62E27A42E6E8482E2D0E70C10DFAB77C608F5E0116F8D6" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=40D9B05A79AD2ED07E820C76CE0CAA3E5705AE15BD4524F905CC96F5B3D3844E" }, { "id": "LOGJAM", @@ -264335,7 +260701,7 @@ "ip": "passculture.app/34.111.135.217", "port": "443", "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", @@ -264553,7 +260919,7 @@ }, { "type": "google", - "url": "https://firebaseinstallations.googleapis.com/v1/projects/passculture-native/installations", + "url": "https://firebase.googleapis.com/v1alpha/projects/-/apps/1:605788939445:web:bb7dbdae56cd6eed29cafc/webConfig", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -264561,7 +260927,7 @@ }, { "type": "google", - "url": "https://firebase.googleapis.com/v1alpha/projects/-/apps/1:605788939445:web:bb7dbdae56cd6eed29cafc/webConfig", + "url": "https://firebaseinstallations.googleapis.com/v1/projects/passculture-native/installations", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -264602,28 +260968,28 @@ ], "cookies": [], "headers": { - "age": "463", + "age": "3236", "alt-svc": "h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\nh3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000", "cache-control": "public, max-age=3600", "content-encoding": "gzip", - "content-length": "8240", + "content-length": "8233", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 08:55:27 GMT", - "etag": "W/\"b9d4bae9fc4a2297d5d4458749b75cbf\"", - "expires": "Sun, 07 Jan 2024 09:55:27 GMT", - "last-modified": "Wed, 03 Jan 2024 11:25:45 GMT", + "date": "Sun, 14 Jan 2024 07:47:38 GMT", + "etag": "W/\"3eada6ca5e6000b38208079422e1e952\"", + "expires": "Sun, 14 Jan 2024 08:42:12 GMT", + "last-modified": "Wed, 10 Jan 2024 10:46:07 GMT", "server": "Google Frontend", "vary": "Accept-Encoding", "via": "1.1 google", - "x-cloud-trace-context": "7f03e6e475733c4a4880f545f920e029", - "x-goog-generation": "1704281145898582", - "x-goog-hash": "crc32c=kR/IJA==, md5=udS66fxKIpfV1EWHSbdcvw==", - "x-goog-meta-goog-reserved-file-mtime": "1704281114", + "x-cloud-trace-context": "a42d625260efe381aa0538004ebebce4;o=1", + "x-goog-generation": "1704883567744745", + "x-goog-hash": "crc32c=DeNPiQ==, md5=Pq2myl5gALOCCAeUIuHpUg==", + "x-goog-meta-goog-reserved-file-mtime": "1704883537", "x-goog-metageneration": "1", "x-goog-storage-class": "STANDARD", "x-goog-stored-content-encoding": "identity", "x-goog-stored-content-length": "22408", - "x-guploader-uploadid": "ABPtcPqsfK6hsF9KCe_Lhz21YDDlk7RtaJVplo6x_EehEMir_JkBNFl6U72gi6rTvag2uKE6HxeOhUrRpw", + "x-guploader-uploadid": "ABPtcPqvD99Q376yPUykhvY7yOQbMvfMA1ba-lqwx_x2T7erGOgBLOq33QKH2m2Z8t3B2H43Mg", "x-powered-by": "Express" }, "endpoints": [ @@ -264661,7 +261027,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -264685,7 +261051,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -264714,18 +261080,13 @@ }, { "hostname": "websdk.appsflyer.com", - "ip": "23.56.4.24", + "ip": "23.40.62.75", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 4744870, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "en": "Ashburn", + "ru": "Ашберн" } }, "continent": { @@ -264746,7 +261107,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -264758,19 +261119,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, - "time_zone": "America/Los_Angeles" + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" }, "postal": { - "code": "95141" + "code": "20149" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -264782,17 +261143,15 @@ }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 6254928, + "iso_code": "VA", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" } } ] @@ -264800,7 +261159,7 @@ }, { "hostname": "firebase.googleapis.com", - "ip": "172.217.12.138", + "ip": "142.251.16.95", "geoip": { "continent": { "code": "NA", @@ -264820,7 +261179,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -264840,7 +261199,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -264854,7 +261213,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.217.131", + "ip": "172.253.62.94", "geoip": { "continent": { "code": "NA", @@ -264874,7 +261233,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -264894,7 +261253,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -264965,7 +261324,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -264992,7 +261351,7 @@ }, { "hostname": "firebaseinstallations.googleapis.com", - "ip": "142.250.68.10", + "ip": "142.251.167.95", "geoip": { "continent": { "code": "NA", @@ -265012,7 +261371,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -265032,7 +261391,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -265046,7 +261405,7 @@ }, { "hostname": "www.googletagmanager.com", - "ip": "142.250.188.232", + "ip": "172.253.63.97", "geoip": { "continent": { "code": "NA", @@ -265066,7 +261425,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -265086,7 +261445,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -265100,7 +261459,7 @@ }, { "hostname": "firebaseremoteconfig.googleapis.com", - "ip": "142.250.68.106", + "ip": "172.253.62.95", "geoip": { "continent": { "code": "NA", @@ -265120,7 +261479,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -265140,7 +261499,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -265166,7 +261525,7 @@ "name": "Skolengo", "description": "Skolengo is an Education Management Software developed by Kosmos Education.", "confidence": 0, - "version": "1.272.1", + "version": "1.272.2", "icon": "Skolengo.svg", "website": "https://www.skolengo.com", "cpe": null, @@ -265189,7 +261548,7 @@ "name": "Fourthwall", "description": "Fourthwall helps to create and launch a branded website.", "confidence": 0, - "version": "1.272.1", + "version": "1.272.2", "icon": "Fourthwall.svg", "website": "https://fourthwall.com/", "cpe": null, @@ -265202,24 +261561,6 @@ ], "rootPath": true }, - { - "slug": "typo3-cms", - "name": "TYPO3 CMS", - "description": "TYPO3 is a free and open-source Web content management system written in PHP.", - "confidence": 100, - "version": null, - "icon": "TYPO3.svg", - "website": "https://typo3.org/", - "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", - "categories": [ - { - "id": 1, - "slug": "cms", - "name": "CMS" - } - ], - "rootPath": true - }, { "slug": "magento", "name": "Magento", @@ -265238,6 +261579,24 @@ ], "rootPath": true }, + { + "slug": "typo3-cms", + "name": "TYPO3 CMS", + "description": "TYPO3 is a free and open-source Web content management system written in PHP.", + "confidence": 100, + "version": null, + "icon": "TYPO3.svg", + "website": "https://typo3.org/", + "cpe": "cpe:2.3:a:typo3:typo3:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 1, + "slug": "cms", + "name": "CMS" + } + ], + "rootPath": true + }, { "slug": "sentry", "name": "Sentry", @@ -265696,7 +262055,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 08:57:15", + "@generated": "Sun, 14 Jan 2024 08:39:02", "site": [ { "@name": "https://passculture.app", @@ -265725,6 +262084,13 @@ "riskdesc": "Medium (High)", "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, + { + "name": "Content Security Policy (CSP) Header Not Set", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, { "name": "Missing Anti-clickjacking Header", "riskcode": "2", @@ -265857,22 +262223,23 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "txt" + "dmarc" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -265882,41 +262249,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "passculture.app.", - "matched-at": "passculture.app", + "matched-at": "_dmarc.passculture.app", "extracted-results": [ - "\"Sendinblue-code:db859332ef41c5c27ddda0f7bc9f207b\"", - "\"google-site-verification=eoK_L51PR68RHASVE8XL-CG7bm2t3r-1XySHi7-sf8I\"", - "\"1|www.passculture.app\"", - "\"google-site-verification=FmDNO4ID39rb64RGof01WgvtQQOkyZ7Jac5jbGsi9lM\"", - "\"v=spf1 include:_spf.google.com include:mail.zendesk.com include:spf.sendinblue.com include:spf.brevo.com mx ~all\"", - "\"google-site-verification=S54YVtgIBTdOt5BAOyZUip_y_VryaRrVA_fwHUwaJ4Y\"" + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2024-01-07T09:05:57.765131976Z", + "timestamp": "2024-01-14T08:44:17.670952349Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "CAA Record", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "caa" ], - "description": "DNS DMARC information was detected.\n", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -265926,34 +262288,30 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "passculture.app.", - "matched-at": "_dmarc.passculture.app", - "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" - ], - "timestamp": "2024-01-07T09:05:57.766280685Z", + "matched-at": "passculture.app", + "timestamp": "2024-01-14T08:44:17.680240369Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-service-detector.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-service-detector", + "template-id": "mx-service-detector", + "template-path": "/home/runner/nuclei-templates/dns/mx-service-detector.yaml", "info": { - "name": "NS Record Detection", + "name": "Email Service Detector", "author": [ - "pdteam" + "binaryfigments" ], "tags": [ "dns", - "ns" + "service" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "description": "An email service was detected. Check the email service or spam filter that is used for a domain.", "severity": "info", "metadata": { "max-request": 1 @@ -265965,35 +262323,31 @@ ] } }, + "matcher-name": "Google Apps", "type": "dns", "host": "passculture.app.", "matched-at": "passculture.app", - "extracted-results": [ - "ns-cloud-b2.googledomains.com.", - "ns-cloud-b1.googledomains.com.", - "ns-cloud-b4.googledomains.com.", - "ns-cloud-b3.googledomains.com." - ], - "timestamp": "2024-01-07T09:05:57.77852674Z", + "timestamp": "2024-01-14T08:44:17.683669401Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -266009,24 +262363,34 @@ "type": "dns", "host": "passculture.app.", "matched-at": "passculture.app", - "timestamp": "2024-01-07T09:05:57.786775768Z", + "extracted-results": [ + "5 alt1.aspmx.l.google.com.", + "1 aspmx.l.google.com.", + "5 alt2.aspmx.l.google.com.", + "10 alt4.aspmx.l.google.com.", + "10 alt3.aspmx.l.google.com." + ], + "timestamp": "2024-01-14T08:44:17.683718998Z", "matcher-status": true }, { - "template": "dns/mx-service-detector.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-service-detector", - "template-id": "mx-service-detector", - "template-path": "/home/runner/nuclei-templates/dns/mx-service-detector.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "Email Service Detector", + "name": "DNS TXT Record Detected", "author": [ - "binaryfigments" + "pdteam" ], "tags": [ "dns", - "service" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An email service was detected. Check the email service or spam filter that is used for a domain.", "severity": "info", "metadata": { "max-request": 1 @@ -266038,32 +262402,35 @@ ] } }, - "matcher-name": "Google Apps", "type": "dns", "host": "passculture.app.", "matched-at": "passculture.app", - "timestamp": "2024-01-07T09:05:57.821215875Z", + "extracted-results": [ + "\"Sendinblue-code:db859332ef41c5c27ddda0f7bc9f207b\"", + "\"v=spf1 include:_spf.google.com include:mail.zendesk.com include:spf.sendinblue.com include:spf.brevo.com mx ~all\"", + "\"google-site-verification=FmDNO4ID39rb64RGof01WgvtQQOkyZ7Jac5jbGsi9lM\"", + "\"google-site-verification=eoK_L51PR68RHASVE8XL-CG7bm2t3r-1XySHi7-sf8I\"", + "\"1|www.passculture.app\"", + "\"google-site-verification=S54YVtgIBTdOt5BAOyZUip_y_VryaRrVA_fwHUwaJ4Y\"" + ], + "timestamp": "2024-01-14T08:44:18.668043825Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -266079,13 +262446,12 @@ "host": "passculture.app.", "matched-at": "passculture.app", "extracted-results": [ - "10 alt3.aspmx.l.google.com.", - "5 alt2.aspmx.l.google.com.", - "1 aspmx.l.google.com.", - "5 alt1.aspmx.l.google.com.", - "10 alt4.aspmx.l.google.com." + "ns-cloud-b1.googledomains.com.", + "ns-cloud-b2.googledomains.com.", + "ns-cloud-b4.googledomains.com.", + "ns-cloud-b3.googledomains.com." ], - "timestamp": "2024-01-07T09:05:57.821307814Z", + "timestamp": "2024-01-14T08:44:18.71193194Z", "matcher-status": true }, { @@ -266114,7 +262480,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:12.0065521Z", + "timestamp": "2024-01-14T08:44:29.807512946Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266142,7 +262508,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:12.00666428Z", + "timestamp": "2024-01-14T08:44:29.807619027Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266171,7 +262537,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:12.006737147Z", + "timestamp": "2024-01-14T08:44:29.80768935Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266198,7 +262564,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:37.855940203Z", + "timestamp": "2024-01-14T08:44:53.415160445Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266235,7 +262601,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311520522Z", + "timestamp": "2024-01-14T08:44:59.823020892Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266267,12 +262633,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311559074Z", + "timestamp": "2024-01-14T08:44:59.823079763Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266309,7 +262675,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311570686Z", + "timestamp": "2024-01-14T08:44:59.823096555Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266341,12 +262707,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "referrer-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311587046Z", + "timestamp": "2024-01-14T08:44:59.823114999Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266378,12 +262744,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311602515Z", + "timestamp": "2024-01-14T08:44:59.823129166Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266415,12 +262781,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311616281Z", + "timestamp": "2024-01-14T08:44:59.823145327Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266452,12 +262818,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311629395Z", + "timestamp": "2024-01-14T08:44:59.823159474Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266489,12 +262855,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311643081Z", + "timestamp": "2024-01-14T08:44:59.823180012Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266526,12 +262892,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311681362Z", + "timestamp": "2024-01-14T08:44:59.823216722Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266563,12 +262929,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311697242Z", + "timestamp": "2024-01-14T08:44:59.823231049Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266600,12 +262966,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://passculture.app", "matched-at": "https://passculture.app", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:45.311733139Z", + "timestamp": "2024-01-14T08:44:59.823247239Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app'", "matcher-status": true }, @@ -266647,8 +263013,8 @@ "extracted-results": [ "571480c1-c976-4c72-a441-44a7bd850c9a" ], - "ip": "20.190.151.131", - "timestamp": "2024-01-07T09:06:47.356735941Z", + "ip": "20.190.190.193", + "timestamp": "2024-01-14T08:45:01.569661586Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: login.microsoftonline.com' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://login.microsoftonline.com:443/passculture.app/v2.0/.well-known/openid-configuration'", "matcher-status": true }, @@ -266676,7 +263042,7 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app/robots.txt", "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:57.285610934Z", + "timestamp": "2024-01-14T08:45:12.292088935Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app/robots.txt'", "matcher-status": true }, @@ -266714,7 +263080,7 @@ " mailto:ssi@passculture.app" ], "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:06:57.372927675Z", + "timestamp": "2024-01-14T08:45:12.370042657Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app/.well-known/security.txt'", "matcher-status": true }, @@ -266752,15 +263118,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantName", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "false" + "" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:06:58.198546495Z", + "timestamp": "2024-01-14T08:45:12.661327621Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -266798,15 +263164,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "nameServers", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "client transfer prohibited" + "ns-cloud-b1.googledomains.com", + "ns-cloud-b2.googledomains.com", + "ns-cloud-b3.googledomains.com", + "ns-cloud-b4.googledomains.com" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:06:58.19859225Z", + "timestamp": "2024-01-14T08:45:12.661362026Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -266844,15 +263213,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "secureDNS", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "2019-03-14T16:23:30.938Z" + "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:06:58.198608601Z", + "timestamp": "2024-01-14T08:45:12.661374981Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -266890,15 +263259,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "status", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "2023-06-01T09:56:12.261Z" + "client transfer prohibited" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:06:58.198623869Z", + "timestamp": "2024-01-14T08:45:12.66139058Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -266936,15 +263305,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "registrationDate", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "2026-03-14T16:23:30.938Z" + "2019-03-14T16:23:30.938Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:06:58.198637394Z", + "timestamp": "2024-01-14T08:45:12.661407222Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -266982,15 +263351,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "" + "2023-06-01T09:56:12.261Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:06:58.1986513Z", + "timestamp": "2024-01-14T08:45:12.661421849Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -267028,18 +263397,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "expirationDate", "type": "http", "host": "https://passculture.app", "matched-at": "https://www.registry.google/rdap/domain/passculture.app", "extracted-results": [ - "ns-cloud-b1.googledomains.com", - "ns-cloud-b2.googledomains.com", - "ns-cloud-b3.googledomains.com", - "ns-cloud-b4.googledomains.com" + "2026-03-14T16:23:30.938Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:06:58.198999119Z", + "timestamp": "2024-01-14T08:45:12.661434493Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.app'", "matcher-status": true }, @@ -267073,11 +263439,11 @@ "host": "https://passculture.app", "matched-at": "https://passculture.app/", "extracted-results": [ - "https://passculture.app/static/js/2.a236f3f0.chunk.js", - "https://passculture.app/static/js/main.73cf362c.chunk.js" + "https://passculture.app/static/js/2.0b508592.chunk.js", + "https://passculture.app/static/js/main.ab8b8bb0.chunk.js" ], "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:07:03.126420035Z", + "timestamp": "2024-01-14T08:45:18.098852911Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: passculture.app' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.app/'", "matcher-status": true }, @@ -267108,7 +263474,7 @@ "Google Trust Services LLC" ], "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:08:50.214265428Z", + "timestamp": "2024-01-14T08:47:04.570307505Z", "matcher-status": true }, { @@ -267138,7 +263504,7 @@ "passculture.app" ], "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:08:50.214392726Z", + "timestamp": "2024-01-14T08:47:04.570444414Z", "matcher-status": true }, { @@ -267169,7 +263535,7 @@ "tls12" ], "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:08:50.465441569Z", + "timestamp": "2024-01-14T08:47:04.801988521Z", "matcher-status": true }, { @@ -267200,7 +263566,7 @@ "tls13" ], "ip": "34.111.135.217", - "timestamp": "2024-01-07T09:08:50.500701444Z", + "timestamp": "2024-01-14T08:47:04.832286451Z", "matcher-status": true } ], @@ -267208,7 +263574,7 @@ { "requestedUrl": "https://passculture.app/", "finalUrl": "https://passculture.app/", - "fetchTime": "2024-01-07T08:57:30.372Z", + "fetchTime": "2024-01-14T08:39:17.010Z", "runWarnings": [ "The page loaded too slowly to finish within the time limit. Results may be incomplete." ], @@ -267221,7 +263587,7 @@ "snapshot" ], "id": "performance", - "score": 0.05 + "score": 0.5 }, "accessibility": { "title": "Accessibility", @@ -267232,7 +263598,7 @@ "snapshot" ], "id": "accessibility", - "score": 0.85 + "score": 0.87 }, "best-practices": { "title": "Best Practices", @@ -267273,53 +263639,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 19049, + "numericValue": 18644, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 782, - "firstMeaningfulPaint": 13988, - "largestContentfulPaint": 21305, - "interactive": 19049, - "speedIndex": 11649, - "totalBlockingTime": 3136, - "maxPotentialFID": 1525, - "cumulativeLayoutShift": 0.12510701497395835, - "cumulativeLayoutShiftMainFrame": 0.12510701497395835, - "totalCumulativeLayoutShift": 0.12510701497395835, + "firstContentfulPaint": 780, + "firstMeaningfulPaint": 13943, + "largestContentfulPaint": 17869, + "interactive": 18644, + "speedIndex": 11847, + "totalBlockingTime": 3681, + "maxPotentialFID": 1630, + "cumulativeLayoutShift": 0.12957899305555556, + "cumulativeLayoutShiftMainFrame": 0.12957899305555556, + "totalCumulativeLayoutShift": 0.12957899305555556, "observedTimeOrigin": 0, - "observedTimeOriginTs": 363015349, + "observedTimeOriginTs": 486118602, "observedNavigationStart": 0, - "observedNavigationStartTs": 363015349, - "observedFirstPaint": 113, - "observedFirstPaintTs": 363127903, - "observedFirstContentfulPaint": 113, - "observedFirstContentfulPaintTs": 363127903, - "observedFirstContentfulPaintAllFrames": 113, - "observedFirstContentfulPaintAllFramesTs": 363127903, - "observedFirstMeaningfulPaint": 911, - "observedFirstMeaningfulPaintTs": 363926419, - "observedLargestContentfulPaint": 4419, - "observedLargestContentfulPaintTs": 367434732, - "observedLargestContentfulPaintAllFrames": 4419, - "observedLargestContentfulPaintAllFramesTs": 367434732, + "observedNavigationStartTs": 486118602, + "observedFirstPaint": 122, + "observedFirstPaintTs": 486240503, + "observedFirstContentfulPaint": 122, + "observedFirstContentfulPaintTs": 486240503, + "observedFirstContentfulPaintAllFrames": 122, + "observedFirstContentfulPaintAllFramesTs": 486240503, + "observedFirstMeaningfulPaint": 1264, + "observedFirstMeaningfulPaintTs": 487383082, + "observedLargestContentfulPaint": 1461, + "observedLargestContentfulPaintTs": 487579555, + "observedLargestContentfulPaintAllFrames": 1461, + "observedLargestContentfulPaintAllFramesTs": 487579555, "observedTraceEnd": 45011, - "observedTraceEndTs": 408026592, - "observedLoad": 2067, - "observedLoadTs": 365081960, - "observedDomContentLoaded": 646, - "observedDomContentLoadedTs": 363661005, - "observedCumulativeLayoutShift": 0.12510701497395835, - "observedCumulativeLayoutShiftMainFrame": 0.12510701497395835, - "observedTotalCumulativeLayoutShift": 0.12510701497395835, - "observedFirstVisualChange": 753, - "observedFirstVisualChangeTs": 363768349, - "observedLastVisualChange": 4419, - "observedLastVisualChangeTs": 367434349, - "observedSpeedIndex": 1191, - "observedSpeedIndexTs": 364205931 + "observedTraceEndTs": 531129844, + "observedLoad": 752, + "observedLoadTs": 486870423, + "observedDomContentLoaded": 752, + "observedDomContentLoadedTs": 486870153, + "observedCumulativeLayoutShift": 0.12957899305555556, + "observedCumulativeLayoutShiftMainFrame": 0.12957899305555556, + "observedTotalCumulativeLayoutShift": 0.12957899305555556, + "observedFirstVisualChange": 95, + "observedFirstVisualChangeTs": 486213602, + "observedLastVisualChange": 2961, + "observedLastVisualChangeTs": 489079602, + "observedSpeedIndex": 1332, + "observedSpeedIndexTs": 487450168 }, { "lcpInvalidated": false @@ -267337,23 +263703,23 @@ "type": "debugdata", "items": [ { - "numRequests": 59, + "numRequests": 48, "numScripts": 6, "numStylesheets": 0, "numFonts": 6, - "numTasks": 9861, + "numTasks": 9346, "numTasksOver10ms": 43, - "numTasksOver25ms": 16, - "numTasksOver50ms": 5, - "numTasksOver100ms": 1, + "numTasksOver25ms": 20, + "numTasksOver50ms": 7, + "numTasksOver100ms": 2, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 685353.9726330487, - "maxRtt": 151.12, - "maxServerLatency": 307.8430000000001, - "totalByteWeight": 3917126, - "totalTaskTime": 7202.202999999697, - "mainDocumentTransferSize": 8836 + "throughput": 656064.7947092776, + "maxRtt": 85.113, + "maxServerLatency": 442.21200000000005, + "totalByteWeight": 3706737, + "totalTaskTime": 6179.406999999787, + "mainDocumentTransferSize": 8827 } ] } @@ -267459,16 +263825,16 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-02-09T06:19:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-04-07T12:48:00.000Z", "testsslGrade": "A", "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "F", "trackersCount": 15, - "lighthouse_performance": 0.05, - "lighthouse_performanceGrade": "F", - "lighthouse_accessibility": 0.85, + "lighthouse_performance": 0.5, + "lighthouse_performanceGrade": "D", + "lighthouse_accessibility": 0.87, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.83, "lighthouse_best-practicesGrade": "B", @@ -267495,7 +263861,7 @@ "http": { "url": "https://backend.passculture.pro", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 09:04:08 GMT", + "end_time": "Sun, 14 Jan 2024 08:53:39 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -267503,15 +263869,15 @@ "Connection": "keep-alive", "Content-Length": "3", "Content-Type": "application/json", - "Date": "Sun, 07 Jan 2024 09:04:08 GMT", + "Date": "Sun, 14 Jan 2024 08:53:38 GMT", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46232099, + "scan_id": 46461721, "score": 75, - "start_time": "Sun, 07 Jan 2024 09:04:05 GMT", + "start_time": "Sun, 14 Jan 2024 08:53:34 GMT", "state": "FINISHED", "status_code": 404, "tests_failed": 1, @@ -268052,7 +264418,7 @@ "ip": "backend.passculture.pro/34.76.99.202", "port": "443", "severity": "OK", - "finding": "267 >= 60 days" + "finding": "260 >= 60 days" }, { "id": "cert_notBefore", @@ -268213,7 +264579,7 @@ "ip": "backend.passculture.pro/34.76.99.202", "port": "443", "severity": "INFO", - "finding": "1704618354" + "finding": "1705222487" }, { "id": "HSTS_time", @@ -268790,7 +265156,7 @@ "ip": "backend.passculture.pro/34.76.99.202", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "50" } ], "thirdparties": { @@ -268799,7 +265165,7 @@ "headers": { "content-length": "3", "content-type": "application/json", - "date": "Sun, 07 Jan 2024 09:04:43 GMT", + "date": "Sun, 14 Jan 2024 08:54:09 GMT", "strict-transport-security": "max-age=15724800; includeSubDomains", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", @@ -268865,7 +265231,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -268922,7 +265288,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 09:03:35", + "@generated": "Sun, 14 Jan 2024 08:53:05", "site": [ { "@name": "https://backend.passculture.pro", @@ -269002,7 +265368,7 @@ "type": "dns", "host": "backend.passculture.pro.", "matched-at": "backend.passculture.pro", - "timestamp": "2024-01-07T09:07:24.657730255Z", + "timestamp": "2024-01-14T08:56:02.169265379Z", "matcher-status": true }, { @@ -269042,7 +265408,7 @@ "1; mode=block" ], "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:07:43.907593909Z", + "timestamp": "2024-01-14T08:56:14.376159462Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -269074,12 +265440,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:08:33.960017648Z", + "timestamp": "2024-01-14T08:56:48.679209172Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -269111,12 +265477,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:08:33.960062432Z", + "timestamp": "2024-01-14T08:56:48.679259666Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -269148,12 +265514,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:08:33.960080616Z", + "timestamp": "2024-01-14T08:56:48.679282599Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -269185,12 +265551,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:08:33.960096937Z", + "timestamp": "2024-01-14T08:56:48.679302946Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -269222,12 +265588,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:08:33.960111575Z", + "timestamp": "2024-01-14T08:56:48.679318736Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -269259,12 +265625,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:08:33.960124359Z", + "timestamp": "2024-01-14T08:56:48.679330578Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -269296,12 +265662,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:08:33.960135981Z", + "timestamp": "2024-01-14T08:56:48.679350685Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -269333,12 +265699,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://backend.passculture.pro", "matched-at": "https://backend.passculture.pro", "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:08:33.960150137Z", + "timestamp": "2024-01-14T08:56:48.679371444Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://backend.passculture.pro'", "matcher-status": true }, @@ -269369,7 +265735,7 @@ "Gandi" ], "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:11:00.263821764Z", + "timestamp": "2024-01-14T08:58:53.455951504Z", "matcher-status": true }, { @@ -269396,12 +265762,12 @@ "host": "backend.passculture.pro", "matched-at": "backend.passculture.pro:443", "extracted-results": [ - "backend.passculture.beta.gouv.fr", "backend.passculture.pro", - "backend.passculture.app" + "backend.passculture.app", + "backend.passculture.beta.gouv.fr" ], "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:11:00.263951679Z", + "timestamp": "2024-01-14T08:58:53.456066708Z", "matcher-status": true }, { @@ -269432,7 +265798,7 @@ "tls12" ], "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:11:02.874738867Z", + "timestamp": "2024-01-14T08:58:55.106901724Z", "matcher-status": true }, { @@ -269463,7 +265829,7 @@ "tls13" ], "ip": "34.76.99.202", - "timestamp": "2024-01-07T09:11:03.275617294Z", + "timestamp": "2024-01-14T08:58:55.316781351Z", "matcher-status": true } ], @@ -269592,7 +265958,7 @@ "http": { "url": "https://passculture.pro", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 09:14:38 GMT", + "end_time": "Sun, 14 Jan 2024 08:57:34 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -269601,22 +265967,22 @@ "Cache-Control": "max-age=3600", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "745", + "Content-Length": "748", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 09:14:38 GMT", - "Etag": "\"d820c1131155b7248ea39c2aeff2279e7fc44c870dc9d69aac611f3db2bdf66d\"", - "Last-Modified": "Thu, 04 Jan 2024 09:41:15 GMT", + "Date": "Sun, 14 Jan 2024 08:57:33 GMT", + "Etag": "\"dae4df2cbdca3018ea9e7d014b81f82cd79d9b9eb208246357b296147ec34fe7\"", + "Last-Modified": "Mon, 08 Jan 2024 13:27:49 GMT", "Strict-Transport-Security": "max-age=31556926", "Vary": "x-fh-requested-host, accept-encoding", "X-Cache": "HIT", "X-Cache-Hits": "1", - "X-Served-By": "cache-sjc1000123-SJC", - "X-Timer": "S1704618878.316810,VS0,VE1", + "X-Served-By": "cache-pao-kpao1770033-PAO", + "X-Timer": "S1705222654.863572,VS0,VE3", "alt-svc": "h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400" }, - "scan_id": 46232161, + "scan_id": 46461937, "score": 45, - "start_time": "Sun, 07 Jan 2024 09:14:36 GMT", + "start_time": "Sun, 14 Jan 2024 08:57:32 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -269629,21 +265995,21 @@ "output": { "data": { "default-src": [ - "https://*.hotjar.io", - "blob:", - "wss://*.hotjar.com", - "gap://ready", "https://*.hotjar.com:*", "http:", + "gap://ready", "data:", + "blob:", + "https://*.hotjar.io", "https:", - "'self'" + "'self'", + "wss://*.hotjar.com" ], "style-src": [ - "https://app.getbeamer.com/styles/beamer-embed.css", - "'unsafe-inline'", "https://fonts.googleapis.com/css", - "'self'" + "'self'", + "'unsafe-inline'", + "https://app.getbeamer.com/styles/beamer-embed.css" ] }, "http": false, @@ -269838,1137 +266204,7 @@ }, "dependabot": null, "codescan": null, - "testssl": [ - { - "id": "service", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "LOW", - "cwe": "CWE-310", - "finding": "offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "server -- TLS 1.3 client determined" - }, - { - "id": "FS", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" - }, - { - "id": "FS_ECDHE_curves", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" - }, - { - "id": "TLS_session_ticket", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "valid for 7200 seconds only (", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFjDCCA3SgAwIBAgINAgCOsgIzNmWLZM3bmzANBgkqhkiG9w0BAQsFADBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjEwHhcNMjAwODEzMDAwMDQyWhcNMjcwOTMwMDAwMDQyWjBGMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzETMBEGA1UEAxMKR1RTIENBIDFENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKvAqqPCE27l0w9zC8dTPIE89bA+xTmDaG7y7VfQ4c+mOWhlUebUQpK0yv2r678RJExK0HWDjeq+nLIHN1Em5j6rARZixmyRSjhIR0KOQPGBMUldsaztIIJ7O0g/82qj/vGDl//3t4tTqxiRhLQnTLXJdeB+2DhkdU6IIgx6wN7E5NcUH3Rcsejcqj8p5Sj19vBm6i1FhqLGymhMFroWVUGO3xtIH91dsgy4eFKcfKVLWK3o2190Q0Lm/SiKmLbRJ5Au4y1euFJm2JM9eB84Fkqa3ivrXWUeVtye0CQdKvsY2FkazvxtxvusLJzLWYHk55zcRAacDA2SeEtBbQfD1qsCAwEAAaOCAXYwggFyMA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEgYDVR0TAQH/BAgwBgEB/wIBADAdBgNVHQ4EFgQUJeIYDrJXkZQq5dRdhpCD3lOzuJIwHwYDVR0jBBgwFoAU5K8rJnEaK0gnhS9SZizv8IkTcT4waAYIKwYBBQUHAQEEXDBaMCYGCCsGAQUFBzABhhpodHRwOi8vb2NzcC5wa2kuZ29vZy9ndHNyMTAwBggrBgEFBQcwAoYkaHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzcjEuZGVyMDQGA1UdHwQtMCswKaAnoCWGI2h0dHA6Ly9jcmwucGtpLmdvb2cvZ3RzcjEvZ3RzcjEuY3JsME0GA1UdIARGMEQwCAYGZ4EMAQIBMDgGCisGAQQB1nkCBQMwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly9wa2kuZ29vZy9yZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAgEAIVToy24jwXUr0rAPc924vuSVbKQuYw3nLflLfLh5AYWEeVl/Du18QAWUMdcJ6o/qFZbhXkBH0PNcw97thaf2BeoDYY9Ck/b+UGluhx06zd4EBf7H9P84nnrwpR+4GBDZK+Xh3I0tqJy2rgOqNDflr5IMQ8ZTWA3yltakzSBKZ6XpF0PpqyCRvp/NCGv2KX2TuPCJvscp1/m2pVTtyBjYPRQ+QuCQGAJKjtN7R5DFrfTqMWvYgVlpCJBkwlu7+7KY3cTIfzE7cmALskMKNLuDz+RzCcsYTsVaU7Vp3xL60OYhqFkuAOOxDZ6pHOj9+OJmYgPmOT4X3+7L51fXJyRH9KfLRP6nT31D5nmsGAOgZ26/8T9hsBW1uo9ju5fZLZXVVS5H0HyIBMEKyGMIPhFWrlt/hFS28N1zaKI0ZBGD3gYgDLbiDT9fGXstpk+Fmc4olVlWPzXe81vdoEnFbr5M272HdgJWo+WhT9BYM0Ji+wdVmnRffXgloEoluTNcWzc41dFpgJu8fF3LG0gl2ibSYiCi9a6hvU0TppjJyIWXhkJTcMJlPrWx1VytEUGrX2l0JDwRjW/656r0KVB02xHRKvm2ZKI03TglLIpmVCK3kBKkKNpBNkFt8rhafcCKOb9Jx/9tpNFlQTl7B39rJlJWkR17QnZqVptFePFORoZmFzM=\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "64E286B76063602A372EFD60CDE8DB2656A49EE15E84254B3D6EB5FE38F4288B" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "2020-08-13 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "2027-09-30 00:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "GTS CA 1D4 <-- GTS Root R1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFYjCCBEqgAwIBAgIQd70NbNs2+RrqIQ/E8FjTDTANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIwMDYxOTAwMDA0MloXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFIxMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAthECix7joXebO9y/lD63ladAPKH9gvl9MgaCcfb2jH/76Nu8ai6Xl6OMS/kr9rH5zoQdsfnFl97vufKj6bwSiV6nqlKr+CMny6SxnGPb15l+8Ape62im9MZaRw1NEDPjTrETo8gYbEvs/AmQ351kKSUjB6G00j0uYODP0gmHu81I8E3CwnqIiru6z1kZ1q+PsAewnjHxgsHA3y6mbWwZDrXYfiYaRQM9sHmklCitD38m5agI/pboPGiUU+6DOogrFZYJsuB6jC511pzrp1Zkj5ZPaK49l8KEj8C8QMALXL32h7M1bKwYUH+E4EzNktMg6TO8UpmvMrUpsyUqtEj5cuHKZPfmghCN6J3Cioj6OGaK/GP5Afl4/Xtcd/p2h/rs37EOeZVXtL0m79YB0esWCruOC7XFxYpVq9Os6pFLKcwZpDIlTirxZUTQAs6qzkm06p98g7BAe+dDq6dso499iYH6TKX/1Y7DzkvgtdizjkXPdsDtQCv9Uw+wp9U7DbGKogPeMa3Md+pvez7W35EiEua++tgy/BBjFFFy3l3WFpO9KWgz7zpm7AeKJt8T11dleCfeXkkUAKIAf5qoIbapsZWwpbkNFhHax2xIPEDgfg1azVY80ZcFuctL7TlLnMQ/0lUTbiSw1nH69MG6zO0b9f6BQdgAmD06yK56mDcYBZUCAwEAAaOCATgwggE0MA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTkrysmcRorSCeFL1JmLO/wiRNxPjAfBgNVHSMEGDAWgBRge2YaRQ2XyolQL30EzTSo//z9SzBgBggrBgEFBQcBAQRUMFIwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnBraS5nb29nL2dzcjEwKQYIKwYBBQUHMAKGHWh0dHA6Ly9wa2kuZ29vZy9nc3IxL2dzcjEuY3J0MDIGA1UdHwQrMCkwJ6AloCOGIWh0dHA6Ly9jcmwucGtpLmdvb2cvZ3NyMS9nc3IxLmNybDA7BgNVHSAENDAyMAgGBmeBDAECATAIBgZngQwBAgIwDQYLKwYBBAHWeQIFAwIwDQYLKwYBBAHWeQIFAwMwDQYJKoZIhvcNAQELBQADggEBADSkHrEoo9C0dhemMXoh6dFSPsjbdBZBiLg9NR3t5P+T4Vxfq7vqfM/b5A3Ri1fyJm9bvhdGaJQ3b2t6yMAYN/olUazsaL+yyEn9WprKASOshIArAoyZl+tJaox118fessmXn1hIVw41oeQa1v1vg4Fv74zPl6/AhSrw9U5pCZEt4Wi4wStz6dTZ/CLANx8LZh1J7QJVj2fhMtfTJr9w4z30Z209fOU0iOMy+qduBmpvvYuR7hZL6Dupszfnw0Skfths18dG9ZKb59UhvmaSGZRVbNQpsg3BZlvid0lIKO2d1xozclOzgjXPYovJJIultzkMu34qQb9Sz/yilrbCgj8=\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "2020-06-19 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "2028-01-28 00:00" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "GTS Root R1 <-- GlobalSign Root CA" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "1704618946" - }, - { - "id": "HSTS_time", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "365 days (=31556926 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Served-By", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "cache-chi-kigq8000118-CHI" - }, - { - "id": "Cache-Control", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "max-age=3600" - }, - { - "id": "banner_reverseproxy", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "X-Cache: HITX-Cache-Hits: 1" - }, - { - "id": "heartbleed", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable" - }, - { - "id": "secure_renego", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, br gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8D693C505518273727414B9750FCF287DCEB377A4967A7A7A0DDCF6C8AADFF6C" - }, - { - "id": "LOGJAM", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "no DH key with <= TLS 1.2" - }, - { - "id": "BEAST", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "LOW", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "potentially vulnerable, uses TLS CBC ciphers" - }, - { - "id": "winshock", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_81", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_90", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_X", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_11", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-android_12", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-java1102", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-java1703", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-go_1178", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" - }, - { - "id": "rating_spec", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "OK", - "finding": "A+" - }, - { - "id": "scanTime", - "ip": "passculture.pro/199.36.158.100", - "port": "443", - "severity": "INFO", - "finding": "340" - } - ], + "testssl": null, "thirdparties": { "trackers": [ { @@ -270993,7 +266229,7 @@ }, { "type": "google", - "url": "https://www.gstatic.com/recaptcha/releases/u-xcq3POCWFlCr3x8_IPxgPu/recaptcha__en.js", + "url": "https://www.gstatic.com/recaptcha/releases/Ya-Cd6PbRI5ktAHEhm9JuKEu/recaptcha__en.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -271001,7 +266237,7 @@ }, { "type": "google", - "url": "https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdQAK0ZAAAAABAW9T4lfAtxrJp9DtnPYIZ7Qd7p&co=aHR0cHM6Ly9wYXNzY3VsdHVyZS5wcm86NDQz&hl=en&v=u-xcq3POCWFlCr3x8_IPxgPu&size=invisible&cb=wy9gik9ibzfl", + "url": "https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdQAK0ZAAAAABAW9T4lfAtxrJp9DtnPYIZ7Qd7p&co=aHR0cHM6Ly9wYXNzY3VsdHVyZS5wcm86NDQz&hl=en&v=Ya-Cd6PbRI5ktAHEhm9JuKEu&size=invisible&cb=bahnh1hwyl6c", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -271009,7 +266245,7 @@ }, { "type": "google", - "url": "https://www.gstatic.com/recaptcha/releases/u-xcq3POCWFlCr3x8_IPxgPu/styles__ltr.css", + "url": "https://www.gstatic.com/recaptcha/releases/Ya-Cd6PbRI5ktAHEhm9JuKEu/styles__ltr.css", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -271017,7 +266253,7 @@ }, { "type": "google", - "url": "https://www.gstatic.com/recaptcha/releases/u-xcq3POCWFlCr3x8_IPxgPu/recaptcha__en.js", + "url": "https://www.gstatic.com/recaptcha/releases/Ya-Cd6PbRI5ktAHEhm9JuKEu/recaptcha__en.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -271025,7 +266261,7 @@ }, { "type": "google", - "url": "https://www.google.com/js/bg/kn2owPU74JTsOwTGty0aoUlXRSKSJihCWxBMzE3aLQs.js", + "url": "https://www.google.com/js/bg/mL2Y2df9MP72hJspIKkaS_u6JtFhauYVKQ-w1rT0CAw.js", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -271057,7 +266293,7 @@ }, { "type": "google", - "url": "https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=u-xcq3POCWFlCr3x8_IPxgPu", + "url": "https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=Ya-Cd6PbRI5ktAHEhm9JuKEu", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -271086,17 +266322,17 @@ "alt-svc": "h3=\":443\";ma=86400,h3-29=\":443\";ma=86400,h3-27=\":443\";ma=86400", "cache-control": "max-age=3600", "content-encoding": "br", - "content-length": "566", + "content-length": "563", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 09:15:13 GMT", - "etag": "\"d820c1131155b7248ea39c2aeff2279e7fc44c870dc9d69aac611f3db2bdf66d-br\"", - "last-modified": "Thu, 04 Jan 2024 09:41:15 GMT", + "date": "Sun, 14 Jan 2024 08:58:07 GMT", + "etag": "\"dae4df2cbdca3018ea9e7d014b81f82cd79d9b9eb208246357b296147ec34fe7-br\"", + "last-modified": "Mon, 08 Jan 2024 13:27:49 GMT", "strict-transport-security": "max-age=31556926", "vary": "x-fh-requested-host, accept-encoding", "x-cache": "HIT", "x-cache-hits": "4", - "x-served-by": "cache-chi-kigq8000072-CHI", - "x-timer": "S1704618913.053884,VS0,VE0" + "x-served-by": "cache-pao-kpao1770082-PAO", + "x-timer": "S1705222687.100809,VS0,VE0" }, "endpoints": [ { @@ -271121,7 +266357,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271141,7 +266377,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271212,7 +266448,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271239,7 +266475,7 @@ }, { "hostname": "static.hotjar.com", - "ip": "52.84.18.112", + "ip": "108.139.10.63", "geoip": { "continent": { "code": "NA", @@ -271259,7 +266495,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271279,7 +266515,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271293,7 +266529,7 @@ }, { "hostname": "www.google.com", - "ip": "142.250.190.68", + "ip": "142.251.32.36", "geoip": { "continent": { "code": "NA", @@ -271313,7 +266549,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271333,7 +266569,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271347,7 +266583,7 @@ }, { "hostname": "www.gstatic.com", - "ip": "142.250.191.131", + "ip": "172.217.12.99", "geoip": { "continent": { "code": "NA", @@ -271367,7 +266603,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271387,7 +266623,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271401,7 +266637,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.191.99", + "ip": "142.250.189.195", "geoip": { "continent": { "code": "NA", @@ -271421,7 +266657,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271441,7 +266677,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -271467,7 +266703,7 @@ "name": "Skolengo", "description": "Skolengo is an Education Management Software developed by Kosmos Education.", "confidence": 0, - "version": "271.0.6", + "version": "272.0.1", "icon": "Skolengo.svg", "website": "https://www.skolengo.com", "cpe": null, @@ -271490,7 +266726,7 @@ "name": "Fourthwall", "description": "Fourthwall helps to create and launch a branded website.", "confidence": 0, - "version": "271.0.6", + "version": "272.0.1", "icon": "Fourthwall.svg", "website": "https://fourthwall.com/", "cpe": null, @@ -271724,7 +266960,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 09:14:12", + "@generated": "Sun, 14 Jan 2024 08:57:07", "site": [ { "@name": "https://passculture.pro", @@ -271881,7 +267117,7 @@ "type": "dns", "host": "passculture.pro.", "matched-at": "passculture.pro", - "timestamp": "2024-01-07T09:21:45.129033337Z", + "timestamp": "2024-01-14T09:08:57.885321047Z", "matcher-status": true }, { @@ -271919,7 +267155,7 @@ "extracted-results": [ "\"google-site-verification=lu7PvbxVUNXR1cVE6CUb5LrA6VHYgp13laQVb5BTVlA\"" ], - "timestamp": "2024-01-07T09:21:46.103313185Z", + "timestamp": "2024-01-14T09:08:58.833118932Z", "matcher-status": true }, { @@ -271952,12 +267188,12 @@ "host": "passculture.pro.", "matched-at": "passculture.pro", "extracted-results": [ - "ns-cloud-c3.googledomains.com.", - "ns-cloud-c2.googledomains.com.", + "ns-cloud-c4.googledomains.com.", "ns-cloud-c1.googledomains.com.", - "ns-cloud-c4.googledomains.com." + "ns-cloud-c3.googledomains.com.", + "ns-cloud-c2.googledomains.com." ], - "timestamp": "2024-01-07T09:21:46.103600321Z", + "timestamp": "2024-01-14T09:08:58.855535997Z", "matcher-status": true }, { @@ -271986,7 +267222,7 @@ "GET, HEAD, OPTIONS" ], "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:21:49.273183385Z", + "timestamp": "2024-01-14T09:09:02.074870968Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272018,12 +267254,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.3368522Z", + "timestamp": "2024-01-14T09:09:28.137491799Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272055,12 +267291,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.336903106Z", + "timestamp": "2024-01-14T09:09:28.137532835Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272092,12 +267328,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.336919706Z", + "timestamp": "2024-01-14T09:09:28.137543305Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272129,12 +267365,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.336933843Z", + "timestamp": "2024-01-14T09:09:28.137551671Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272166,12 +267402,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.33695383Z", + "timestamp": "2024-01-14T09:09:28.137564855Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272203,12 +267439,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.336969529Z", + "timestamp": "2024-01-14T09:09:28.137580975Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272240,12 +267476,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.336983325Z", + "timestamp": "2024-01-14T09:09:28.137600562Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272277,12 +267513,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.336996099Z", + "timestamp": "2024-01-14T09:09:28.137617242Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272314,12 +267550,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.337008722Z", + "timestamp": "2024-01-14T09:09:28.137632731Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, @@ -272351,61 +267587,15 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:15.337021586Z", + "timestamp": "2024-01-14T09:09:28.137649723Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrationDate", - "type": "http", - "host": "https://passculture.pro", - "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", - "extracted-results": [ - "2019-03-14T16:23:39.414Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:22:22.31504784Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", - "matcher-status": true - }, { "template": "http/miscellaneous/rdap-whois.yaml", "template-url": "https://templates.nuclei.sh/public/rdap-whois", @@ -272449,102 +267639,7 @@ "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:22:22.315093174Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "nameServers", - "type": "http", - "host": "https://passculture.pro", - "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", - "extracted-results": [ - "ns-cloud-c2.googledomains.com", - "ns-cloud-c3.googledomains.com", - "ns-cloud-c4.googledomains.com", - "ns-cloud-c1.googledomains.com" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:22:22.315108834Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "status", - "type": "http", - "host": "https://passculture.pro", - "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", - "extracted-results": [ - "client transfer prohibited" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:22:22.315126888Z", + "timestamp": "2024-01-14T09:09:35.019700431Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -272590,53 +267685,7 @@ "2023-06-01T09:56:15.239Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:22:22.315144761Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "expirationDate", - "type": "http", - "host": "https://passculture.pro", - "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", - "extracted-results": [ - "2026-03-14T16:23:39.414Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:22:22.315159398Z", + "timestamp": "2024-01-14T09:09:35.01981864Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -272682,7 +267731,53 @@ "pass Culture S.A.S." ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:22:22.315173424Z", + "timestamp": "2024-01-14T09:09:35.020582733Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "expirationDate", + "type": "http", + "host": "https://passculture.pro", + "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", + "extracted-results": [ + "2026-03-14T16:23:39.414Z" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T09:09:35.021200011Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -272728,7 +267823,56 @@ "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:22:22.31568583Z", + "timestamp": "2024-01-14T09:09:35.022549874Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "nameServers", + "type": "http", + "host": "https://passculture.pro", + "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", + "extracted-results": [ + "ns-cloud-c4.googledomains.com", + "ns-cloud-c1.googledomains.com", + "ns-cloud-c2.googledomains.com", + "ns-cloud-c3.googledomains.com" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T09:09:35.022636956Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -272774,7 +267918,99 @@ "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:22:22.315700607Z", + "timestamp": "2024-01-14T09:09:35.023188983Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "status", + "type": "http", + "host": "https://passculture.pro", + "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", + "extracted-results": [ + "client transfer prohibited" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T09:09:35.024299961Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrationDate", + "type": "http", + "host": "https://passculture.pro", + "matched-at": "https://rdap.identitydigital.services/rdap/domain/passculture.pro", + "extracted-results": [ + "2019-03-14T16:23:39.414Z" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T09:09:35.025083639Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/passculture.pro'", "matcher-status": true }, @@ -272808,39 +268044,38 @@ "host": "https://passculture.pro", "matched-at": "https://passculture.pro", "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:22:27.318127609Z", + "timestamp": "2024-01-14T09:09:40.900150749Z", "curl-command": "curl -X 'PURGE' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://passculture.pro'", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam", - "pussycat0x" + "lingtren" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "passculture.pro", "matched-at": "passculture.pro:443", "extracted-results": [ - "tls12" + "Google Trust Services LLC" ], "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:24:04.575315216Z", + "timestamp": "2024-01-14T09:11:17.223656432Z", "matcher-status": true }, { @@ -272868,27 +268103,27 @@ "host": "passculture.pro", "matched-at": "passculture.pro:443", "extracted-results": [ - "tls13" + "tls12" ], "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:24:04.595101435Z", + "timestamp": "2024-01-14T09:11:17.223675758Z", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "SSL DNS Names", "author": [ - "lingtren" + "pdteam" ], "tags": [ "ssl", "tls" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { "max-request": 1 @@ -272898,41 +268133,42 @@ "host": "passculture.pro", "matched-at": "passculture.pro:443", "extracted-results": [ - "Google Trust Services LLC" + "passculture.pro", + "www.passculture.pro" ], "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:24:04.642948856Z", + "timestamp": "2024-01-14T09:11:17.223812743Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "SSL DNS Names", + "name": "TLS Version - Detect", "author": [ - "pdteam" + "pdteam", + "pussycat0x" ], "tags": [ "ssl", "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "passculture.pro", "matched-at": "passculture.pro:443", "extracted-results": [ - "passculture.pro", - "www.passculture.pro" + "tls13" ], "ip": "199.36.158.100", - "timestamp": "2024-01-07T09:24:04.643059732Z", + "timestamp": "2024-01-14T09:11:17.242722286Z", "matcher-status": true } ], @@ -272940,7 +268176,7 @@ { "requestedUrl": "https://passculture.pro/", "finalUrl": "https://passculture.pro/", - "fetchTime": "2024-01-07T09:14:26.856Z", + "fetchTime": "2024-01-14T08:57:21.785Z", "runWarnings": [], "categories": { "performance": { @@ -273003,53 +268239,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7410, + "numericValue": 7088, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2594, - "firstMeaningfulPaint": 3682, - "largestContentfulPaint": 6367, - "interactive": 7410, - "speedIndex": 3240, - "totalBlockingTime": 195, - "maxPotentialFID": 204, + "firstContentfulPaint": 2567, + "firstMeaningfulPaint": 2567, + "largestContentfulPaint": 5506, + "interactive": 7088, + "speedIndex": 4427, + "totalBlockingTime": 166, + "maxPotentialFID": 182, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 173511012, + "observedTimeOriginTs": 288077841, "observedNavigationStart": 0, - "observedNavigationStartTs": 173511012, - "observedFirstPaint": 221, - "observedFirstPaintTs": 173732271, - "observedFirstContentfulPaint": 221, - "observedFirstContentfulPaintTs": 173732271, - "observedFirstContentfulPaintAllFrames": 221, - "observedFirstContentfulPaintAllFramesTs": 173732271, - "observedFirstMeaningfulPaint": 630, - "observedFirstMeaningfulPaintTs": 174141118, - "observedLargestContentfulPaint": 607, - "observedLargestContentfulPaintTs": 174118367, - "observedLargestContentfulPaintAllFrames": 607, - "observedLargestContentfulPaintAllFramesTs": 174118367, - "observedTraceEnd": 3177, - "observedTraceEndTs": 176688055, - "observedLoad": 393, - "observedLoadTs": 173904216, - "observedDomContentLoaded": 201, - "observedDomContentLoadedTs": 173711986, + "observedNavigationStartTs": 288077841, + "observedFirstPaint": 170, + "observedFirstPaintTs": 288247934, + "observedFirstContentfulPaint": 170, + "observedFirstContentfulPaintTs": 288247934, + "observedFirstContentfulPaintAllFrames": 170, + "observedFirstContentfulPaintAllFramesTs": 288247934, + "observedFirstMeaningfulPaint": 170, + "observedFirstMeaningfulPaintTs": 288247934, + "observedLargestContentfulPaint": 1469, + "observedLargestContentfulPaintTs": 289547017, + "observedLargestContentfulPaintAllFrames": 1469, + "observedLargestContentfulPaintAllFramesTs": 289547017, + "observedTraceEnd": 4027, + "observedTraceEndTs": 292104810, + "observedLoad": 436, + "observedLoadTs": 288513952, + "observedDomContentLoaded": 153, + "observedDomContentLoadedTs": 288231149, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 448, - "observedFirstVisualChangeTs": 173959012, - "observedLastVisualChange": 632, - "observedLastVisualChangeTs": 174143012, - "observedSpeedIndex": 621, - "observedSpeedIndexTs": 174131701 + "observedFirstVisualChange": 810, + "observedFirstVisualChangeTs": 288887841, + "observedLastVisualChange": 1493, + "observedLastVisualChangeTs": 289570841, + "observedSpeedIndex": 1467, + "observedSpeedIndexTs": 289544751 }, { "lcpInvalidated": false @@ -273067,23 +268303,23 @@ "type": "debugdata", "items": [ { - "numRequests": 38, + "numRequests": 37, "numScripts": 11, "numStylesheets": 4, "numFonts": 8, - "numTasks": 962, - "numTasksOver10ms": 10, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numTasks": 993, + "numTasksOver10ms": 11, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 125709995.99141781, - "maxRtt": 98.43399999999998, - "maxServerLatency": 92.116, - "totalByteWeight": 862721, - "totalTaskTime": 404.73299999999796, - "mainDocumentTransferSize": 914 + "throughput": 145096667.29530546, + "maxRtt": 147.26, + "maxServerLatency": 144.849, + "totalByteWeight": 865077, + "totalTaskTime": 379.62199999999694, + "mainDocumentTransferSize": 911 } ] } @@ -273189,9 +268425,6 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": false, - "testsslExpireDate": "2024-02-22T14:13:00.000Z", - "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "F", @@ -273225,38 +268458,37 @@ "http": { "url": "https://pilotage.inclusion.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 09:20:01 GMT", + "end_time": "Sun, 14 Jan 2024 09:00:49 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Accept-Ranges": "bytes", "Access-Control-Allow-Origin": "*", - "Age": "0", + "Age": "12", "Cache-Control": "max-age=600", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "7217", + "Content-Length": "7222", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 09:20:00 GMT", - "ETag": "W/\"65816c65-784c\"", - "Last-Modified": "Tue, 19 Dec 2023 10:11:49 GMT", + "Date": "Sun, 14 Jan 2024 09:00:49 GMT", + "ETag": "W/\"659d5d5f-7846\"", + "Last-Modified": "Tue, 09 Jan 2024 14:51:11 GMT", "Server": "GitHub.com", "Vary": "Accept-Encoding", "Via": "1.1 varnish", - "X-Cache": "MISS", - "X-Cache-Hits": "0", - "X-Fastly-Request-ID": "0faa7d73ac1fbd60afa416e22ca448dfb97afaf1", - "X-GitHub-Request-Id": "C6CA:3F0C:96DAE3:CDB7E9:659A6CBD", - "X-Served-By": "cache-sjc10052-SJC", - "X-Timer": "S1704619200.255757,VS0,VE71", - "expires": "Sun, 07 Jan 2024 09:30:00 GMT", - "x-origin-cache": "HIT", + "X-Cache": "HIT", + "X-Cache-Hits": "1", + "X-Fastly-Request-ID": "e0dc27a5ccdbd9e2c6ae4dbfee4d0ec80efc8e80", + "X-GitHub-Request-Id": "754A:0F2F:23F067B:2711FCE:65A3A24C", + "X-Served-By": "cache-sjc1000141-SJC", + "X-Timer": "S1705222849.189493,VS0,VE1", + "expires": "Sun, 14 Jan 2024 09:08:53 GMT", "x-proxy-cache": "MISS" }, - "scan_id": 46232194, + "scan_id": 46462115, "score": 0, - "start_time": "Sun, 07 Jan 2024 09:19:57 GMT", + "start_time": "Sun, 14 Jan 2024 09:00:46 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 7, @@ -273446,7 +268678,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2023-12-18T16:24:48Z", + "up_since": "2024-01-10T13:35:39Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -273458,8 +268690,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T09:34:19Z", - "next_check_at": "2024-01-07T09:39:17Z", + "last_check_at": "2024-01-14T09:16:52Z", + "next_check_at": "2024-01-14T09:21:50Z", "created_at": "2021-04-22T19:59:36Z", "mute_until": null, "favicon_url": "https://pilotage.inclusion.beta.gouv.fr/images/favico.ico", @@ -273467,7 +268699,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T09:09:27Z", + "tested_at": "2024-01-14T08:42:04Z", "expires_at": "2024-04-01T12:51:40Z", "valid": true, "error": null @@ -273476,11 +268708,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 185, - "connection": 4, - "handshake": 13, - "response": 111, - "total": 313 + "namelookup": 140, + "connection": 2, + "handshake": 14, + "response": 114, + "total": 270 } }, "uptimeGrade": "A", @@ -273515,77 +268747,77 @@ "testssl": [ { "id": "service", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -273593,7 +268825,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -273601,7 +268833,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -273609,7 +268841,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -273617,7 +268849,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -273625,7 +268857,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -273633,519 +268865,519 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "valid for 7200 seconds only (= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "2024-01-02 12:51" }, { "id": "cert_notAfter", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "2024-04-01 12:51" }, { "id": "cert_extlifeSpan", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "+115 seconds from localtime" + "finding": "+116 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "1704619283" + "finding": "1705222933" }, { "id": "HTTP_headerAge", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "115 seconds" + "finding": "116 seconds" }, { "id": "HSTS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200079-IAD" + "finding": "cache-sjc1000127-SJC" }, { "id": "Cache-Control", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", - "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 2" + "finding": "Via: 1.1 varnishX-Cache: HITX-Cache-Hits: 1" }, { "id": "heartbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -274154,7 +269386,7 @@ }, { "id": "CCS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -274163,7 +269395,7 @@ }, { "id": "ticketbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -274172,7 +269404,7 @@ }, { "id": "ROBOT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -274181,7 +269413,7 @@ }, { "id": "secure_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -274189,7 +269421,7 @@ }, { "id": "secure_client_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -274198,7 +269430,7 @@ }, { "id": "CRIME_TLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -274207,7 +269439,7 @@ }, { "id": "BREACH", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -274216,7 +269448,7 @@ }, { "id": "POODLE_SSL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -274225,14 +269457,14 @@ }, { "id": "fallback_SCSV", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -274241,7 +269473,7 @@ }, { "id": "FREAK", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -274250,7 +269482,7 @@ }, { "id": "DROWN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -274259,7 +269491,7 @@ }, { "id": "DROWN_hint", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -274268,7 +269500,7 @@ }, { "id": "LOGJAM", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -274277,7 +269509,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -274286,7 +269518,7 @@ }, { "id": "BEAST", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -274295,7 +269527,7 @@ }, { "id": "LUCKY13", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -274304,7 +269536,7 @@ }, { "id": "winshock", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -274313,7 +269545,7 @@ }, { "id": "RC4", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -274322,399 +269554,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274722,7 +269954,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274730,7 +269962,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274738,7 +269970,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -274746,7 +269978,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -274754,7 +269986,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -274762,511 +269994,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "valid for 7200 seconds only (= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "2024-01-02 12:51" }, { "id": "cert_notAfter", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "2024-04-01 12:51" }, { "id": "cert_extlifeSpan", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "+453 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "1704619622" + "finding": "1705223269" }, { "id": "HTTP_headerAge", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "453 seconds" }, { "id": "HSTS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200072-IAD" + "finding": "cache-sjc10070-SJC" }, { "id": "Cache-Control", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -275274,7 +270506,7 @@ }, { "id": "heartbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -275283,7 +270515,7 @@ }, { "id": "CCS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -275292,7 +270524,7 @@ }, { "id": "ticketbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -275301,7 +270533,7 @@ }, { "id": "ROBOT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -275310,7 +270542,7 @@ }, { "id": "secure_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -275318,7 +270550,7 @@ }, { "id": "secure_client_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -275327,7 +270559,7 @@ }, { "id": "CRIME_TLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -275336,7 +270568,7 @@ }, { "id": "BREACH", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -275345,7 +270577,7 @@ }, { "id": "POODLE_SSL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -275354,14 +270586,14 @@ }, { "id": "fallback_SCSV", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -275370,7 +270602,7 @@ }, { "id": "FREAK", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -275379,7 +270611,7 @@ }, { "id": "DROWN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -275388,7 +270620,7 @@ }, { "id": "DROWN_hint", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -275397,7 +270629,7 @@ }, { "id": "LOGJAM", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -275406,7 +270638,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -275415,7 +270647,7 @@ }, { "id": "BEAST", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -275424,7 +270656,7 @@ }, { "id": "LUCKY13", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -275433,7 +270665,7 @@ }, { "id": "winshock", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -275442,7 +270674,7 @@ }, { "id": "RC4", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -275451,399 +270683,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.108.153", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275851,7 +271083,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275859,7 +271091,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275867,7 +271099,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -275875,7 +271107,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -275883,7 +271115,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -275891,511 +271123,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", - "finding": "server -- TLS 1.3 client determined" + "finding": "server" }, { "id": "FS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA" }, { "id": "FS_ECDHE_curves", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'extended master secret/#23' 'application layer protocol negotiation/#16'" }, { "id": "TLS_session_ticket", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "valid for 7200 seconds only (= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "2024-01-02 12:51" }, { "id": "cert_notAfter", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "2024-04-01 12:51" }, { "id": "cert_extlifeSpan", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "+513 seconds from localtime" + "finding": "+511 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "1704619682" + "finding": "1705223327" }, { "id": "HTTP_headerAge", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "513 seconds" + "finding": "511 seconds" }, { "id": "HSTS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "GitHub.com" }, { "id": "banner_application", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "X-Served-By", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200078-IAD" + "finding": "cache-sjc1000130-SJC" }, { "id": "Cache-Control", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "max-age=600" }, { "id": "banner_reverseproxy", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -276403,7 +271635,7 @@ }, { "id": "heartbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -276412,7 +271644,7 @@ }, { "id": "CCS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -276421,7 +271653,7 @@ }, { "id": "ticketbleed", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -276430,7 +271662,7 @@ }, { "id": "ROBOT", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -276439,7 +271671,7 @@ }, { "id": "secure_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -276447,7 +271679,7 @@ }, { "id": "secure_client_renego", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -276456,7 +271688,7 @@ }, { "id": "CRIME_TLS", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -276465,7 +271697,7 @@ }, { "id": "BREACH", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -276474,7 +271706,7 @@ }, { "id": "POODLE_SSL", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -276483,14 +271715,14 @@ }, { "id": "fallback_SCSV", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -276499,7 +271731,7 @@ }, { "id": "FREAK", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -276508,7 +271740,7 @@ }, { "id": "DROWN", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -276517,7 +271749,7 @@ }, { "id": "DROWN_hint", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -276526,7 +271758,7 @@ }, { "id": "LOGJAM", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -276535,7 +271767,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -276544,7 +271776,7 @@ }, { "id": "BEAST", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -276553,7 +271785,7 @@ }, { "id": "LUCKY13", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -276562,7 +271794,7 @@ }, { "id": "winshock", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -276571,7 +271803,7 @@ }, { "id": "RC4", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -276580,322 +271812,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-go_1178", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-openssl_303", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "pilotage.inclusion.beta.gouv.fr/185.199.111.153", + "ip": "pilotage.inclusion.beta.gouv.fr/185.199.110.153", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -277051,7 +272283,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", - "finding": "server" + "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", @@ -277107,7 +272339,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -277247,7 +272479,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "OK", - "finding": "85 >= 30 days" + "finding": "78 >= 30 days" }, { "id": "cert_notBefore", @@ -277450,21 +272682,21 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "+573 seconds from localtime" + "finding": "+574 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "1704619741" + "finding": "1705223391" }, { "id": "HTTP_headerAge", "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "573 seconds" + "finding": "574 seconds" }, { "id": "HSTS", @@ -277513,7 +272745,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "cache-iad-kcgs7200076-IAD" + "finding": "cache-sjc10037-SJC" }, { "id": "Cache-Control", @@ -278034,7 +273266,7 @@ "ip": "pilotage.inclusion.beta.gouv.fr/185.199.109.153", "port": "443", "severity": "INFO", - "finding": "522" + "finding": "519" } ], "thirdparties": { @@ -278092,30 +273324,30 @@ "headers": { "accept-ranges": "bytes", "access-control-allow-origin": "*", - "age": "111", + "age": "0", "cache-control": "max-age=600", "content-encoding": "gzip", - "content-length": "7217", + "content-length": "7222", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 09:20:33 GMT", - "etag": "W/\"65816c65-784c\"", - "expires": "Sun, 07 Jan 2024 09:28:03 GMT", - "last-modified": "Tue, 19 Dec 2023 10:11:49 GMT", + "date": "Sun, 14 Jan 2024 09:01:21 GMT", + "etag": "W/\"659d5d5f-7846\"", + "expires": "Sun, 14 Jan 2024 09:09:26 GMT", + "last-modified": "Tue, 09 Jan 2024 14:51:11 GMT", "server": "GitHub.com", "vary": "Accept-Encoding", "via": "1.1 varnish", "x-cache": "HIT", - "x-cache-hits": "3", - "x-fastly-request-id": "778e77fa0a557a3b7c8481cc7a6248e5b003af71", - "x-github-request-id": "248A:405F:4A4C39D:5FF4A00:659A6C4A", + "x-cache-hits": "1", + "x-fastly-request-id": "d2cd156508f1bb2e1366ccae30d1b4eb6552a692", + "x-github-request-id": "17A8:5395:F1ED4:1271BD:65A3A26D", "x-proxy-cache": "MISS", - "x-served-by": "cache-iad-kcgs7200048-IAD", - "x-timer": "S1704619233.160796,VS0,VE1" + "x-served-by": "cache-pao-kpao1770021-PAO", + "x-timer": "S1705222882.589650,VS0,VE95" }, "endpoints": [ { "hostname": "pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.111.153", + "ip": "185.199.110.153", "geoip": { "continent": { "code": "NA", @@ -278135,7 +273367,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -278155,7 +273387,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -278185,15 +273417,18 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.37.229", + "ip": "151.101.41.229", "geoip": { "city": { - "geoname_id": 4781530, + "geoname_id": 5392171, "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" + "de": "San José", + "en": "San Jose", + "es": "San José", + "fr": "San José", + "ja": "サンノゼ", + "pt-BR": "San José", + "ru": "Сан-Хосе" } }, "continent": { @@ -278214,7 +273449,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -278226,19 +273461,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 37.1835, + "longitude": -121.7714, + "metro_code": 807, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "20190" + "code": "95141" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -278250,15 +273485,17 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -278266,13 +273503,13 @@ }, { "hostname": "cdnjs.cloudflare.com", - "ip": "104.17.24.14", + "ip": "104.17.25.14", "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -278570,7 +273807,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 09:19:33", + "@generated": "Sun, 14 Jan 2024 09:00:22", "site": [ { "@name": "https://pilotage.inclusion.beta.gouv.fr", @@ -278724,22 +273961,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -278755,7 +273992,11 @@ "type": "dns", "host": "pilotage.inclusion.beta.gouv.fr.", "matched-at": "pilotage.inclusion.beta.gouv.fr", - "timestamp": "2024-01-07T09:30:21.786581203Z", + "extracted-results": [ + "\"v=spf1 include:_spf.alwaysdata.com ~all\"", + "\"brevo-code:3794f0cae8452f55905755b1a4a695b9\"" + ], + "timestamp": "2024-01-14T09:11:11.32663675Z", "matcher-status": true }, { @@ -278792,10 +274033,10 @@ "host": "pilotage.inclusion.beta.gouv.fr.", "matched-at": "pilotage.inclusion.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T09:30:22.024025579Z", + "timestamp": "2024-01-14T09:11:11.333190005Z", "matcher-status": true }, { @@ -278835,26 +274076,26 @@ "extracted-results": [ "\"v=DMARC1; p=none\"" ], - "timestamp": "2024-01-07T09:30:22.181433786Z", + "timestamp": "2024-01-14T09:11:11.467247889Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -278870,11 +274111,7 @@ "type": "dns", "host": "pilotage.inclusion.beta.gouv.fr.", "matched-at": "pilotage.inclusion.beta.gouv.fr", - "extracted-results": [ - "\"brevo-code:3794f0cae8452f55905755b1a4a695b9\"", - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" - ], - "timestamp": "2024-01-07T09:30:22.791023863Z", + "timestamp": "2024-01-14T09:11:11.764899143Z", "matcher-status": true }, { @@ -278907,10 +274144,10 @@ "host": "pilotage.inclusion.beta.gouv.fr.", "matched-at": "pilotage.inclusion.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2024-01-07T09:30:22.874672387Z", + "timestamp": "2024-01-14T09:11:12.320081501Z", "matcher-status": true }, { @@ -278936,192 +274173,7 @@ "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:48.252854067Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://pilotage.inclusion.beta.gouv.fr", - "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.872150451Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://pilotage.inclusion.beta.gouv.fr", - "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.872194624Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://pilotage.inclusion.beta.gouv.fr", - "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.872209432Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://pilotage.inclusion.beta.gouv.fr", - "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.872223017Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://pilotage.inclusion.beta.gouv.fr", - "matched-at": "https://pilotage.inclusion.beta.gouv.fr", - "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.8722353Z", + "timestamp": "2024-01-14T09:11:37.703518807Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -279158,7 +274210,7 @@ "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.872246911Z", + "timestamp": "2024-01-14T09:11:41.559571216Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -279190,12 +274242,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.872259695Z", + "timestamp": "2024-01-14T09:11:41.55960591Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -279232,7 +274284,192 @@ "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.872271387Z", + "timestamp": "2024-01-14T09:11:41.55961671Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://pilotage.inclusion.beta.gouv.fr", + "matched-at": "https://pilotage.inclusion.beta.gouv.fr", + "ip": "185.199.111.153", + "timestamp": "2024-01-14T09:11:41.559646105Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://pilotage.inclusion.beta.gouv.fr", + "matched-at": "https://pilotage.inclusion.beta.gouv.fr", + "ip": "185.199.111.153", + "timestamp": "2024-01-14T09:11:41.559663658Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://pilotage.inclusion.beta.gouv.fr", + "matched-at": "https://pilotage.inclusion.beta.gouv.fr", + "ip": "185.199.111.153", + "timestamp": "2024-01-14T09:11:41.559677824Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://pilotage.inclusion.beta.gouv.fr", + "matched-at": "https://pilotage.inclusion.beta.gouv.fr", + "ip": "185.199.111.153", + "timestamp": "2024-01-14T09:11:41.559690959Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://pilotage.inclusion.beta.gouv.fr", + "matched-at": "https://pilotage.inclusion.beta.gouv.fr", + "ip": "185.199.111.153", + "timestamp": "2024-01-14T09:11:41.559703171Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -279269,7 +274506,7 @@ "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.87228351Z", + "timestamp": "2024-01-14T09:11:41.559750158Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -279306,7 +274543,7 @@ "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.872295021Z", + "timestamp": "2024-01-14T09:11:41.559765597Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -279338,12 +274575,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr", "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:30:51.872307775Z", + "timestamp": "2024-01-14T09:11:41.559778321Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr'", "matcher-status": true }, @@ -279383,7 +274620,7 @@ "https://cdnjs.cloudflare.com/ajax/libs/tiny-slider/2.9.4/min/tiny-slider.js" ], "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:31:01.778275164Z", + "timestamp": "2024-01-14T09:11:51.440473505Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: pilotage.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -279423,7 +274660,7 @@ "host": "https://pilotage.inclusion.beta.gouv.fr", "matched-at": "https://pilotage.inclusion.beta.gouv.fr/", "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:31:05.84286612Z", + "timestamp": "2024-01-14T09:11:56.457976467Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: pilotage.inclusion.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pilotage.inclusion.beta.gouv.fr/'", "matcher-status": true }, @@ -279454,7 +274691,7 @@ "Let's Encrypt" ], "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:36:30.939838486Z", + "timestamp": "2024-01-14T09:17:20.486278652Z", "matcher-status": true }, { @@ -279484,7 +274721,7 @@ "pilotage.inclusion.beta.gouv.fr" ], "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:36:30.939984839Z", + "timestamp": "2024-01-14T09:17:20.486382374Z", "matcher-status": true }, { @@ -279515,7 +274752,7 @@ "tls12" ], "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:36:31.071762067Z", + "timestamp": "2024-01-14T09:17:20.539479689Z", "matcher-status": true }, { @@ -279546,7 +274783,7 @@ "tls13" ], "ip": "185.199.111.153", - "timestamp": "2024-01-07T09:36:31.107820581Z", + "timestamp": "2024-01-14T09:17:20.560776948Z", "matcher-status": true } ], @@ -279554,7 +274791,7 @@ { "requestedUrl": "https://pilotage.inclusion.beta.gouv.fr/", "finalUrl": "https://pilotage.inclusion.beta.gouv.fr/", - "fetchTime": "2024-01-07T09:19:47.727Z", + "fetchTime": "2024-01-14T09:00:36.220Z", "runWarnings": [], "categories": { "performance": { @@ -279617,53 +274854,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6111, + "numericValue": 6535, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1507, - "firstMeaningfulPaint": 1918, - "largestContentfulPaint": 2555, - "interactive": 6111, - "speedIndex": 2229, - "totalBlockingTime": 130, - "maxPotentialFID": 246, - "cumulativeLayoutShift": 0.029725553512573243, - "cumulativeLayoutShiftMainFrame": 0.029725553512573243, - "totalCumulativeLayoutShift": 0.029725553512573243, + "firstContentfulPaint": 1578, + "firstMeaningfulPaint": 1989, + "largestContentfulPaint": 2626, + "interactive": 6535, + "speedIndex": 2564, + "totalBlockingTime": 139, + "maxPotentialFID": 226, + "cumulativeLayoutShift": 0.036186169942220056, + "cumulativeLayoutShiftMainFrame": 0.036186169942220056, + "totalCumulativeLayoutShift": 0.036186169942220056, "observedTimeOrigin": 0, - "observedTimeOriginTs": 254468504, + "observedTimeOriginTs": 277368318, "observedNavigationStart": 0, - "observedNavigationStartTs": 254468504, - "observedFirstPaint": 121, - "observedFirstPaintTs": 254589184, - "observedFirstContentfulPaint": 121, - "observedFirstContentfulPaintTs": 254589184, - "observedFirstContentfulPaintAllFrames": 121, - "observedFirstContentfulPaintAllFramesTs": 254589184, - "observedFirstMeaningfulPaint": 121, - "observedFirstMeaningfulPaintTs": 254589184, - "observedLargestContentfulPaint": 121, - "observedLargestContentfulPaintTs": 254589184, - "observedLargestContentfulPaintAllFrames": 121, - "observedLargestContentfulPaintAllFramesTs": 254589184, - "observedTraceEnd": 2863, - "observedTraceEndTs": 257331514, - "observedLoad": 555, - "observedLoadTs": 255023279, - "observedDomContentLoaded": 183, - "observedDomContentLoadedTs": 254651953, - "observedCumulativeLayoutShift": 0.029725553512573243, - "observedCumulativeLayoutShiftMainFrame": 0.029725553512573243, - "observedTotalCumulativeLayoutShift": 0.029725553512573243, - "observedFirstVisualChange": 121, - "observedFirstVisualChangeTs": 254589504, - "observedLastVisualChange": 621, - "observedLastVisualChangeTs": 255089504, - "observedSpeedIndex": 280, - "observedSpeedIndexTs": 254748143 + "observedNavigationStartTs": 277368318, + "observedFirstPaint": 238, + "observedFirstPaintTs": 277606525, + "observedFirstContentfulPaint": 238, + "observedFirstContentfulPaintTs": 277606525, + "observedFirstContentfulPaintAllFrames": 238, + "observedFirstContentfulPaintAllFramesTs": 277606525, + "observedFirstMeaningfulPaint": 238, + "observedFirstMeaningfulPaintTs": 277606525, + "observedLargestContentfulPaint": 238, + "observedLargestContentfulPaintTs": 277606525, + "observedLargestContentfulPaintAllFrames": 238, + "observedLargestContentfulPaintAllFramesTs": 277606525, + "observedTraceEnd": 3306, + "observedTraceEndTs": 280674314, + "observedLoad": 998, + "observedLoadTs": 278366756, + "observedDomContentLoaded": 273, + "observedDomContentLoadedTs": 277640868, + "observedCumulativeLayoutShift": 0.036186169942220056, + "observedCumulativeLayoutShiftMainFrame": 0.036186169942220056, + "observedTotalCumulativeLayoutShift": 0.036186169942220056, + "observedFirstVisualChange": 237, + "observedFirstVisualChangeTs": 277605318, + "observedLastVisualChange": 1037, + "observedLastVisualChangeTs": 278405318, + "observedSpeedIndex": 483, + "observedSpeedIndexTs": 277850886 }, { "lcpInvalidated": false @@ -279685,19 +274922,19 @@ "numScripts": 10, "numStylesheets": 1, "numFonts": 5, - "numTasks": 523, + "numTasks": 545, "numTasksOver10ms": 6, "numTasksOver25ms": 3, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.242, - "throughput": 46493916.17075519, - "maxRtt": 82.669, - "maxServerLatency": 15.444000000000003, - "totalByteWeight": 678724, - "totalTaskTime": 245.47999999999917, - "mainDocumentTransferSize": 7601 + "rtt": 1.1690000000000005, + "throughput": 31950657.353184305, + "maxRtt": 148.693, + "maxServerLatency": 75.994, + "totalByteWeight": 679255, + "totalTaskTime": 252.41899999999978, + "mainDocumentTransferSize": 7600 } ] } @@ -279828,7 +275065,7 @@ "http": { "url": "https://pix.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 09:34:53 GMT", + "end_time": "Sun, 14 Jan 2024 09:10:02 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -279837,7 +275074,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 09:34:52 GMT", + "Date": "Sun, 14 Jan 2024 09:10:01 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -279845,9 +275082,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46232298, + "scan_id": 46462391, "score": 75, - "start_time": "Sun, 07 Jan 2024 09:34:49 GMT", + "start_time": "Sun, 14 Jan 2024 09:09:59 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -280021,7 +275258,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2023-12-26T07:20:57Z", + "up_since": "2024-01-09T09:37:12Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -280033,8 +275270,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T09:37:24Z", - "next_check_at": "2024-01-07T09:42:23Z", + "last_check_at": "2024-01-14T09:15:55Z", + "next_check_at": "2024-01-14T09:20:52Z", "created_at": "2021-04-22T19:59:36Z", "mute_until": null, "favicon_url": null, @@ -280042,7 +275279,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T09:32:25Z", + "tested_at": "2024-01-14T09:05:58Z", "expires_at": "2024-11-12T22:59:59Z", "valid": true, "error": null @@ -280051,11 +275288,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 63, - "connection": 120, - "handshake": 129, - "response": 123, - "total": 435 + "namelookup": 64, + "connection": 158, + "handshake": 169, + "response": 162, + "total": 552 } }, "uptimeGrade": "A", @@ -280433,7 +275670,7 @@ "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "OK", - "finding": "310 >= 60 days" + "finding": "303 >= 60 days" }, { "id": "cert_notBefore", @@ -280587,14 +275824,14 @@ "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "1704620181" + "finding": "1705223528" }, { "id": "HSTS_time", @@ -281185,7 +276422,7 @@ "ip": "pix.fr/185.231.167.141", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "102" } ], "thirdparties": { @@ -281228,11 +276465,11 @@ }, { "name": "challenge", - "value": "8MzryQDI-EHIUCy5Kr8Srp1-a_FmAIx3hS5SxGmG-s8epXJ6xsFB71Li3uAFQ6Q1j7XJdBRSN2iJM4vDgwuWGf_Q8_NnJA6dR6srLWffvDkEEjASTHmZ7K3S4DU7dyUka-G0Bkc9jYWCbUFEmH8dAuI0PcQ3hcA2svtTGAlmImVihkwJC4WQFs_cWxP0OJ7JgtEv-6lP2vShv7hpFapxo-yC74VWbKmezgJxEKdMCurVJpH1DWk2N_v-QOiSn_9n3Ug6to9OOYcZ4qoMjLXPNg", + "value": "QHbILtM2iYPT-642lSqlT9qOw3VIsHzpFGkgyDJOpyrgQL5WZLbCw569p-G3tYIJzOIKQpo7Wcz4XWXNAYoGuC6y3fy9iU8jpr7l_TBaoYzC2M7WO2mralb45CUFojK5FM8BSSLlY3ZVJb_-Zj_ac4jMbRPQvkAYrUT4NjZB_OoFNR1dZoQjwwNI4lSgIFODxCCll7xmIohsckM4S95mDx30wrPBtJRd3ZExEtci3Va6IIp22pXdncw5VVBYHR0y", "domain": ".pix.fr", "path": "/", - "expires": 1704623725.173372, - "size": 287, + "expires": 1705227034.732138, + "size": 265, "httpOnly": false, "secure": false, "session": false, @@ -281246,17 +276483,17 @@ "age": "0", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 09:35:25 GMT", - "etag": "W/\"65957ff0-26694\"", - "last-modified": "Wed, 03 Jan 2024 15:40:32 GMT", + "date": "Sun, 14 Jan 2024 09:10:34 GMT", + "etag": "W/\"659fdcea-26694\"", + "last-modified": "Thu, 11 Jan 2024 12:19:54 GMT", "referrer-policy": "origin-when-cross-origin", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "via": "1.1 varnish (Varnish/6.0)", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "112dca04c46a4514fce13432084c5deb", - "x-varnish": "71019116", + "x-request-id": "9b2de2264662d0b8ce9754d554f170d5", + "x-varnish": "74261172", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -281318,7 +276555,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.253.62.95", + "ip": "142.250.68.74", "geoip": { "continent": { "code": "NA", @@ -281338,7 +276575,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -281358,7 +276595,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -281426,7 +276663,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -281462,7 +276699,7 @@ }, { "hostname": "static.cdn.prismic.io", - "ip": "99.84.191.120", + "ip": "54.230.21.63", "geoip": { "continent": { "code": "NA", @@ -281482,7 +276719,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -281502,7 +276739,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -281516,7 +276753,7 @@ }, { "hostname": "pix-site.prismic.io", - "ip": "54.83.67.89", + "ip": "52.22.77.158", "geoip": { "city": { "geoname_id": 4744870, @@ -281543,7 +276780,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -281567,7 +276804,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -281637,6 +276874,24 @@ } ] }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, { "slug": "sendinblue", "name": "Sendinblue", @@ -281700,31 +276955,13 @@ } ], "rootPath": true - }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 09:34:25", + "@generated": "Sun, 14 Jan 2024 09:09:33", "site": [ { "@name": "https://pix.fr", @@ -281814,6 +277051,48 @@ ] }, "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "pix.fr.", + "matched-at": "pix.fr", + "extracted-results": [ + "mailto:security@pix.fr", + "amazontrust.com", + "sectigo.com", + "letsencrypt.org", + "certigna.fr" + ], + "timestamp": "2024-01-14T09:13:55.598494215Z", + "matcher-status": true + }, { "template": "dns/mx-service-detector.yaml", "template-url": "https://templates.nuclei.sh/public/mx-service-detector", @@ -281844,7 +277123,7 @@ "type": "dns", "host": "pix.fr.", "matched-at": "pix.fr", - "timestamp": "2024-01-07T09:37:46.080240756Z", + "timestamp": "2024-01-14T09:13:55.728670897Z", "matcher-status": true }, { @@ -281881,92 +277160,13 @@ "host": "pix.fr.", "matched-at": "pix.fr", "extracted-results": [ - "5 alt2.aspmx.l.google.com.", "10 alt4.aspmx.l.google.com.", + "10 alt3.aspmx.l.google.com.", "1 aspmx.l.google.com.", - "5 alt1.aspmx.l.google.com.", - "10 alt3.aspmx.l.google.com." - ], - "timestamp": "2024-01-07T09:37:46.080347285Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "pix.fr.", - "matched-at": "pix.fr", - "extracted-results": [ - "amazontrust.com", - "sectigo.com", - "letsencrypt.org", - "certigna.fr", - "mailto:security@pix.fr" - ], - "timestamp": "2024-01-07T09:37:46.080628159Z", - "matcher-status": true - }, - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "pix.fr.", - "matched-at": "pix.fr", - "extracted-results": [ - "ns-180-c.gandi.net.", - "ns-66-b.gandi.net.", - "ns-137-a.gandi.net." + "5 alt2.aspmx.l.google.com.", + "5 alt1.aspmx.l.google.com." ], - "timestamp": "2024-01-07T09:37:46.081426541Z", + "timestamp": "2024-01-14T09:13:55.728750917Z", "matcher-status": true }, { @@ -282006,7 +277206,7 @@ "extracted-results": [ "\"v=DMARC1; p=none;\"" ], - "timestamp": "2024-01-07T09:37:46.177910527Z", + "timestamp": "2024-01-14T09:13:55.809864074Z", "matcher-status": true }, { @@ -282042,14 +277242,51 @@ "host": "pix.fr.", "matched-at": "pix.fr", "extracted-results": [ - "\"google-site-verification=fY1sZyFtwPwv2VVXg9n2Jm9wb-toBik1jx_wY5rFr-Q\"", - "\"v=spf1 include:_spf.google.com include:spf.sendinblue.com include:sendgrid.net include:fdspfeuc.freshemail.io ~all\"", - "\"google-site-verification=UNljrrJnA14smwGTYUI-_rRcHljWlAGUWFfPVGsGmF4\"", "\"MS=ms78848881\"", + "\"google-site-verification=UNljrrJnA14smwGTYUI-_rRcHljWlAGUWFfPVGsGmF4\"", "\"atlassian-domain-verification=6DZSPOR3Nou5LS+5cVTU+YOMTTGe8WzChA5b5blVV4XLzOEeTHP0sX+4E6d0aAQT\"", - "\"github-verification=JeK59q9M2jMLtSm9vXmt8wsuScEY9FWDkyM2r8Jx\"" + "\"v=spf1 include:_spf.google.com include:spf.sendinblue.com include:sendgrid.net include:fdspfeuc.freshemail.io ~all\"", + "\"github-verification=JeK59q9M2jMLtSm9vXmt8wsuScEY9FWDkyM2r8Jx\"", + "\"google-site-verification=fY1sZyFtwPwv2VVXg9n2Jm9wb-toBik1jx_wY5rFr-Q\"" ], - "timestamp": "2024-01-07T09:37:47.262706405Z", + "timestamp": "2024-01-14T09:13:56.432143289Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "pix.fr.", + "matched-at": "pix.fr", + "extracted-results": [ + "ns-66-b.gandi.net.", + "ns-137-a.gandi.net.", + "ns-180-c.gandi.net." + ], + "timestamp": "2024-01-14T09:13:56.57575758Z", "matcher-status": true }, { @@ -282088,8 +277325,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:37:57.5115141Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:14:14.844876673Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -282115,8 +277352,8 @@ "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:38:20.629211157Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:14:51.510450221Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -282148,12 +277385,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:38:28.968926957Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:15:06.298121879Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -282185,12 +277422,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:38:28.96897145Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:15:06.298171473Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -282222,12 +277459,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:38:28.968996577Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:15:06.298186883Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -282259,12 +277496,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:38:28.969010684Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:15:06.298200037Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -282296,12 +277533,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:38:28.969025051Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:15:06.298211269Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -282333,12 +277570,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:38:28.969043996Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:15:06.298229473Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -282370,12 +277607,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://pix.fr", "matched-at": "https://pix.fr", - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:38:28.969064594Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:15:06.298248479Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pix.fr'", "matcher-status": true }, @@ -282417,8 +277654,8 @@ "extracted-results": [ "0aaba343-5157-4b9b-9dd5-a57d49905a72" ], - "ip": "20.190.151.131", - "timestamp": "2024-01-07T09:38:30.340614151Z", + "ip": "20.190.151.132", + "timestamp": "2024-01-14T09:15:08.57341451Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: login.microsoftonline.com' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://login.microsoftonline.com:443/pix.fr/v2.0/.well-known/openid-configuration'", "matcher-status": true }, @@ -282456,15 +277693,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "expirationDate", "type": "http", "host": "https://pix.fr", "matched-at": "https://rdap.nic.fr/domain/pix.fr", "extracted-results": [ - "GIP PIX" + "2026-12-30T23:07:40Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020126789Z", + "timestamp": "2024-01-14T09:15:25.754298303Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -282510,7 +277747,7 @@ "abef1bba5fdc712aade4c92b79bfe7c0-23536255@contact.gandi.net" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020171052Z", + "timestamp": "2024-01-14T09:15:25.754338269Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -282548,17 +277785,64 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantPhone", "type": "http", "host": "https://pix.fr", "matched-at": "https://rdap.nic.fr/domain/pix.fr", "extracted-results": [ - "ns-137-a.gandi.net", - "ns-66-b.gandi.net", - "ns-180-c.gandi.net" + "+33.143400018" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020191921Z", + "timestamp": "2024-01-14T09:15:25.754372454Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantAddress", + "type": "http", + "host": "https://pix.fr", + "matched-at": "https://rdap.nic.fr/domain/pix.fr", + "extracted-results": [ + "21-23 Rue des Ardennes", + "Paris", + "75019", + "FR" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T09:15:25.754389697Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -282604,7 +277888,7 @@ "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.02020754Z", + "timestamp": "2024-01-14T09:15:25.754405998Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -282650,7 +277934,7 @@ "client transfer prohibited" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.02022869Z", + "timestamp": "2024-01-14T09:15:25.754415205Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -282696,7 +277980,99 @@ "2007-05-03T07:16:33Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020242806Z", + "timestamp": "2024-01-14T09:15:25.754424803Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantOrg", + "type": "http", + "host": "https://pix.fr", + "matched-at": "https://rdap.nic.fr/domain/pix.fr", + "extracted-results": [ + "GIP PIX" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T09:15:25.75443361Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantCountry", + "type": "http", + "host": "https://pix.fr", + "matched-at": "https://rdap.nic.fr/domain/pix.fr", + "extracted-results": [ + "FR" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T09:15:25.754442517Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -282734,110 +278110,17 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", - "type": "http", - "host": "https://pix.fr", - "matched-at": "https://rdap.nic.fr/domain/pix.fr", - "extracted-results": [ - "2026-12-30T23:07:40Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020258386Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantAddress", - "type": "http", - "host": "https://pix.fr", - "matched-at": "https://rdap.nic.fr/domain/pix.fr", - "extracted-results": [ - "Paris", - "75019", - "FR", - "21-23 Rue des Ardennes" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020269747Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantCountry", + "extractor-name": "nameServers", "type": "http", "host": "https://pix.fr", "matched-at": "https://rdap.nic.fr/domain/pix.fr", "extracted-results": [ - "FR" + "ns-137-a.gandi.net", + "ns-180-c.gandi.net", + "ns-66-b.gandi.net" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020279595Z", + "timestamp": "2024-01-14T09:15:25.754458918Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -282883,7 +278166,7 @@ "2023-12-28T01:11:47.806784Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020288251Z", + "timestamp": "2024-01-14T09:15:25.754475159Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -282929,53 +278212,7 @@ "GIP PIX" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020297869Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantPhone", - "type": "http", - "host": "https://pix.fr", - "matched-at": "https://rdap.nic.fr/domain/pix.fr", - "extracted-results": [ - "+33.143400018" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:38:39.020306866Z", + "timestamp": "2024-01-14T09:15:25.754490007Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/pix.fr'", "matcher-status": true }, @@ -283005,8 +278242,8 @@ "extracted-results": [ "DHIMYOTIS" ], - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:40:22.952374228Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:17:40.256853322Z", "matcher-status": true }, { @@ -283033,19 +278270,19 @@ "host": "pix.fr", "matched-at": "pix.fr:443", "extracted-results": [ - "pix.org", + "admin.pix.org", "certif.pix.fr", - "orga.pix.org", - "app.pix.fr", + "admin.pix.fr", "pix.fr", - "admin.pix.org", "certif.pix.org", + "orga.pix.fr", + "pix.org", "app.pix.org", - "admin.pix.fr", - "orga.pix.fr" + "orga.pix.org", + "app.pix.fr" ], - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:40:22.952528205Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:17:40.256996695Z", "matcher-status": true }, { @@ -283075,8 +278312,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:40:25.389736752Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:17:41.033465851Z", "matcher-status": true }, { @@ -283106,8 +278343,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.179.149.141", - "timestamp": "2024-01-07T09:40:26.27896963Z", + "ip": "185.179.148.141", + "timestamp": "2024-01-14T09:17:42.471875925Z", "matcher-status": true } ], @@ -283115,7 +278352,7 @@ { "requestedUrl": "https://pix.fr/", "finalUrl": "https://pix.fr/", - "fetchTime": "2024-01-07T09:34:39.002Z", + "fetchTime": "2024-01-14T09:09:47.476Z", "runWarnings": [], "categories": { "performance": { @@ -283178,53 +278415,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5426, + "numericValue": 5325, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1903, - "firstMeaningfulPaint": 1903, - "largestContentfulPaint": 30625, - "interactive": 5426, - "speedIndex": 3534, - "totalBlockingTime": 430, - "maxPotentialFID": 340, - "cumulativeLayoutShift": 0.11609695593516031, - "cumulativeLayoutShiftMainFrame": 0.11609695593516031, - "totalCumulativeLayoutShift": 0.11609695593516031, + "firstContentfulPaint": 2247, + "firstMeaningfulPaint": 2247, + "largestContentfulPaint": 8822, + "interactive": 5325, + "speedIndex": 3819, + "totalBlockingTime": 403, + "maxPotentialFID": 330, + "cumulativeLayoutShift": 0.1193915483686659, + "cumulativeLayoutShiftMainFrame": 0.1193915483686659, + "totalCumulativeLayoutShift": 0.1193915483686659, "observedTimeOrigin": 0, - "observedTimeOriginTs": 171022743, + "observedTimeOriginTs": 192648119, "observedNavigationStart": 0, - "observedNavigationStartTs": 171022743, - "observedFirstPaint": 403, - "observedFirstPaintTs": 171425514, - "observedFirstContentfulPaint": 403, - "observedFirstContentfulPaintTs": 171425514, - "observedFirstContentfulPaintAllFrames": 403, - "observedFirstContentfulPaintAllFramesTs": 171425514, - "observedFirstMeaningfulPaint": 403, - "observedFirstMeaningfulPaintTs": 171425514, - "observedLargestContentfulPaint": 911, - "observedLargestContentfulPaintTs": 171933666, - "observedLargestContentfulPaintAllFrames": 911, - "observedLargestContentfulPaintAllFramesTs": 171933666, - "observedTraceEnd": 3331, - "observedTraceEndTs": 174353311, - "observedLoad": 1023, - "observedLoadTs": 172045838, - "observedDomContentLoaded": 628, - "observedDomContentLoadedTs": 171650733, - "observedCumulativeLayoutShift": 0.11609695593516031, - "observedCumulativeLayoutShiftMainFrame": 0.11609695593516031, - "observedTotalCumulativeLayoutShift": 0.11609695593516031, - "observedFirstVisualChange": 403, - "observedFirstVisualChangeTs": 171425743, - "observedLastVisualChange": 1053, - "observedLastVisualChangeTs": 172075743, - "observedSpeedIndex": 863, - "observedSpeedIndexTs": 171885458 + "observedNavigationStartTs": 192648119, + "observedFirstPaint": 469, + "observedFirstPaintTs": 193116824, + "observedFirstContentfulPaint": 469, + "observedFirstContentfulPaintTs": 193116824, + "observedFirstContentfulPaintAllFrames": 469, + "observedFirstContentfulPaintAllFramesTs": 193116824, + "observedFirstMeaningfulPaint": 469, + "observedFirstMeaningfulPaintTs": 193116824, + "observedLargestContentfulPaint": 1105, + "observedLargestContentfulPaintTs": 193752851, + "observedLargestContentfulPaintAllFrames": 1105, + "observedLargestContentfulPaintAllFramesTs": 193752851, + "observedTraceEnd": 3779, + "observedTraceEndTs": 196427466, + "observedLoad": 1472, + "observedLoadTs": 194120569, + "observedDomContentLoaded": 846, + "observedDomContentLoadedTs": 193494457, + "observedCumulativeLayoutShift": 0.1193915483686659, + "observedCumulativeLayoutShiftMainFrame": 0.1193915483686659, + "observedTotalCumulativeLayoutShift": 0.1193915483686659, + "observedFirstVisualChange": 444, + "observedFirstVisualChangeTs": 193092119, + "observedLastVisualChange": 1494, + "observedLastVisualChangeTs": 194142119, + "observedSpeedIndex": 1065, + "observedSpeedIndexTs": 193713251 }, { "lcpInvalidated": false @@ -283246,19 +278483,19 @@ "numScripts": 14, "numStylesheets": 1, "numFonts": 6, - "numTasks": 2106, + "numTasks": 2120, "numTasksOver10ms": 7, - "numTasksOver25ms": 2, - "numTasksOver50ms": 2, + "numTasksOver25ms": 5, + "numTasksOver50ms": 3, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.6159999999999997, - "throughput": 90098045.0060161, - "maxRtt": 85.47399999999999, - "maxServerLatency": 143.016, - "totalByteWeight": 7360526, - "totalTaskTime": 541.480999999987, - "mainDocumentTransferSize": 7690 + "rtt": 8.242, + "throughput": 50689765.49541876, + "maxRtt": 152.56, + "maxServerLatency": 280.65, + "totalByteWeight": 7303939, + "totalTaskTime": 598.874999999988, + "mainDocumentTransferSize": 7685 } ] } @@ -283394,41 +278631,41 @@ "http": { "url": "https://place-des-entreprises.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 09:46:48 GMT", - "grade": "B+", + "end_time": "Sun, 14 Jan 2024 09:24:19 GMT", + "grade": "A+", "hidden": false, - "likelihood_indicator": "MEDIUM", + "likelihood_indicator": "LOW", "response_headers": { "Cache-Control": "no-store", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-X4L13IY1mk7Egc8jlWA9Gw=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-X4L13IY1mk7Egc8jlWA9Gw=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b", + "Content-Security-Policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-L5A5YfxrpDsy4og/JQj1zw=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-L5A5YfxrpDsy4og/JQj1zw=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 09:46:47 GMT", - "ETag": "W/\"b32bb77fdcc9afe8027bfa4d34cd4290\"", + "Date": "Sun, 14 Jan 2024 09:24:17 GMT", + "ETag": "W/\"c116a9e8b6e2aa42a77dcc3370cee447\"", "Expires": "0", - "Link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha256-8+pErQEggpGAY7uWiB65tL13ivQ31A3HKA55CEqYniU=; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-uwCOEtT/vtuzGz5QiQB6J1L3YFYSbznHZGi3B5Vc6+bnyGS3O9nnDfh6dCvLrQ7X; nopush", + "Link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha256-8+pErQEggpGAY7uWiB65tL13ivQ31A3HKA55CEqYniU=; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-uwCOEtT/vtuzGz5QiQB6J1L3YFYSbznHZGi3B5Vc6+bnyGS3O9nnDfh6dCvLrQ7X; nopush", "Pragma": "no-cache", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_PlaceDesEntreprises_session=h8x3tKahRSmk%2B6JCsFS2PCpuuiwC%2BJrDia7%2FBKqx1TGIBKvo3Bya4%2FCl2aUl73ndeDBC0ceR8lNnINHbNe%2BfPBlu0MMiarXD%2BuFFAvEfXWcuahKzaxTHp2NLBArUAFzd%2F6bbAudMa77RQ0zu%2B5JZ089In1g2Q%2FDBnUqXmjlua31i%2BH0ahOuMsTRTk0gr0c%2B%2BDeH6eJw9z%2FtksEu6Apug29wLicZXujxZT8L134rJKg3jqZF6jFJBaXeuPLf5gkx9oceIFY%2BqnnzAeyUAfXU4z6euCCW2G1KH4XcQkgjCqTsz3pJ9--moi553VRukY512XI--nWp2cuVtxtABGgKHSqAQEQ%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", - "Strict-Transport-Security": "max-age=31536000, max-age=31536000; includeSubDomains; preload", + "Set-Cookie": "_PlaceDesEntreprises_session=niKTHlRDLwqBssK3B9%2F%2F7cd0BffZcRwU4OzqvDBSiT4%2B1lm4qQWd3TaqRT1arspOlrJr%2BhHTxaQ59kGcHi%2BSW%2FCIgw6%2BAaM86QcdOQ%2FgVbGMomoaWiJOcFeaciVzD10YYJtkPwG48AMaCAibuVY0%2BfcB3d99bZI9tn8jU5K2p4HDibR1HduFpg3%2B3AEnZ6rlJA51BKwCh9BYSSte1GLLu9l79j%2F4J5ea%2B5bLVfslJ6wGmNoQuOxS7CJun1oHRsI%2ByRNCXuAZS%2BXIFNZGxuxD2RpYjt3LkYWGrO7R7Hun8vDb%2FoKn--UV1j4BQeYWWNqOl9--vOvkvWrKvAJu8K8tjYTtcw%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", "Transfer-Encoding": "chunked", "Vary": "Accept", "X-Content-Type-Options": "nosniff", "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "847f83a1-3360-4b47-837b-79e0db6b576f, 847f83a1-3360-4b47-837b-79e0db6b576f", - "X-Runtime": "0.064747", + "X-Request-ID": "f7b809e7-b106-402c-842b-550ef25c0b28, f7b809e7-b106-402c-842b-550ef25c0b28", + "X-Runtime": "0.050141", "X-XSS-Protection": "0" }, - "scan_id": 46232382, - "score": 80, - "start_time": "Sun, 07 Jan 2024 09:46:43 GMT", + "scan_id": 46463191, + "score": 115, + "start_time": "Sun, 14 Jan 2024 09:24:13 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 1, - "tests_passed": 11, + "tests_failed": 0, + "tests_passed": 12, "tests_quantity": 12, "details": { "content-security-policy": { @@ -283440,53 +278677,53 @@ "'self'" ], "connect-src": [ + "https://adservice.google.com", + "https://browser.sentry-cdn.com", + "*.sentry.io", "https://cdn.jsdelivr.net/", - "https://stats.beta.gouv.fr/", + "https://www.googletagmanager.com", "https://stats.data.gouv.fr/", - "https://tpc.googlesyndication.com", - "'self'", - "*.google.com", "https://api-adresse.data.gouv.fr/", - "https://pagead2.googlesyndication.com", - "https://www.googletagmanager.com", - "https://adservice.google.com", "https://googleads.g.doubleclick.net", - "https://browser.sentry-cdn.com", - "*.sentry.io" + "*.google.com", + "https://stats.beta.gouv.fr/", + "https://tpc.googlesyndication.com", + "'self'", + "https://pagead2.googlesyndication.com" ], "default-src": [ "'self'" ], "font-src": [ - "https://fonts.gstatic.com", - "https://github.com", "data:", - "'self'" + "https://fonts.gstatic.com", + "'self'", + "https://github.com" ], "frame-src": [ + "browser.sentry-cdn.com", "https://cdn.jsdelivr.net/", - "https://tpc.googlesyndication.com", "https://www.youtube-nocookie.com", - "https://bid.g.doubleclick.net", - "browser.sentry-cdn.com", - "'self'", + "stats.data.gouv.fr", "https://tube.nocturlab.fr", - "stats.data.gouv.fr" + "https://bid.g.doubleclick.net", + "https://tpc.googlesyndication.com", + "'self'" ], "img-src": [ - "https://www.google.fr", - "https://stats.beta.gouv.fr/", - "https://www.googleadservices.com", - "https://stats.data.gouv.fr/", - "'self'", - "https://jedonnemonavis.numerique.gouv.fr", - "https://www.google.com", - "data:", "415474841.privacysandbox.googleadservices.com", "https://adservice.google.com", + "https://www.googletagmanager.com", + "https://stats.data.gouv.fr/", + "https://www.google.fr", "https://www.gstatic.com", "https://googleads.g.doubleclick.net", - "https://www.googletagmanager.com" + "data:", + "https://jedonnemonavis.numerique.gouv.fr", + "https://www.google.com", + "https://www.googleadservices.com", + "https://stats.beta.gouv.fr/", + "'self'" ], "object-src": [ "'none'" @@ -283495,39 +278732,39 @@ "https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" ], "script-src": [ - "blob:", + "https://browser.sentry-cdn.com", "https://cdn.jsdelivr.net/", - "https://stats.beta.gouv.fr/", + "www.pagespeed-mod.com", "https://stats.data.gouv.fr/", + "https://googleads.g.doubleclick.net", "https://www.googleadservices.com", + "blob:", "https://www.google.com", + "'nonce-l5a5yfxrpdsy4og/jqj1zw=='", + "https://stats.beta.gouv.fr/", "https://www.googletagmanager.com/", - "www.pagespeed-mod.com", - "'nonce-x4l13iy1mk7egc8jlwa9gw=='", - "sentry.io", "'self'", - "https://googleads.g.doubleclick.net", - "https://browser.sentry-cdn.com" + "sentry.io" ], "script-src-elem": [ - "blob:", + "https://browser.sentry-cdn.com", "https://cdn.jsdelivr.net/", - "https://stats.beta.gouv.fr/", + "www.pagespeed-mod.com", "https://stats.data.gouv.fr/", + "https://googleads.g.doubleclick.net", "https://www.googleadservices.com", + "blob:", "https://www.google.com", + "'nonce-l5a5yfxrpdsy4og/jqj1zw=='", + "https://stats.beta.gouv.fr/", "https://www.googletagmanager.com/", - "www.pagespeed-mod.com", - "'nonce-x4l13iy1mk7egc8jlwa9gw=='", - "sentry.io", "'self'", - "https://googleads.g.doubleclick.net", - "https://browser.sentry-cdn.com" + "sentry.io" ], "style-src": [ + "'self'", "https://fonts.googleapis.com", - "'unsafe-inline'", - "'self'" + "'unsafe-inline'" ] }, "http": true, @@ -283650,16 +278887,16 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=31536000, max-age=31536000; includeSubDomains; preload", - "includeSubDomains": false, - "max-age": null, - "preload": false, + "data": "max-age=31536000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 31536000, + "preload": true, "preloaded": false }, - "pass": false, - "result": "hsts-header-invalid", - "score_description": "HTTP Strict Transport Security (HSTS) header cannot be recognized", - "score_modifier": -20 + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 }, "subresource-integrity": { "expectation": "sri-implemented-and-external-scripts-loaded-securely", @@ -283736,8 +278973,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T10:01:46Z", - "next_check_at": "2024-01-07T10:06:45Z", + "last_check_at": "2024-01-14T09:34:21Z", + "next_check_at": "2024-01-14T09:39:18Z", "created_at": "2021-04-22T19:59:36Z", "mute_until": null, "favicon_url": "https://place-des-entreprises.beta.gouv.fr/assets/favicon/favicon-cfcc00edd6aff5a1837afb8588fa6125d593cd9103892cc68992dd15e8e3506b.ico", @@ -283745,7 +278982,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T09:41:53Z", + "tested_at": "2024-01-14T09:19:25Z", "expires_at": "2024-03-07T17:18:10Z", "valid": true, "error": null @@ -283754,11 +278991,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 203, - "connection": 107, - "handshake": 114, - "response": 215, - "total": 640 + "namelookup": 143, + "connection": 117, + "handshake": 121, + "response": 210, + "total": 591 } }, "uptimeGrade": "A", @@ -283791,77 +279028,77 @@ "testssl": [ { "id": "service", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283869,7 +279106,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283877,7 +279114,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283885,7 +279122,7 @@ }, { "id": "cipherlist_LOW", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -283893,7 +279130,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -283901,7 +279138,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -283909,511 +279146,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-12-08 17:18" }, { "id": "cert_notAfter", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-03-07 17:18" }, { "id": "cert_extlifeSpan", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "WARN", - "finding": "Unexpected 503 Service Unavailable @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704620913" - }, - { - "id": "HSTS_multiple", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple HSTS headers. Using first header: max-age=31536000" + "finding": "1705224347" }, { "id": "HSTS_time", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-WO+LVBs1C6y05e8M5Of3TQ=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-WO+LVBs1C6y05e8M5Of3TQ=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-WEjJCXpJlddJUM2PM3hGMw=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-WEjJCXpJlddJUM2PM3hGMw=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + }, + { + "id": "X-XSS-Protection", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "no-store" + }, + { + "id": "Pragma", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -284421,7 +279700,7 @@ }, { "id": "heartbleed", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -284430,7 +279709,7 @@ }, { "id": "CCS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -284439,7 +279718,7 @@ }, { "id": "ticketbleed", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -284448,7 +279727,7 @@ }, { "id": "ROBOT", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -284457,7 +279736,7 @@ }, { "id": "secure_renego", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -284465,7 +279744,7 @@ }, { "id": "secure_client_renego", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -284474,7 +279753,7 @@ }, { "id": "CRIME_TLS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -284483,16 +279762,16 @@ }, { "id": "BREACH", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -284501,14 +279780,14 @@ }, { "id": "fallback_SCSV", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -284517,7 +279796,7 @@ }, { "id": "FREAK", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -284526,7 +279805,7 @@ }, { "id": "DROWN", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -284535,7 +279814,7 @@ }, { "id": "DROWN_hint", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -284544,7 +279823,7 @@ }, { "id": "LOGJAM", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -284553,7 +279832,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -284562,7 +279841,7 @@ }, { "id": "BEAST", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -284571,7 +279850,7 @@ }, { "id": "LUCKY13", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -284580,7 +279859,7 @@ }, { "id": "winshock", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -284589,7 +279868,7 @@ }, { "id": "RC4", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -284598,315 +279877,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" @@ -285258,7 +280537,7 @@ "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "60 >= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", @@ -285446,29 +280725,22 @@ "id": "HTTP_status_code", "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "WARN", - "finding": "Unexpected 503 Service Unavailable @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704621006" - }, - { - "id": "HSTS_multiple", - "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple HSTS headers. Using first header: max-age=31536000" + "finding": "1705224407" }, { "id": "HSTS_time", @@ -285481,15 +280753,15 @@ "id": "HSTS_subdomains", "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", @@ -285517,20 +280789,69 @@ "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "nosniff" }, { "id": "Content-Security-Policy", "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-Dkfrk6VwizfRmtNF0pMf5A=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-Dkfrk6VwizfRmtNF0pMf5A=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-auKmvBiVbUuhlCS8bn/RJQ=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-auKmvBiVbUuhlCS8bn/RJQ=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + }, + { + "id": "X-XSS-Protection", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", + "finding": "no-store" + }, + { + "id": "Pragma", + "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", "finding": "no-cache" }, { @@ -285607,10 +280928,10 @@ "id": "BREACH", "ip": "place-des-entreprises.beta.gouv.fr/148.253.75.120", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", @@ -286035,77 +281356,77 @@ }, { "id": "service", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -286113,7 +281434,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -286121,7 +281442,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -286129,7 +281450,7 @@ }, { "id": "cipherlist_LOW", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -286137,7 +281458,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -286145,7 +281466,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -286153,511 +281474,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-12-08 17:18" }, { "id": "cert_notAfter", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-03-07 17:18" }, { "id": "cert_extlifeSpan", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "WARN", - "finding": "Unexpected 503 Service Unavailable @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704621100" - }, - { - "id": "HSTS_multiple", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple HSTS headers. Using first header: max-age=31536000" + "finding": "1705224468" }, { "id": "HSTS_time", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-zoPUCL1plAUW4lPQo3/h0g=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-zoPUCL1plAUW4lPQo3/h0g=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-s1c7WIkQAPqT0A5TMEMEgA=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-s1c7WIkQAPqT0A5TMEMEgA=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + }, + { + "id": "X-XSS-Protection", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "no-store" + }, + { + "id": "Pragma", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -286665,7 +282028,7 @@ }, { "id": "heartbleed", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -286674,7 +282037,7 @@ }, { "id": "CCS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -286683,7 +282046,7 @@ }, { "id": "ticketbleed", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -286692,7 +282055,7 @@ }, { "id": "ROBOT", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -286701,7 +282064,7 @@ }, { "id": "secure_renego", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -286709,7 +282072,7 @@ }, { "id": "secure_client_renego", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -286718,7 +282081,7 @@ }, { "id": "CRIME_TLS", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -286727,16 +282090,16 @@ }, { "id": "BREACH", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -286745,14 +282108,14 @@ }, { "id": "fallback_SCSV", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -286761,7 +282124,7 @@ }, { "id": "FREAK", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -286770,7 +282133,7 @@ }, { "id": "DROWN", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -286779,7 +282142,7 @@ }, { "id": "DROWN_hint", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -286788,7 +282151,7 @@ }, { "id": "LOGJAM", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -286797,7 +282160,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -286806,7 +282169,7 @@ }, { "id": "BEAST", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -286815,7 +282178,7 @@ }, { "id": "LUCKY13", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -286824,7 +282187,7 @@ }, { "id": "winshock", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -286833,7 +282196,7 @@ }, { "id": "RC4", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -286842,315 +282205,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "place-des-entreprises.beta.gouv.fr/109.232.236.90", + "ip": "place-des-entreprises.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" @@ -287502,7 +282865,7 @@ "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "60 >= 30 days" + "finding": "53 >= 30 days" }, { "id": "cert_notBefore", @@ -287690,8 +283053,8 @@ "id": "HTTP_status_code", "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "WARN", - "finding": "Unexpected 503 Service Unavailable @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", @@ -287705,14 +283068,7 @@ "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704621194" - }, - { - "id": "HSTS_multiple", - "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple HSTS headers. Using first header: max-age=31536000" + "finding": "1705224528" }, { "id": "HSTS_time", @@ -287725,15 +283081,15 @@ "id": "HSTS_subdomains", "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "only for this domain" + "severity": "OK", + "finding": "includes subdomains" }, { "id": "HSTS_preload", "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" + "severity": "OK", + "finding": "domain IS marked for preloading" }, { "id": "HPKP", @@ -287761,20 +283117,69 @@ "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "nosniff" }, { "id": "Content-Security-Policy", "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-prUPVXYeyzYFHe632oSgTA=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-prUPVXYeyzYFHe632oSgTA=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + "finding": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-Lu0UX5sJJgNun8x0DccgtA=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-Lu0UX5sJJgNun8x0DccgtA=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b" + }, + { + "id": "X-XSS-Protection", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", + "finding": "no-store" + }, + { + "id": "Pragma", + "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", "finding": "no-cache" }, { @@ -287851,10 +283256,10 @@ "id": "BREACH", "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", @@ -288282,20 +283687,153 @@ "ip": "place-des-entreprises.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "380" + "finding": "242" } ], "thirdparties": { - "trackers": [], - "cookies": [], + "trackers": [ + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.9.7/tarteaucitron.min.js", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "unknown", + "url": "https://browser.sentry-cdn.com/7.35.0/bundle.min.js" + }, + { + "type": "unknown", + "url": "https://o1133659.ingest.sentry.io/api/5747178/envelope/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b&sentry_version=7&sentry_client=sentry.javascript.browser%2F7.35.0" + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.9.7/lang/tarteaucitron.fr.min.js?v=20220322", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "jsdelivr", + "url": "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.9.7/tarteaucitron.services.min.js?v=20220322", + "details": { + "id": "jsdelivr", + "message": "Host files locally" + } + }, + { + "type": "google tag manager", + "url": "https://www.googletagmanager.com/gtag/js?id=AW-415474841", + "details": { + "id": "google tag manager", + "message": "Use hosted Matomo instance" + } + }, + { + "type": "unknown", + "url": "https://pagead2.googlesyndication.com/pagead/landing?gcs=G10-&gcd=11p1l1l1l5&rnd=2060423492.1705224291&url=https%3A%2F%2Fplace-des-entreprises.beta.gouv.fr%2F&dma=0>m=45be41a0v9116231455" + } + ], + "cookies": [ + { + "name": "_pk_id.80.3b70", + "value": "7d3bfd983f651c78.1705224291.", + "domain": "place-des-entreprises.beta.gouv.fr", + "path": "/", + "expires": 1739179491, + "size": 42, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_ses.80.3b70", + "value": "1", + "domain": "place-des-entreprises.beta.gouv.fr", + "path": "/", + "expires": 1705226090, + "size": 16, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_ses.74.3b70", + "value": "1", + "domain": "place-des-entreprises.beta.gouv.fr", + "path": "/", + "expires": 1705226090, + "size": 16, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.74.3b70", + "value": "d12d15a3b4d94e4b.1705224291.", + "domain": "place-des-entreprises.beta.gouv.fr", + "path": "/", + "expires": 1739179491, + "size": 42, + "httpOnly": false, + "secure": true, + "session": false, + "sameSite": "None", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_PlaceDesEntreprises_session", + "value": "jwcB8N6eM0ocHCB8LdcSGWlinAv70UcTIEQiDS7R6r%2B5qTnWVTkxLKbnmoOrWXqwSNUJpkJerxKdyKn3lzbyuhp%2BavX6PA8OXtU4%2BGmpZvJyux1ezjniidstrBTKYf%2FhCQqpIAvFWClXJOG%2BJ5rhpWfBE3zEWAzxr1adjMKIHEIM9X%2F%2FZqEkk2K%2BUcF%2BKuzNHtJ1fazhWoqo2BSQt%2BX8k4MpHcHfAc03UM5KGHy4CNwDAu9wd2MQZ%2Bmgzaqz5Ptm7dpr6uQ6YMP8JQwkE8Pim3ksxsEwIN1rT0ZRtgPuHjbcTmgI--hN3lgswETmiJbf5C--Uifh6HwD%2BnIrihzvp%2Filqw%3D%3D", + "domain": "place-des-entreprises.beta.gouv.fr", + "path": "/", + "expires": -1, + "size": 406, + "httpOnly": true, + "secure": true, + "session": true, + "sameSite": "Strict", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { - "cache-control": "no-cache", - "content-length": "7", - "content-security-policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-0l1z9syqB/kKWdfIbXyPpQ=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-0l1z9syqB/kKWdfIbXyPpQ=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b", - "date": "Sun, 07 Jan 2024 09:47:20 GMT", - "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains", - "x-request-id": "85b6da9e-6b40-4e77-85b1-6293a6c34bdf\n85b6da9e-6b40-4e77-85b1-6293a6c34bdf", - "x-runtime": "0.005500" + "cache-control": "no-store", + "content-encoding": "gzip", + "content-security-policy": "default-src 'self'; base-uri 'self'; font-src 'self' data: https://github.com https://fonts.gstatic.com; img-src 'self' data: https://jedonnemonavis.numerique.gouv.fr https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.google.com https://www.google.fr https://googleads.g.doubleclick.net https://www.googletagmanager.com https://www.googleadservices.com https://www.gstatic.com https://adservice.google.com 415474841.privacysandbox.googleadservices.com; object-src 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-a+5aV0Y6eSRGlamz58zXQg=='; script-src-elem 'self' blob: https://browser.sentry-cdn.com sentry.io https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://cdn.jsdelivr.net/ https://www.googletagmanager.com/ https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com www.pagespeed-mod.com 'nonce-a+5aV0Y6eSRGlamz58zXQg=='; frame-src 'self' stats.data.gouv.fr browser.sentry-cdn.com https://cdn.jsdelivr.net/ https://bid.g.doubleclick.net https://tube.nocturlab.fr https://tpc.googlesyndication.com https://www.youtube-nocookie.com; connect-src 'self' *.sentry.io https://api-adresse.data.gouv.fr/ *.google.com https://adservice.google.com https://pagead2.googlesyndication.com https://tpc.googlesyndication.com https://googleads.g.doubleclick.net https://stats.data.gouv.fr/ https://stats.beta.gouv.fr/ https://www.googletagmanager.com https://browser.sentry-cdn.com https://cdn.jsdelivr.net/; report-uri https://o548798.ingest.sentry.io/api/5747178/security/?sentry_key=d975e83e2bee46cd8b3ca7be531a0a6b", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 14 Jan 2024 09:24:49 GMT", + "etag": "W/\"92ebb2594552b4b08b76472f803c7fa0\"", + "expires": "0", + "link": "; rel=preload; as=script; crossorigin=anonymous; integrity=sha256-8+pErQEggpGAY7uWiB65tL13ivQ31A3HKA55CEqYniU=; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; crossorigin=anonymous; integrity=sha384-uwCOEtT/vtuzGz5QiQB6J1L3YFYSbznHZGi3B5Vc6+bnyGS3O9nnDfh6dCvLrQ7X; nopush", + "pragma": "no-cache", + "referrer-policy": "strict-origin-when-cross-origin", + "set-cookie": "_PlaceDesEntreprises_session=jwcB8N6eM0ocHCB8LdcSGWlinAv70UcTIEQiDS7R6r%2B5qTnWVTkxLKbnmoOrWXqwSNUJpkJerxKdyKn3lzbyuhp%2BavX6PA8OXtU4%2BGmpZvJyux1ezjniidstrBTKYf%2FhCQqpIAvFWClXJOG%2BJ5rhpWfBE3zEWAzxr1adjMKIHEIM9X%2F%2FZqEkk2K%2BUcF%2BKuzNHtJ1fazhWoqo2BSQt%2BX8k4MpHcHfAc03UM5KGHy4CNwDAu9wd2MQZ%2Bmgzaqz5Ptm7dpr6uQ6YMP8JQwkE8Pim3ksxsEwIN1rT0ZRtgPuHjbcTmgI--hN3lgswETmiJbf5C--Uifh6HwD%2BnIrihzvp%2Filqw%3D%3D; path=/; secure; HttpOnly; SameSite=Strict", + "strict-transport-security": "max-age=31536000; includeSubDomains; preload", + "x-content-type-options": "nosniff", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "b3fa8f2a-cf18-4ddc-9f6a-cc50b65110db\nb3fa8f2a-cf18-4ddc-9f6a-cc50b65110db", + "x-runtime": "0.058587", + "x-xss-protection": "0" }, "endpoints": [ { @@ -288386,16 +283924,549 @@ } ] } + }, + { + "hostname": "cdn.jsdelivr.net", + "ip": "146.75.77.229", + "geoip": { + "city": { + "geoname_id": 4887398, + "names": { + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 41.8719, + "longitude": -87.6589, + "metro_code": 602, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "60607" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4896861, + "iso_code": "IL", + "names": { + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" + } + } + ] + } + }, + { + "hostname": "browser.sentry-cdn.com", + "ip": "151.101.194.217", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "o1133659.ingest.sentry.io", + "ip": "34.120.195.249", + "geoip": { + "city": { + "geoname_id": 4393217, + "names": { + "de": "Kansas City", + "en": "Kansas City", + "es": "Kansas City", + "fr": "Kansas City", + "ja": "カンザスシティ", + "pt-BR": "Kansas City", + "ru": "Канзас-Сити" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 39.1027, + "longitude": -94.5778, + "metro_code": 616, + "time_zone": "America/Chicago" + }, + "postal": { + "code": "64184" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "subdivisions": [ + { + "geoname_id": 4398678, + "iso_code": "MO", + "names": { + "en": "Missouri", + "es": "Missouri", + "fr": "Missouri", + "ja": "ミズーリ州", + "pt-BR": "Missúri", + "ru": "Миссури", + "zh-CN": "密苏里州" + } + } + ] + } + }, + { + "hostname": "www.googletagmanager.com", + "ip": "142.250.190.40", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "pagead2.googlesyndication.com", + "ip": "172.217.4.34", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } } ] }, "wappalyzer": { "urls": { "https://place-des-entreprises.beta.gouv.fr/": { - "status": 503 + "status": 200 } }, "technologies": [ + { + "slug": "sentry", + "name": "Sentry", + "description": "Sentry is an open-source platform for workflow productivity, aggregating errors from across the stack in real time.", + "confidence": 100, + "version": "7.35.0", + "icon": "Sentry.svg", + "website": "https://sentry.io/", + "cpe": null, + "categories": [ + { + "id": 13, + "slug": "issue-trackers", + "name": "Issue trackers" + } + ], + "rootPath": true + }, + { + "slug": "ruby", + "name": "Ruby", + "description": "Ruby is an open-source object-oriented programming language.", + "confidence": 100, + "version": null, + "icon": "Ruby.png", + "website": "https://ruby-lang.org", + "cpe": "cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 27, + "slug": "programming-languages", + "name": "Programming languages" + } + ] + }, + { + "slug": "firebase", + "name": "Firebase", + "description": "Firebase is a Google-backed application development software that enables developers to develop iOS, Android and Web apps.", + "confidence": 100, + "version": "8.6.2", + "icon": "Firebase.svg", + "website": "https://firebase.google.com", + "cpe": "cpe:2.3:a:google:firebase_cloud_messaging:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 34, + "slug": "databases", + "name": "Databases" + }, + { + "id": 47, + "slug": "development", + "name": "Development" + } + ] + }, + { + "slug": "ruby-on-rails", + "name": "Ruby on Rails", + "description": "Ruby on Rails is a server-side web application framework written in Ruby under the MIT License.", + "confidence": 100, + "version": null, + "icon": "Ruby on Rails.svg", + "website": "https://rubyonrails.org", + "cpe": "cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 18, + "slug": "web-frameworks", + "name": "Web frameworks" + } + ], + "rootPath": true + }, + { + "slug": "jsdelivr", + "name": "jsDelivr", + "description": "JSDelivr is a free public CDN for open-source projects. It can serve web files directly from the npm registry and GitHub repositories without any configuration.", + "confidence": 100, + "version": null, + "icon": "jsdelivr-icon.svg", + "website": "https://www.jsdelivr.com/", + "cpe": null, + "categories": [ + { + "id": 31, + "slug": "cdn", + "name": "CDN" + } + ], + "rootPath": true + }, + { + "slug": "google-analytics", + "name": "Google Analytics", + "description": "Google Analytics is a free web analytics service that tracks and reports website traffic.", + "confidence": 100, + "version": null, + "icon": "Google Analytics.svg", + "website": "https://google.com/analytics", + "cpe": null, + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "turbo", + "name": "Turbo", + "description": "Turbo is a JavaScript framework for building fast web applications.", + "confidence": 100, + "version": null, + "icon": "Turbo.svg", + "website": "https://turbo.hotwired.dev/", + "cpe": null, + "categories": [ + { + "id": 92, + "slug": "performance", + "name": "Performance" + } + ], + "rootPath": true + }, + { + "slug": "matomo-analytics", + "name": "Matomo Analytics", + "description": "Matomo Analytics is a free and open-source web analytics application, that runs on a PHP/MySQL web-server.", + "confidence": 100, + "version": null, + "icon": "Matomo.svg", + "website": "https://matomo.org", + "cpe": "cpe:2.3:a:matomo:matomo:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 10, + "slug": "analytics", + "name": "Analytics" + } + ], + "rootPath": true + }, + { + "slug": "jquery", + "name": "jQuery", + "description": "jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.", + "confidence": 100, + "version": "3.7.1", + "icon": "jQuery.svg", + "website": "https://jquery.com", + "cpe": "cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*", + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "core-js", + "name": "core-js", + "description": "core-js is a modular standard library for JavaScript, with polyfills for cutting-edge ECMAScript features.", + "confidence": 100, + "version": "3.35.0", + "icon": "core-js.png", + "website": "https://github.com/zloirock/core-js", + "cpe": null, + "categories": [ + { + "id": 59, + "slug": "javascript-libraries", + "name": "JavaScript libraries" + } + ], + "rootPath": true + }, + { + "slug": "recaptcha", + "name": "reCAPTCHA", + "description": "reCAPTCHA is a free service from Google that helps protect websites from spam and abuse.", + "confidence": 100, + "version": null, + "icon": "reCAPTCHA.svg", + "website": "https://www.google.com/recaptcha/", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] + }, { "slug": "hsts", "name": "HSTS", @@ -288413,13 +284484,67 @@ } ], "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 100, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 09:46:12", + "@generated": "Sun, 14 Jan 2024 09:23:48", "site": [ { "@name": "https://place-des-entreprises.beta.gouv.fr", @@ -288428,11 +284553,67 @@ "@ssl": "true", "alerts": [ { - "name": "Strict-Transport-Security Multiple Header Entries (Non-compliant with Spec)", + "name": "Absence of Anti-CSRF Tokens", + "riskcode": "2", + "confidence": "1", + "riskdesc": "Medium (Low)", + "desc": "

No Anti-CSRF tokens were found in a HTML submission form.

A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.

CSRF attacks are effective in a number of situations, including:

* The victim has an active session on the target site.

* The victim is authenticated via HTTP auth on the target site.

* The victim is on the same local network as the target site.

CSRF has primarily been used to perform an action against a target site using the victim's privileges, but recent techniques have been discovered to disclose information by gaining access to the response. The risk of information disclosure is dramatically increased when the target site is vulnerable to XSS, because XSS can be used as a platform for CSRF, allowing the attack to operate within the bounds of the same-origin policy.

" + }, + { + "name": "CSP: Wildcard Directive", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "CSP: style-src unsafe-inline", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "Vulnerable JS Library", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "

The identified library highcharts, version 6.0.3 is vulnerable.

" + }, + { + "name": "CSP: Notices", "riskcode": "1", "confidence": "3", "riskdesc": "Low (High)", - "desc": "

HTTP Strict Transport Security (HSTS) headers were found, a response with multiple HSTS header entries is not compliant with the specification (RFC 6797) and only the first HSTS header will be processed others will be ignored by user agents or the HSTS policy may be incorrectly applied.

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL).

" + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, + { + "name": "Dangerous JS Functions", + "riskcode": "1", + "confidence": "1", + "riskdesc": "Low (Low)", + "desc": "

A dangerous JS function seems to be in use that would leave the site vulnerable.

" + }, + { + "name": "Permissions Policy Header Not Set", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" + }, + { + "name": "Authentication Request Identified", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The given request has been identified as an authentication request. The 'Other Info' field contains a set of key=value lines which identify any relevant fields. If the request is in a context which has an Authentication Method set to \"Auto-Detect\" then this rule will change the authentication to match the request identified.

" + }, + { + "name": "Base64 Disclosure", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, { "name": "Content-Type Header Missing", @@ -288441,6 +284622,20 @@ "riskdesc": "Informational (Medium)", "desc": "

The Content-Type header was either missing or empty.

" }, + { + "name": "Information Disclosure - Suspicious Comments", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" + }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" + }, { "name": "Non-Storable Content", "riskcode": "0", @@ -288483,12 +284678,33 @@ "riskdesc": "Informational (High)", "desc": "

Specifies if a navigation request was initiated by a user.

" }, + { + "name": "Session Management Response Identified", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to \"Auto-Detect\" then this rule will change the session management to use the tokens identified.

" + }, { "name": "Storable and Cacheable Content", "riskcode": "0", "confidence": "2", "riskdesc": "Informational (Medium)", "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" + }, + { + "name": "Storable but Non-Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" + }, + { + "name": "User Controllable HTML Element Attribute (Potential XSS)", + "riskcode": "0", + "confidence": "1", + "riskdesc": "Informational (Low)", + "desc": "

This check looks at user-supplied input in query string parameters and POST data to identify where certain HTML attribute values might be controlled. This provides hot-spot detection for XSS (cross-site scripting) that will require further review by a security analyst to determine exploitability.

" } ] } @@ -288496,20 +284712,24 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -288525,10 +284745,10 @@ "host": "place-des-entreprises.beta.gouv.fr.", "matched-at": "place-des-entreprises.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T09:54:56.304259187Z", + "timestamp": "2024-01-14T09:30:18.309006666Z", "matcher-status": true }, { @@ -288568,27 +284788,24 @@ "extracted-results": [ "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T09:54:56.308425801Z", + "timestamp": "2024-01-14T09:30:18.367546443Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -288604,28 +284821,29 @@ "host": "place-des-entreprises.beta.gouv.fr.", "matched-at": "place-des-entreprises.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T09:54:56.593907321Z", + "timestamp": "2024-01-14T09:30:18.565266572Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -288641,27 +284859,29 @@ "type": "dns", "host": "place-des-entreprises.beta.gouv.fr.", "matched-at": "place-des-entreprises.beta.gouv.fr", - "timestamp": "2024-01-07T09:54:56.709118894Z", + "extracted-results": [ + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + ], + "timestamp": "2024-01-14T09:30:19.087625205Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -288677,11 +284897,7 @@ "type": "dns", "host": "place-des-entreprises.beta.gouv.fr.", "matched-at": "place-des-entreprises.beta.gouv.fr", - "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." - ], - "timestamp": "2024-01-07T09:54:56.72593653Z", + "timestamp": "2024-01-14T09:30:19.096462784Z", "matcher-status": true }, { @@ -288716,8 +284932,8 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:05.512045739Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:11.737595337Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288749,12 +284965,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:05.512085242Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:11.737642625Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288786,12 +285002,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:05.512097204Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:11.737658094Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288823,12 +285039,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:05.512114466Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:11.737670096Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288860,12 +285076,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:05.512231343Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:11.737686096Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288897,12 +285113,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:05.512248945Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:11.737700403Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288934,12 +285150,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:05.512258453Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:11.73771492Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -288971,12 +285187,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:05.512267009Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:11.737727203Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -289008,12 +285224,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:05.512276837Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:11.737739495Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr'", "matcher-status": true }, @@ -289040,8 +285256,8 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr/robots.txt", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:20.872672714Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:23.462642033Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -289068,8 +285284,8 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr/robots.txt", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:20.903036662Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:23.463432306Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -289106,8 +285322,8 @@ "https://cdn.jsdelivr.net/npm/tarteaucitronjs@1.9.7/tarteaucitron.min.js", "https://browser.sentry-cdn.com/7.35.0/bundle.min.js" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:30.360354127Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:30.603441893Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: place-des-entreprises.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr/'", "matcher-status": true }, @@ -289146,8 +285362,8 @@ "type": "http", "host": "https://place-des-entreprises.beta.gouv.fr", "matched-at": "https://place-des-entreprises.beta.gouv.fr/", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:56:41.337250435Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:31:39.630367769Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: place-des-entreprises.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://place-des-entreprises.beta.gouv.fr/'", "matcher-status": true }, @@ -289177,8 +285393,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T10:02:31.711614528Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:37:23.136674013Z", "matcher-status": true }, { @@ -289207,8 +285423,8 @@ "extracted-results": [ "place-des-entreprises.beta.gouv.fr" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T10:02:31.71173382Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:37:23.1367907Z", "matcher-status": true }, { @@ -289238,8 +285454,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T10:02:33.904391478Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:37:24.977487602Z", "matcher-status": true }, { @@ -289269,12 +285485,166 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T10:02:34.294206788Z", + "ip": "109.232.236.90", + "timestamp": "2024-01-14T09:37:25.230394804Z", "matcher-status": true } ], - "lhr": null, + "lhr": [ + { + "requestedUrl": "https://place-des-entreprises.beta.gouv.fr/", + "finalUrl": "https://place-des-entreprises.beta.gouv.fr/", + "fetchTime": "2024-01-14T09:24:02.252Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 1 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 1 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 1 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 0.99 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.7 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 4258, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 3257, + "firstMeaningfulPaint": 3299, + "largestContentfulPaint": 6325, + "interactive": 4258, + "speedIndex": 4407, + "totalBlockingTime": 139, + "maxPotentialFID": 189, + "cumulativeLayoutShift": 0.004435957484775119, + "cumulativeLayoutShiftMainFrame": 0.004435957484775119, + "totalCumulativeLayoutShift": 0.004435957484775119, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 211775296, + "observedNavigationStart": 0, + "observedNavigationStartTs": 211775296, + "observedFirstPaint": 968, + "observedFirstPaintTs": 212743222, + "observedFirstContentfulPaint": 968, + "observedFirstContentfulPaintTs": 212743222, + "observedFirstContentfulPaintAllFrames": 968, + "observedFirstContentfulPaintAllFramesTs": 212743222, + "observedFirstMeaningfulPaint": 968, + "observedFirstMeaningfulPaintTs": 212743222, + "observedLargestContentfulPaint": 1488, + "observedLargestContentfulPaintTs": 213263285, + "observedLargestContentfulPaintAllFrames": 1488, + "observedLargestContentfulPaintAllFramesTs": 213263285, + "observedTraceEnd": 3869, + "observedTraceEndTs": 215643944, + "observedLoad": 1440, + "observedLoadTs": 213214882, + "observedDomContentLoaded": 925, + "observedDomContentLoadedTs": 212699962, + "observedCumulativeLayoutShift": 0.004435957484775119, + "observedCumulativeLayoutShiftMainFrame": 0.004435957484775119, + "observedTotalCumulativeLayoutShift": 0.004435957484775119, + "observedFirstVisualChange": 966, + "observedFirstVisualChangeTs": 212741296, + "observedLastVisualChange": 1499, + "observedLastVisualChangeTs": 213274296, + "observedSpeedIndex": 1316, + "observedSpeedIndexTs": 213090809 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 45, + "numScripts": 10, + "numStylesheets": 2, + "numFonts": 4, + "numTasks": 827, + "numTasksOver10ms": 8, + "numTasksOver25ms": 1, + "numTasksOver50ms": 1, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 0, + "throughput": 10958031.230481215, + "maxRtt": 103.208, + "maxServerLatency": 16.143000000000004, + "totalByteWeight": 822366, + "totalTaskTime": 322.4509999999993, + "mainDocumentTransferSize": 11487 + } + ] + } + } + } + } + ], "screenshot": true, "stats": { "grade": "A", @@ -289292,16 +285662,18 @@ "uri": "" }, "declaration-a11y": { - "mention": null + "mention": "Accessibilité : partiellement conforme", + "declarationUrl": "https://place-des-entreprises.beta.gouv.fr/accessibilite" }, "declaration-rgpd": [ { "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://place-des-entreprises.beta.gouv.fr/mentions_legales" }, { "slug": "pc", @@ -289365,7 +285737,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "B+", + "httpGrade": "A+", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -289376,15 +285748,25 @@ "testsslExpireSoon": false, "testsslExpireDate": "2024-03-07T17:18:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "A", - "trackersCount": 0, + "cookiesGrade": "C", + "cookiesCount": 5, + "trackersGrade": "C", + "trackersCount": 7, + "lighthouse_performance": 1, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 1, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 1, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 0.99, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.7, + "lighthouse_pwaGrade": "B", "statsGrade": "A", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "F", - "declaration-rgpd-ml": "F", + "declaration-a11y": "B", + "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "F" } }, @@ -289400,27 +285782,27 @@ "http": { "url": "https://plusfraichemaville.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:52:00 GMT", + "end_time": "Sun, 14 Jan 2024 01:48:40 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Cache-Control": "public, max-age=0, must-revalidate", "Content-Encoding": "gzip", - "Content-Length": "20110", + "Content-Length": "20111", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 01:51:59 GMT", - "Etag": "\"9a8cf1e458b8b2bf5c80c56d801cb8cd\"", - "Last-Modified": "Thu, 04 Jan 2024 10:32:55 GMT", + "Date": "Sun, 14 Jan 2024 01:48:38 GMT", + "Etag": "\"8a9fbc305d3da085ed51031279505d0b\"", + "Last-Modified": "Wed, 10 Jan 2024 16:45:39 GMT", "Link": "; rel=\"preconnect\", ; rel=\"preconnect\"; crossorigin=\"\"", "Server": "Framer/1921063", "Server-Timing": "region;desc=\"us-west-2\", cache;desc=\"cached\", ssg-status;desc=\"optimized\", version;desc=\"1921063\"", "Strict-Transport-Security": "max-age=31536000", "Vary": "Accept-Encoding" }, - "scan_id": 46226553, + "scan_id": 46435247, "score": 35, - "start_time": "Sun, 07 Jan 2024 01:51:58 GMT", + "start_time": "Sun, 14 Jan 2024 01:48:38 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -289549,7 +285931,7 @@ "crossorigin": null, "integrity": null }, - "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.AIRD66I5.mjs": { + "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.GPTI4SMW.mjs": { "crossorigin": null, "integrity": null }, @@ -289974,7 +286356,7 @@ "ip": "plusfraichemaville.fr/35.71.142.77", "port": "443", "severity": "OK", - "finding": "62 >= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", @@ -290177,14 +286559,14 @@ "ip": "plusfraichemaville.fr/35.71.142.77", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "plusfraichemaville.fr/35.71.142.77", "port": "443", "severity": "INFO", - "finding": "1704621027" + "finding": "1705224667" }, { "id": "HSTS_time", @@ -291089,7 +287471,7 @@ "ip": "plusfraichemaville.fr/52.223.52.2", "port": "443", "severity": "OK", - "finding": "62 >= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", @@ -291299,7 +287681,7 @@ "ip": "plusfraichemaville.fr/52.223.52.2", "port": "443", "severity": "INFO", - "finding": "1704621067" + "finding": "1705224707" }, { "id": "HSTS_time", @@ -291862,7 +288244,7 @@ "ip": "plusfraichemaville.fr/52.223.52.2", "port": "443", "severity": "INFO", - "finding": "82" + "finding": "81" } ], "thirdparties": { @@ -291881,11 +288263,11 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-N5POMYXV.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-RWVMKCNS.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-BU6SIZPM.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-X2YDMXSV.mjs" }, { "type": "unknown", @@ -291893,23 +288275,23 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/Sdv_bJ_L4LJ-pjYTmg4DWb8OhzWIgQ_rJes_SpsGGDE.IKTND4MA.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/Sdv_bJ_L4LJ-pjYTmg4DWb8OhzWIgQ_rJes_SpsGGDE.G6YTUIN2.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-GISJOEGV.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-44L22W5Y.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-TUC3MDWK.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-LEO3RIY2.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-UP5WWLPI.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-EMMXT5XC.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-GBJ2XBQE.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-J47YPWEG.mjs" }, { "type": "unknown", @@ -291925,27 +288307,27 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-VK4OH4N7.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-JXH5KCTC.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-CHJJEF76.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-YDCTH7HC.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-ZQ466ZNP.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-PN55G56E.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-QD5VLYX6.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-XY4P3BNZ.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-MOKXR7RK.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-A67BI6WK.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-NED2FKAH.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-QCEKCIIC.mjs" }, { "type": "unknown", @@ -291953,7 +288335,7 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.AIRD66I5.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.GPTI4SMW.mjs" }, { "type": "unknown", @@ -292045,87 +288427,87 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/h_9NjPQ46ALJcXWvRUrBmg8z76H-5Q7C3KZnSirKRSc.QDIGUKSP.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/h_9NjPQ46ALJcXWvRUrBmg8z76H-5Q7C3KZnSirKRSc.K5DQBTFP.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/H5cxoVEfL75blCROSzvCnEXeMOpTOLu9A095BZNeu3k.PLIV3NL6.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/H5cxoVEfL75blCROSzvCnEXeMOpTOLu9A095BZNeu3k.ZH64JJMP.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/pRRpZwg0rbyRelNDUdodlJQ-CmNTN0bI9GyhM46B0Is.IDRPYYPY.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/DsOxkyukH6At7UL-3jK_Wl72ZTF57plzCCRgQPNsjjM.W2GVPMRB.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/ptkk8TI0cgb5xzEId9KZTeCjHLJqPrpbkdkkul3Anyg.R4RI2MEB.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/xnBC3d4hpEddETxisq4asUpYol6GS0SgX2hBV6yUaeo.M72B3BQC.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-BDCHPJIB.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-QDSRPQGZ.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-TPUXR6MC.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-YARGJ4N3.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-QDSRPQGZ.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-BDCHPJIB.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-3KWWSOF7.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-YMS53OBW.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/HPeMjQgXNjO7_FZqv70P_3Q6vTtuCur5dDy-oeCf-kQ.OU47FXPO.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/HPeMjQgXNjO7_FZqv70P_3Q6vTtuCur5dDy-oeCf-kQ.AJGKXOEZ.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-RONS6XL4.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-3FWUCG2B.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-OV43AQCY.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-EWIUGKGN.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-SL5FWA2R.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-AQR2WI36.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-CGPMVLKC.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-JU2X5GFX.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-LOGHNJGY.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-7JJRXPBX.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-RXYGCIAP.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-NZNKHWBI.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-BI3NICIM.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-WS75EWGJ.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-KYXIREBG.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-GG7SWN56.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-XEEPWHGH.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-QQKAIQCH.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-PUT66ICN.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-SO6CGT5Y.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-6LF345DL.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-XPKEK7LO.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-7JJRXPBX.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-CGPMVLKC.mjs" }, { "type": "unknown", @@ -292133,15 +288515,15 @@ }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-LVDWGEBI.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-LRQO2QBC.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-6LTEFE3B.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-ZJ3TEI5V.mjs" }, { "type": "unknown", - "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-P5GP3XM2.mjs" + "url": "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/chunk-MDSRVAAZ.mjs" }, { "type": "unknown", @@ -292154,7 +288536,7 @@ "value": "1", "domain": "plusfraichemaville.fr", "path": "/", - "expires": 1704622792, + "expires": 1705226432, "size": 16, "httpOnly": false, "secure": false, @@ -292166,10 +288548,10 @@ }, { "name": "_pk_id.81.1db9", - "value": "71f4fd460ec98f93.1704620992.", + "value": "519f95f1818a3f4b.1705224633.", "domain": "plusfraichemaville.fr", "path": "/", - "expires": 1738576192, + "expires": 1739179833, "size": 42, "httpOnly": false, "secure": false, @@ -292183,11 +288565,11 @@ "headers": { "cache-control": "public, max-age=0, must-revalidate", "content-encoding": "br", - "content-length": "16989", + "content-length": "16986", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 09:49:50 GMT", - "etag": "\"9a8cf1e458b8b2bf5c80c56d801cb8cd\"", - "last-modified": "Thu, 04 Jan 2024 10:32:55 GMT", + "date": "Sun, 14 Jan 2024 09:30:28 GMT", + "etag": "\"8a9fbc305d3da085ed51031279505d0b\"", + "last-modified": "Wed, 10 Jan 2024 16:45:39 GMT", "link": "; rel=\"preconnect\", ; rel=\"preconnect\"; crossorigin=\"\"", "server": "Framer/1921063", "server-timing": "region;desc=\"us-west-2\", cache;desc=\"cached\", ssg-status;desc=\"optimized\", version;desc=\"1921063\"", @@ -292197,7 +288579,7 @@ "endpoints": [ { "hostname": "plusfraichemaville.fr", - "ip": "35.71.142.77", + "ip": "52.223.52.2", "geoip": { "continent": { "code": "NA", @@ -292217,7 +288599,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292237,7 +288619,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292283,7 +288665,7 @@ } }, "location": { - "accuracy_radius": 1000, + "accuracy_radius": 500, "latitude": 48.8582, "longitude": 2.3387, "time_zone": "Europe/Paris" @@ -292307,7 +288689,7 @@ }, { "hostname": "framerusercontent.com", - "ip": "18.244.214.61", + "ip": "18.244.214.87", "geoip": { "continent": { "code": "NA", @@ -292327,7 +288709,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292347,7 +288729,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292361,7 +288743,7 @@ }, { "hostname": "events.framer.com", - "ip": "65.8.161.93", + "ip": "65.8.161.79", "geoip": { "continent": { "code": "NA", @@ -292381,7 +288763,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292401,7 +288783,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292435,7 +288817,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292455,7 +288837,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292469,7 +288851,7 @@ }, { "hostname": "app.framerstatic.com", - "ip": "18.155.202.84", + "ip": "18.155.202.58", "geoip": { "continent": { "code": "NA", @@ -292489,7 +288871,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292509,7 +288891,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -292712,7 +289094,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 09:49:11", + "@generated": "Sun, 14 Jan 2024 09:29:49", "site": [ { "@name": "https://plusfraichemaville.fr", @@ -292876,7 +289258,7 @@ "type": "dns", "host": "plusfraichemaville.fr.", "matched-at": "plusfraichemaville.fr", - "timestamp": "2024-01-07T09:52:10.54112736Z", + "timestamp": "2024-01-14T09:32:50.301206254Z", "matcher-status": true }, { @@ -292912,7 +289294,7 @@ "ns81.domaincontrol.com.", "ns82.domaincontrol.com." ], - "timestamp": "2024-01-07T09:52:11.539550302Z", + "timestamp": "2024-01-14T09:32:50.302007182Z", "matcher-status": true }, { @@ -292943,12 +289325,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.173717579Z", + "timestamp": "2024-01-14T09:33:20.9339151Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -292980,12 +289362,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.173788502Z", + "timestamp": "2024-01-14T09:33:20.933962288Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293017,12 +289399,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.173802739Z", + "timestamp": "2024-01-14T09:33:20.93397944Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293054,12 +289436,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.173816204Z", + "timestamp": "2024-01-14T09:33:20.933995019Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293091,12 +289473,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.173828146Z", + "timestamp": "2024-01-14T09:33:20.934055632Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293128,12 +289510,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.173840018Z", + "timestamp": "2024-01-14T09:33:20.934069067Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293165,12 +289547,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.173852501Z", + "timestamp": "2024-01-14T09:33:20.934117197Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293202,12 +289584,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.173866347Z", + "timestamp": "2024-01-14T09:33:20.9341455Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293239,12 +289621,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.173880364Z", + "timestamp": "2024-01-14T09:33:20.934178822Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293276,12 +289658,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:41.17389447Z", + "timestamp": "2024-01-14T09:33:20.934191576Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293312,10 +289694,10 @@ "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr", "extracted-results": [ - "Framer 1119174" + "Framer 61bac00" ], "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:44.10214169Z", + "timestamp": "2024-01-14T09:33:23.933451498Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr'", "matcher-status": true }, @@ -293343,7 +289725,7 @@ "host": "https://plusfraichemaville.fr", "matched-at": "https://plusfraichemaville.fr/robots.txt", "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:47.595445838Z", + "timestamp": "2024-01-14T09:33:27.359385755Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr/robots.txt'", "matcher-status": true }, @@ -293381,15 +289763,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "secureDNS", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "2022-12-17T18:53:06.153009Z" + "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853496003Z", + "timestamp": "2024-01-14T09:33:28.641762839Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293427,15 +289809,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "expirationDate", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "Penelope Liot" + "2024-12-12T18:46:34.678623Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853532972Z", + "timestamp": "2024-01-14T09:33:28.642500445Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293473,18 +289855,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "registrantName", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "FR", - "39 hameau Boileau, 39 hameau Boileau", - "Paris", - "75016" + "beta.gouv" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853543592Z", + "timestamp": "2024-01-14T09:33:28.64313581Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293522,16 +289901,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantPhone", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "ns82.domaincontrol.com", - "ns81.domaincontrol.com" + "+33.0677910405" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853562257Z", + "timestamp": "2024-01-14T09:33:28.643721813Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293569,15 +289947,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "registrantAddress", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ + "39 hameau Boileau, 39 hameau Boileau", + "Paris", + "75016", "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853582585Z", + "timestamp": "2024-01-14T09:33:28.644360615Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293615,15 +289996,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantEmail", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "false" + "penelope.liot@beta.gouv.fr" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853597232Z", + "timestamp": "2024-01-14T09:33:28.645059127Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293661,15 +290042,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "registrantCountry", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "active" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853611128Z", + "timestamp": "2024-01-14T09:33:28.64571458Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293707,15 +290088,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "nameServers", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "2022-12-12T18:46:34.698709Z" + "ns82.domaincontrol.com", + "ns81.domaincontrol.com" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853624203Z", + "timestamp": "2024-01-14T09:33:28.646349795Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293753,15 +290135,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "status", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "2024-12-12T18:46:34.678623Z" + "active" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853639331Z", + "timestamp": "2024-01-14T09:33:28.647013583Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293799,15 +290181,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrationDate", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "beta.gouv" + "2022-12-12T18:46:34.698709Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.85366027Z", + "timestamp": "2024-01-14T09:33:28.647656001Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293845,15 +290227,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "penelope.liot@beta.gouv.fr" + "2022-12-17T18:53:06.153009Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853677202Z", + "timestamp": "2024-01-14T09:33:28.648417525Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293891,15 +290273,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "registrantOrg", "type": "http", "host": "https://plusfraichemaville.fr", "matched-at": "https://rdap.nic.fr/domain/plusfraichemaville.fr", "extracted-results": [ - "+33.0677910405" + "Penelope Liot" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T09:52:48.853693442Z", + "timestamp": "2024-01-14T09:33:28.6484952Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/plusfraichemaville.fr'", "matcher-status": true }, @@ -293935,10 +290317,10 @@ "extracted-results": [ "https://tarteaucitron.io/load.js?domain=plusfraichemaville.fr&uuid=fa6b8234bcd4e90e59acb03bba538bf06d50a4e9", "https://events.framer.com/script", - "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.AIRD66I5.mjs" + "https://framerusercontent.com/sites/2202ZVSFY4LDZsgIGr5vCA/default_script0.GPTI4SMW.mjs" ], "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:52:50.696116755Z", + "timestamp": "2024-01-14T09:33:30.450904412Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: plusfraichemaville.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://plusfraichemaville.fr/'", "matcher-status": true }, @@ -293969,7 +290351,7 @@ "Let's Encrypt" ], "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:55:48.804651385Z", + "timestamp": "2024-01-14T09:36:28.564104857Z", "matcher-status": true }, { @@ -293999,7 +290381,7 @@ "plusfraichemaville.fr" ], "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:55:48.80475595Z", + "timestamp": "2024-01-14T09:36:28.564217347Z", "matcher-status": true }, { @@ -294030,7 +290412,7 @@ "tls12" ], "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:55:48.95719604Z", + "timestamp": "2024-01-14T09:36:28.794465695Z", "matcher-status": true }, { @@ -294061,7 +290443,7 @@ "tls13" ], "ip": "52.223.52.2", - "timestamp": "2024-01-07T09:55:49.015436798Z", + "timestamp": "2024-01-14T09:36:28.848154998Z", "matcher-status": true } ], @@ -294069,7 +290451,7 @@ { "requestedUrl": "https://plusfraichemaville.fr/", "finalUrl": "https://plusfraichemaville.fr/", - "fetchTime": "2024-01-07T09:49:26.714Z", + "fetchTime": "2024-01-14T09:30:03.175Z", "runWarnings": [], "categories": { "performance": { @@ -294080,7 +290462,7 @@ "snapshot" ], "id": "performance", - "score": 0.2903133392333984 + "score": 0.290386962890625 }, "accessibility": { "title": "Accessibility", @@ -294132,53 +290514,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3704, + "numericValue": 4095, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3094, - "firstMeaningfulPaint": 3094, - "largestContentfulPaint": 5305, - "interactive": 3704, - "speedIndex": 3350, - "totalBlockingTime": 140, - "maxPotentialFID": 190, - "cumulativeLayoutShift": 0.005920082092285156, - "cumulativeLayoutShiftMainFrame": 0.005920082092285156, - "totalCumulativeLayoutShift": 0.005920082092285156, + "firstContentfulPaint": 4095, + "firstMeaningfulPaint": 4095, + "largestContentfulPaint": 5299, + "interactive": 4095, + "speedIndex": 4095, + "totalBlockingTime": 0, + "maxPotentialFID": 47, + "cumulativeLayoutShift": 0.022386199951171876, + "cumulativeLayoutShiftMainFrame": 0.022386199951171876, + "totalCumulativeLayoutShift": 0.022386199951171876, "observedTimeOrigin": 0, - "observedTimeOriginTs": 288680407, + "observedTimeOriginTs": 260879863, "observedNavigationStart": 0, - "observedNavigationStartTs": 288680407, - "observedFirstPaint": 607, - "observedFirstPaintTs": 289287658, - "observedFirstContentfulPaint": 607, - "observedFirstContentfulPaintTs": 289287658, - "observedFirstContentfulPaintAllFrames": 607, - "observedFirstContentfulPaintAllFramesTs": 289287658, - "observedFirstMeaningfulPaint": 607, - "observedFirstMeaningfulPaintTs": 289287658, - "observedLargestContentfulPaint": 640, - "observedLargestContentfulPaintTs": 289320421, - "observedLargestContentfulPaintAllFrames": 640, - "observedLargestContentfulPaintAllFramesTs": 289320421, - "observedTraceEnd": 3876, - "observedTraceEndTs": 292556338, - "observedLoad": 1325, - "observedLoadTs": 290005458, - "observedDomContentLoaded": 618, - "observedDomContentLoadedTs": 289298414, - "observedCumulativeLayoutShift": 0.005920082092285156, - "observedCumulativeLayoutShiftMainFrame": 0.005920082092285156, - "observedTotalCumulativeLayoutShift": 0.005920082092285156, - "observedFirstVisualChange": 608, - "observedFirstVisualChangeTs": 289288407, - "observedLastVisualChange": 958, - "observedLastVisualChangeTs": 289638407, - "observedSpeedIndex": 623, - "observedSpeedIndexTs": 289303594 + "observedNavigationStartTs": 260879863, + "observedFirstPaint": 612, + "observedFirstPaintTs": 261491708, + "observedFirstContentfulPaint": 612, + "observedFirstContentfulPaintTs": 261491708, + "observedFirstContentfulPaintAllFrames": 612, + "observedFirstContentfulPaintAllFramesTs": 261491708, + "observedFirstMeaningfulPaint": 612, + "observedFirstMeaningfulPaintTs": 261491708, + "observedLargestContentfulPaint": 617, + "observedLargestContentfulPaintTs": 261497099, + "observedLargestContentfulPaintAllFrames": 617, + "observedLargestContentfulPaintAllFramesTs": 261497099, + "observedTraceEnd": 4062, + "observedTraceEndTs": 264941961, + "observedLoad": 1322, + "observedLoadTs": 262202245, + "observedDomContentLoaded": 599, + "observedDomContentLoadedTs": 261478416, + "observedCumulativeLayoutShift": 0.022386199951171876, + "observedCumulativeLayoutShiftMainFrame": 0.022386199951171876, + "observedTotalCumulativeLayoutShift": 0.022386199951171876, + "observedFirstVisualChange": 609, + "observedFirstVisualChangeTs": 261488863, + "observedLastVisualChange": 959, + "observedLastVisualChangeTs": 261838863, + "observedSpeedIndex": 625, + "observedSpeedIndexTs": 261504706 }, { "lcpInvalidated": false @@ -294196,23 +290578,23 @@ "type": "debugdata", "items": [ { - "numRequests": 73, + "numRequests": 72, "numScripts": 50, "numStylesheets": 0, "numFonts": 5, - "numTasks": 1114, - "numTasksOver10ms": 6, + "numTasks": 1086, + "numTasksOver10ms": 8, "numTasksOver25ms": 1, "numTasksOver50ms": 1, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.3320000000000007, - "throughput": 41909870.176733375, - "maxRtt": 159.055, - "maxServerLatency": 240.267, - "totalByteWeight": 2147938, - "totalTaskTime": 408.4909999999999, - "mainDocumentTransferSize": 17383 + "rtt": 1.3170000000000002, + "throughput": 44891614.94337855, + "maxRtt": 160.918, + "maxServerLatency": 179.315, + "totalByteWeight": 2147552, + "totalTaskTime": 426.4509999999994, + "mainDocumentTransferSize": 17380 } ] } @@ -294273,7 +290655,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 69, - "lighthouse_performance": 0.2903133392333984, + "lighthouse_performance": 0.290386962890625, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", @@ -294309,7 +290691,7 @@ "http": { "url": "https://mission-transition-ecologique.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:05:49 GMT", + "end_time": "Sun, 14 Jan 2024 02:01:55 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -294319,15 +290701,15 @@ "Connection": "keep-alive", "Content-Length": "501", "Content-Type": "text/html;charset=utf-8", - "Date": "Sun, 07 Jan 2024 02:05:48 GMT", + "Date": "Sun, 14 Jan 2024 02:01:54 GMT", "ETag": "W/\"501-1704458398000\"", "Last-Modified": "Fri, 05 Jan 2024 12:39:58 GMT", "Strict-Transport-Security": "max-age=31536000", - "X-Request-ID": "6facf315-da12-4499-aa18-a2c897501094" + "X-Request-ID": "e91e506a-0844-44fa-a6ce-c5925211079e" }, - "scan_id": 46226705, + "scan_id": 46435400, "score": 40, - "start_time": "Sun, 07 Jan 2024 02:05:44 GMT", + "start_time": "Sun, 14 Jan 2024 02:01:51 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -294521,77 +290903,77 @@ "testssl": [ { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294599,7 +290981,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294607,7 +290989,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294615,7 +290997,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -294623,7 +291005,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -294631,7 +291013,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -294639,504 +291021,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-17 08:52" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-15 08:52" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704621199" + "finding": "1705224702" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -295144,7 +291526,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -295153,7 +291535,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -295162,7 +291544,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -295171,7 +291553,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -295180,7 +291562,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -295188,7 +291570,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -295197,7 +291579,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -295206,7 +291588,7 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -295215,7 +291597,7 @@ }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -295224,14 +291606,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -295240,7 +291622,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -295249,7 +291631,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -295258,7 +291640,7 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -295267,7 +291649,7 @@ }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -295276,7 +291658,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -295285,7 +291667,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -295294,7 +291676,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -295303,7 +291685,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -295312,7 +291694,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -295321,392 +291703,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295714,7 +292096,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295722,7 +292104,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295730,7 +292112,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -295738,7 +292120,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -295746,7 +292128,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -295754,504 +292136,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-11-17 08:52" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-02-15 08:52" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704621251" + "finding": "1705224753" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -296259,7 +292641,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -296268,7 +292650,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -296277,7 +292659,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -296286,7 +292668,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -296295,7 +292677,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -296303,7 +292685,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -296312,7 +292694,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -296321,7 +292703,7 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -296330,7 +292712,7 @@ }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -296339,14 +292721,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -296355,7 +292737,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -296364,7 +292746,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -296373,7 +292755,7 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -296382,7 +292764,7 @@ }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -296391,7 +292773,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -296400,7 +292782,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -296409,7 +292791,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -296418,7 +292800,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -296427,7 +292809,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -296436,392 +292818,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", + "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -296829,7 +293211,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -296837,7 +293219,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -296845,7 +293227,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -296853,7 +293235,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -296861,7 +293243,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -296869,504 +293251,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-11-17 08:52" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-02-15 08:52" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704621303" + "finding": "1705224808" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -297374,7 +293756,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -297383,7 +293765,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -297392,7 +293774,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -297401,7 +293783,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -297410,7 +293792,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -297418,7 +293800,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -297427,7 +293809,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -297436,7 +293818,7 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -297445,7 +293827,7 @@ }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -297454,14 +293836,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -297470,7 +293852,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -297479,7 +293861,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -297488,7 +293870,7 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -297497,7 +293879,7 @@ }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -297506,7 +293888,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -297515,7 +293897,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -297524,7 +293906,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -297533,7 +293915,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -297542,7 +293924,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -297551,392 +293933,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.236.90", + "ip": "mission-transition-ecologique.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297944,7 +294326,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297952,7 +294334,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297960,7 +294342,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -297968,7 +294350,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -297976,7 +294358,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -297984,504 +294366,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "31 >= 30 days" }, { "id": "cert_notBefore", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-11-17 08:52" }, { "id": "cert_notAfter", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-02-15 08:52" }, { "id": "cert_extlifeSpan", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704621355" + "finding": "1705224860" }, { "id": "HSTS_time", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Access-Control-Allow-Origin", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -298489,7 +294871,7 @@ }, { "id": "heartbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -298498,7 +294880,7 @@ }, { "id": "CCS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -298507,7 +294889,7 @@ }, { "id": "ticketbleed", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -298516,7 +294898,7 @@ }, { "id": "ROBOT", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -298525,7 +294907,7 @@ }, { "id": "secure_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -298533,7 +294915,7 @@ }, { "id": "secure_client_renego", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -298542,7 +294924,7 @@ }, { "id": "CRIME_TLS", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -298551,7 +294933,7 @@ }, { "id": "BREACH", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -298560,7 +294942,7 @@ }, { "id": "POODLE_SSL", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -298569,14 +294951,14 @@ }, { "id": "fallback_SCSV", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -298585,7 +294967,7 @@ }, { "id": "FREAK", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -298594,7 +294976,7 @@ }, { "id": "DROWN", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -298603,7 +294985,7 @@ }, { "id": "DROWN_hint", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -298612,7 +294994,7 @@ }, { "id": "LOGJAM", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -298621,7 +295003,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -298630,7 +295012,7 @@ }, { "id": "BEAST", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -298639,7 +295021,7 @@ }, { "id": "LUCKY13", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -298648,7 +295030,7 @@ }, { "id": "winshock", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -298657,7 +295039,7 @@ }, { "id": "RC4", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -298666,325 +295048,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "mission-transition-ecologique.beta.gouv.fr/5.104.101.30", + "ip": "mission-transition-ecologique.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "209" + "finding": "213" } ], "thirdparties": { @@ -298995,7 +295377,7 @@ "value": "1", "domain": "mission-transition-ecologique.beta.gouv.fr", "path": "/", - "expires": 1704622941, + "expires": 1705226443, "size": 16, "httpOnly": false, "secure": false, @@ -299007,10 +295389,10 @@ }, { "name": "_pk_id.23.0a23", - "value": "9402b28cadc948fb.1704621142.", + "value": "a5d2580fdf137806.1705224643.", "domain": "mission-transition-ecologique.beta.gouv.fr", "path": "/", - "expires": 1738317142, + "expires": 1738920643, "size": 42, "httpOnly": false, "secure": false, @@ -299026,26 +295408,17 @@ "cache-control": "no-cache", "content-length": "501", "content-type": "text/html;charset=utf-8", - "date": "Sun, 07 Jan 2024 09:52:20 GMT", + "date": "Sun, 14 Jan 2024 09:30:41 GMT", "etag": "W/\"501-1704458398000\"", "last-modified": "Fri, 05 Jan 2024 12:39:58 GMT", "strict-transport-security": "max-age=31536000", - "x-request-id": "8ec04ccf-0e54-4719-8672-6c0087ef7582" + "x-request-id": "210a8e03-d5f9-454b-b38e-ad56e19144dc" }, "endpoints": [ { "hostname": "mission-transition-ecologique.beta.gouv.fr", - "ip": "5.104.101.30", + "ip": "109.232.236.90", "geoip": { - "city": { - "geoname_id": 3034797, - "names": { - "de": "Bartenheim", - "en": "Bartenheim", - "fr": "Bartenheim", - "pt-BR": "Bartenheim" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -299077,13 +295450,10 @@ }, "location": { "accuracy_radius": 500, - "latitude": 47.6376, - "longitude": 7.4798, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "68870" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -299098,28 +295468,7 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071622, - "iso_code": "GES", - "names": { - "en": "Grand Est", - "fr": "Grand Est" - } - }, - { - "geoname_id": 3013663, - "iso_code": "68", - "names": { - "de": "Haut-Rhin", - "en": "Haut-Rhin", - "es": "Alto Rin", - "fr": "Haut-Rhin", - "pt-BR": "Alto Reno" - } - } - ] + } } } ] @@ -299213,7 +295562,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 09:51:25", + "@generated": "Sun, 14 Jan 2024 09:29:48", "site": [ { "@name": "https://mission-transition-ecologique.beta.gouv.fr", @@ -299346,23 +295695,22 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -299378,31 +295726,26 @@ "type": "dns", "host": "mission-transition-ecologique.beta.gouv.fr.", "matched-at": "mission-transition-ecologique.beta.gouv.fr", - "extracted-results": [ - "5 mx2.mail.ovh.net.", - "1 mx1.mail.ovh.net.", - "100 mx3.mail.ovh.net." - ], - "timestamp": "2024-01-07T09:57:16.717781382Z", + "timestamp": "2024-01-14T09:35:42.270498432Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -299418,24 +295761,31 @@ "type": "dns", "host": "mission-transition-ecologique.beta.gouv.fr.", "matched-at": "mission-transition-ecologique.beta.gouv.fr", - "timestamp": "2024-01-07T09:57:16.793846372Z", + "extracted-results": [ + "\"v=spf1 include:mx.ovh.com -all\"" + ], + "timestamp": "2024-01-14T09:35:43.269825597Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -299451,30 +295801,28 @@ "host": "mission-transition-ecologique.beta.gouv.fr.", "matched-at": "mission-transition-ecologique.beta.gouv.fr", "extracted-results": [ - "dns102.ovh.net.", - "ns102.ovh.net." + "100 mx3.mail.ovh.net.", + "1 mx1.mail.ovh.net.", + "5 mx2.mail.ovh.net." ], - "timestamp": "2024-01-07T09:57:17.629729556Z", + "timestamp": "2024-01-14T09:35:43.419054245Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -299490,157 +295838,10 @@ "host": "mission-transition-ecologique.beta.gouv.fr.", "matched-at": "mission-transition-ecologique.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:mx.ovh.com -all\"" + "dns102.ovh.net.", + "ns102.ovh.net." ], - "timestamp": "2024-01-07T09:57:17.897500215Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://mission-transition-ecologique.beta.gouv.fr", - "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.89359555Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://mission-transition-ecologique.beta.gouv.fr", - "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.89364343Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://mission-transition-ecologique.beta.gouv.fr", - "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.8936591Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://mission-transition-ecologique.beta.gouv.fr", - "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.893672195Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", + "timestamp": "2024-01-14T09:35:43.420552871Z", "matcher-status": true }, { @@ -299675,82 +295876,8 @@ "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.893688435Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://mission-transition-ecologique.beta.gouv.fr", - "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.893703393Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://mission-transition-ecologique.beta.gouv.fr", - "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.893719073Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975338948Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299786,8 +295913,8 @@ "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.893727899Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975409299Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299823,8 +295950,82 @@ "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.893737046Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975430559Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://mission-transition-ecologique.beta.gouv.fr", + "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975448963Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://mission-transition-ecologique.beta.gouv.fr", + "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975461556Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299860,8 +296061,156 @@ "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:57:59.893750472Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975475262Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://mission-transition-ecologique.beta.gouv.fr", + "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975488917Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://mission-transition-ecologique.beta.gouv.fr", + "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975503514Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://mission-transition-ecologique.beta.gouv.fr", + "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975516569Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://mission-transition-ecologique.beta.gouv.fr", + "matched-at": "https://mission-transition-ecologique.beta.gouv.fr", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:25.975528952Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr'", "matcher-status": true }, @@ -299888,8 +296237,8 @@ "type": "http", "host": "https://mission-transition-ecologique.beta.gouv.fr", "matched-at": "https://mission-transition-ecologique.beta.gouv.fr/robots.txt", - "ip": "109.232.233.130", - "timestamp": "2024-01-07T09:58:09.471198936Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:36:35.362894784Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mission-transition-ecologique.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -299919,8 +296268,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T10:04:01.624552818Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:42:27.309579781Z", "matcher-status": true }, { @@ -299949,8 +296298,8 @@ "extracted-results": [ "mission-transition-ecologique.beta.gouv.fr" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T10:04:01.624668634Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:42:27.309690217Z", "matcher-status": true }, { @@ -299980,8 +296329,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T10:04:04.445676875Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:42:29.321171889Z", "matcher-status": true }, { @@ -300011,8 +296360,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.233.130", - "timestamp": "2024-01-07T10:04:04.639271108Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T09:42:29.510058481Z", "matcher-status": true } ], @@ -300020,7 +296369,7 @@ { "requestedUrl": "https://mission-transition-ecologique.beta.gouv.fr/", "finalUrl": "https://mission-transition-ecologique.beta.gouv.fr/", - "fetchTime": "2024-01-07T09:51:39.310Z", + "fetchTime": "2024-01-14T09:30:02.032Z", "runWarnings": [], "categories": { "performance": { @@ -300031,7 +296380,7 @@ "snapshot" ], "id": "performance", - "score": 0.9568296432495117 + "score": 0.9568346023559571 }, "accessibility": { "title": "Accessibility", @@ -300083,53 +296432,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6661, + "numericValue": 6549, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4664, - "firstMeaningfulPaint": 4743, - "largestContentfulPaint": 5939, - "interactive": 6661, - "speedIndex": 4664, - "totalBlockingTime": 228, - "maxPotentialFID": 245, - "cumulativeLayoutShift": 0.30565185546875, - "cumulativeLayoutShiftMainFrame": 0.30565185546875, - "totalCumulativeLayoutShift": 0.30565185546875, + "firstContentfulPaint": 4655, + "firstMeaningfulPaint": 4758, + "largestContentfulPaint": 5930, + "interactive": 6549, + "speedIndex": 4655, + "totalBlockingTime": 180, + "maxPotentialFID": 205, + "cumulativeLayoutShift": 0.29500041537814675, + "cumulativeLayoutShiftMainFrame": 0.29500041537814675, + "totalCumulativeLayoutShift": 0.29500041537814675, "observedTimeOrigin": 0, - "observedTimeOriginTs": 254302154, + "observedTimeOriginTs": 238057391, "observedNavigationStart": 0, - "observedNavigationStartTs": 254302154, - "observedFirstPaint": 979, - "observedFirstPaintTs": 255281274, - "observedFirstContentfulPaint": 979, - "observedFirstContentfulPaintTs": 255281274, - "observedFirstContentfulPaintAllFrames": 979, - "observedFirstContentfulPaintAllFramesTs": 255281274, - "observedFirstMeaningfulPaint": 979, - "observedFirstMeaningfulPaintTs": 255281274, - "observedLargestContentfulPaint": 1089, - "observedLargestContentfulPaintTs": 255391199, - "observedLargestContentfulPaintAllFrames": 1089, - "observedLargestContentfulPaintAllFramesTs": 255391199, - "observedTraceEnd": 3744, - "observedTraceEndTs": 258045691, - "observedLoad": 1434, - "observedLoadTs": 255736524, - "observedDomContentLoaded": 969, - "observedDomContentLoadedTs": 255271095, - "observedCumulativeLayoutShift": 0.30565185546875, - "observedCumulativeLayoutShiftMainFrame": 0.30565185546875, - "observedTotalCumulativeLayoutShift": 0.30565185546875, - "observedFirstVisualChange": 987, - "observedFirstVisualChangeTs": 255289154, - "observedLastVisualChange": 1137, - "observedLastVisualChangeTs": 255439154, - "observedSpeedIndex": 1000, - "observedSpeedIndexTs": 255301788 + "observedNavigationStartTs": 238057391, + "observedFirstPaint": 1020, + "observedFirstPaintTs": 239077047, + "observedFirstContentfulPaint": 1020, + "observedFirstContentfulPaintTs": 239077047, + "observedFirstContentfulPaintAllFrames": 1020, + "observedFirstContentfulPaintAllFramesTs": 239077047, + "observedFirstMeaningfulPaint": 1020, + "observedFirstMeaningfulPaintTs": 239077047, + "observedLargestContentfulPaint": 1115, + "observedLargestContentfulPaintTs": 239172503, + "observedLargestContentfulPaintAllFrames": 1115, + "observedLargestContentfulPaintAllFramesTs": 239172503, + "observedTraceEnd": 3741, + "observedTraceEndTs": 241798627, + "observedLoad": 1433, + "observedLoadTs": 239490083, + "observedDomContentLoaded": 1011, + "observedDomContentLoadedTs": 239067913, + "observedCumulativeLayoutShift": 0.29500041537814675, + "observedCumulativeLayoutShiftMainFrame": 0.29500041537814675, + "observedTotalCumulativeLayoutShift": 0.29500041537814675, + "observedFirstVisualChange": 1033, + "observedFirstVisualChangeTs": 239090391, + "observedLastVisualChange": 1166, + "observedLastVisualChangeTs": 239223391, + "observedSpeedIndex": 1043, + "observedSpeedIndexTs": 239100269 }, { "lcpInvalidated": false @@ -300151,18 +296500,18 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 741, - "numTasksOver10ms": 4, - "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 0, + "numTasks": 762, + "numTasksOver10ms": 6, + "numTasksOver25ms": 2, + "numTasksOver50ms": 1, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 82.69, - "throughput": 17043123.71645717, - "maxRtt": 85.14699999999999, - "maxServerLatency": 14.150000000000006, - "totalByteWeight": 1274913, - "totalTaskTime": 271.0819999999968, + "rtt": 83.032, + "throughput": 16586727.8153168, + "maxRtt": 85.025, + "maxServerLatency": 5.150000000000006, + "totalByteWeight": 1274887, + "totalTaskTime": 274.80699999999615, "mainDocumentTransferSize": 745 } ] @@ -300173,7 +296522,7 @@ { "requestedUrl": "https://mission-transition-ecologique.beta.gouv.fr/annuaire", "finalUrl": "https://mission-transition-ecologique.beta.gouv.fr/annuaire", - "fetchTime": "2024-01-07T09:51:50.926Z", + "fetchTime": "2024-01-14T09:30:13.814Z", "runWarnings": [], "categories": { "performance": { @@ -300184,7 +296533,7 @@ "snapshot" ], "id": "performance", - "score": 0.24 + "score": 0.23 }, "accessibility": { "title": "Accessibility", @@ -300236,53 +296585,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7834, + "numericValue": 7938, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4683, - "firstMeaningfulPaint": 6107, - "largestContentfulPaint": 11747, - "interactive": 7834, - "speedIndex": 8056, - "totalBlockingTime": 2648, - "maxPotentialFID": 2849, - "cumulativeLayoutShift": 0.002524695078531901, - "cumulativeLayoutShiftMainFrame": 0.002524695078531901, - "totalCumulativeLayoutShift": 0.002524695078531901, + "firstContentfulPaint": 4655, + "firstMeaningfulPaint": 6147, + "largestContentfulPaint": 11748, + "interactive": 7938, + "speedIndex": 8520, + "totalBlockingTime": 2783, + "maxPotentialFID": 2983, + "cumulativeLayoutShift": 0.002181165483262804, + "cumulativeLayoutShiftMainFrame": 0.002181165483262804, + "totalCumulativeLayoutShift": 0.002181165483262804, "observedTimeOrigin": 0, - "observedTimeOriginTs": 265925427, + "observedTimeOriginTs": 249696939, "observedNavigationStart": 0, - "observedNavigationStartTs": 265925427, - "observedFirstPaint": 2345, - "observedFirstPaintTs": 268270545, - "observedFirstContentfulPaint": 2345, - "observedFirstContentfulPaintTs": 268270545, - "observedFirstContentfulPaintAllFrames": 2345, - "observedFirstContentfulPaintAllFramesTs": 268270545, - "observedFirstMeaningfulPaint": 2345, - "observedFirstMeaningfulPaintTs": 268270545, - "observedLargestContentfulPaint": 3281, - "observedLargestContentfulPaintTs": 269206056, - "observedLargestContentfulPaintAllFrames": 3281, - "observedLargestContentfulPaintAllFramesTs": 269206056, - "observedTraceEnd": 5570, - "observedTraceEndTs": 271495263, - "observedLoad": 3263, - "observedLoadTs": 269188610, - "observedDomContentLoaded": 2320, - "observedDomContentLoadedTs": 268245578, - "observedCumulativeLayoutShift": 0.002524695078531901, - "observedCumulativeLayoutShiftMainFrame": 0.002524695078531901, - "observedTotalCumulativeLayoutShift": 0.002524695078531901, - "observedFirstVisualChange": 2347, - "observedFirstVisualChangeTs": 268272427, - "observedLastVisualChange": 3280, - "observedLastVisualChangeTs": 269205427, - "observedSpeedIndex": 2872, - "observedSpeedIndexTs": 268797248 + "observedNavigationStartTs": 249696939, + "observedFirstPaint": 2417, + "observedFirstPaintTs": 252113933, + "observedFirstContentfulPaint": 2417, + "observedFirstContentfulPaintTs": 252113933, + "observedFirstContentfulPaintAllFrames": 2417, + "observedFirstContentfulPaintAllFramesTs": 252113933, + "observedFirstMeaningfulPaint": 2417, + "observedFirstMeaningfulPaintTs": 252113933, + "observedLargestContentfulPaint": 3274, + "observedLargestContentfulPaintTs": 252971395, + "observedLargestContentfulPaintAllFrames": 3274, + "observedLargestContentfulPaintAllFramesTs": 252971395, + "observedTraceEnd": 5565, + "observedTraceEndTs": 255261973, + "observedLoad": 3258, + "observedLoadTs": 252955036, + "observedDomContentLoaded": 2393, + "observedDomContentLoadedTs": 252089505, + "observedCumulativeLayoutShift": 0.002181165483262804, + "observedCumulativeLayoutShiftMainFrame": 0.002181165483262804, + "observedTotalCumulativeLayoutShift": 0.002181165483262804, + "observedFirstVisualChange": 2426, + "observedFirstVisualChangeTs": 252122939, + "observedLastVisualChange": 3276, + "observedLastVisualChangeTs": 252972939, + "observedSpeedIndex": 2904, + "observedSpeedIndexTs": 252601396 }, { "lcpInvalidated": false @@ -300304,19 +296653,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 1327, - "numTasksOver10ms": 4, + "numTasks": 1092, + "numTasksOver10ms": 3, "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 1, - "rtt": 81.911, - "throughput": 20969262.082160987, - "maxRtt": 85.168, - "maxServerLatency": 163.29700000000003, - "totalByteWeight": 3430760, - "totalTaskTime": 1591.4729999999745, - "mainDocumentTransferSize": 746 + "rtt": 83.00699999999999, + "throughput": 21260082.61312896, + "maxRtt": 88.837, + "maxServerLatency": 254.19000000000005, + "totalByteWeight": 3430410, + "totalTaskTime": 1660.838999999987, + "mainDocumentTransferSize": 745 } ] } @@ -300417,7 +296766,7 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.9568296432495117, + "lighthouse_performance": 0.9568346023559571, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -300443,7 +296792,7 @@ "http": { "url": "https://potentiel.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:07:18 GMT", + "end_time": "Sun, 14 Jan 2024 04:53:16 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -300454,8 +296803,8 @@ "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 05:07:16 GMT", - "ETag": "W/\"4f81-MrC/3ucwqeh3+Iq8jEFhkDgoayI\"", + "Date": "Sun, 14 Jan 2024 04:53:13 GMT", + "ETag": "W/\"4f81-gSiboQI8TAoF5HLXO55YGCL8LjM\"", "Origin-Agent-Cluster": "?1", "Referrer-Policy": "strict-origin", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; preload", @@ -300465,12 +296814,12 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "acb20f6b-43bd-41d7-b3ad-a77c3b82ab22", + "X-Request-ID": "c45c14ad-7b85-4df2-97e2-936d68050ee0", "X-XSS-Protection": "0" }, - "scan_id": 46228711, + "scan_id": 46454319, "score": 50, - "start_time": "Sun, 07 Jan 2024 04:58:58 GMT", + "start_time": "Sun, 14 Jan 2024 04:51:14 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -300485,41 +296834,41 @@ "connect-src": [ "wss://client.relay.crisp.chat", "'self'", - "client.crisp.chat", + "analytics.potentiel.beta.gouv.fr", "'unsafe-inline'", - "analytics.potentiel.beta.gouv.fr" + "client.crisp.chat" ], "default-src": [ + "'self'", "blob:", - "metabase.potentiel.beta.gouv.fr", - "'self'" + "metabase.potentiel.beta.gouv.fr" ], "font-src": [ - "client.crisp.chat", + "'self'", "data:", - "'self'" + "client.crisp.chat" ], "img-src": [ - "image.crisp.chat", - "client.crisp.chat", + "'self'", "data:", - "'self'" + "client.crisp.chat", + "image.crisp.chat" ], "object-src": [ "'none'" ], "script-src": [ - "metabase.potentiel.beta.gouv.fr", "'self'", - "client.crisp.chat", + "analytics.potentiel.beta.gouv.fr", "'unsafe-inline'", - "analytics.potentiel.beta.gouv.fr" + "metabase.potentiel.beta.gouv.fr", + "client.crisp.chat" ], "style-src": [ - "client.crisp.chat", - "data:", + "'self'", "'unsafe-inline'", - "'self'" + "data:", + "client.crisp.chat" ] }, "http": true, @@ -300696,7 +297045,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-06T17:57:47Z", + "up_since": "2024-01-12T17:21:32Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -300708,8 +297057,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T10:23:21Z", - "next_check_at": "2024-01-07T10:28:20Z", + "last_check_at": "2024-01-14T09:59:54Z", + "next_check_at": "2024-01-14T10:04:51Z", "created_at": "2021-04-22T19:59:36Z", "mute_until": null, "favicon_url": "https://potentiel.beta.gouv.fr/dsfr/favicon/favicon.ico", @@ -300717,7 +297066,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T10:23:22Z", + "tested_at": "2024-01-14T09:54:58Z", "expires_at": "2024-04-05T05:17:07Z", "valid": true, "error": null @@ -300726,11 +297075,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 270, - "connection": 147, - "handshake": 154, - "response": 158, - "total": 728 + "namelookup": 198, + "connection": 138, + "handshake": 142, + "response": 142, + "total": 620 } }, "uptimeGrade": "A", @@ -300763,77 +297112,77 @@ "testssl": [ { "id": "service", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -300841,7 +297190,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -300849,7 +297198,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -300857,7 +297206,7 @@ }, { "id": "cipherlist_LOW", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -300865,7 +297214,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -300873,7 +297222,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -300881,532 +297230,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-01-06 05:17" }, { "id": "cert_notAfter", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-04-05 05:17" }, { "id": "cert_extlifeSpan", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704622270" + "finding": "1705225772" }, { "id": "HSTS_multiple", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' 'unsafe-inline' analytics.potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;img-src 'self' data: client.crisp.chat image.crisp.chat;font-src 'self' data: client.crisp.chat;style-src 'self' data: 'unsafe-inline' client.crisp.chat;script-src 'unsafe-inline' 'self' metabase.potentiel.beta.gouv.fr analytics.potentiel.beta.gouv.fr client.crisp.chat;object-src 'none'" }, { "id": "X-XSS-Protection", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -301414,7 +297763,7 @@ }, { "id": "heartbleed", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -301423,7 +297772,7 @@ }, { "id": "CCS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -301432,7 +297781,7 @@ }, { "id": "ticketbleed", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -301441,7 +297790,7 @@ }, { "id": "ROBOT", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -301450,7 +297799,7 @@ }, { "id": "secure_renego", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -301458,7 +297807,7 @@ }, { "id": "secure_client_renego", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -301467,7 +297816,7 @@ }, { "id": "CRIME_TLS", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -301476,7 +297825,7 @@ }, { "id": "BREACH", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -301485,7 +297834,7 @@ }, { "id": "POODLE_SSL", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -301494,14 +297843,14 @@ }, { "id": "fallback_SCSV", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -301510,7 +297859,7 @@ }, { "id": "FREAK", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -301519,7 +297868,7 @@ }, { "id": "DROWN", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -301528,7 +297877,7 @@ }, { "id": "DROWN_hint", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -301537,7 +297886,7 @@ }, { "id": "LOGJAM", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -301546,7 +297895,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -301555,7 +297904,7 @@ }, { "id": "BEAST", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -301564,7 +297913,7 @@ }, { "id": "LUCKY13", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -301573,7 +297922,7 @@ }, { "id": "winshock", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -301582,7 +297931,7 @@ }, { "id": "RC4", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -301591,392 +297940,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "potentiel.beta.gouv.fr/148.253.96.193", + "ip": "potentiel.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -301984,7 +298333,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -301992,7 +298341,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -302000,7 +298349,7 @@ }, { "id": "cipherlist_LOW", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -302008,7 +298357,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -302016,7 +298365,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -302024,532 +298373,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-01-06 05:17" }, { "id": "cert_notAfter", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-04-05 05:17" }, { "id": "cert_extlifeSpan", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704622324" + "finding": "1705225826" }, { "id": "HSTS_multiple", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self' blob: metabase.potentiel.beta.gouv.fr;connect-src 'self' 'unsafe-inline' analytics.potentiel.beta.gouv.fr client.crisp.chat wss://client.relay.crisp.chat;img-src 'self' data: client.crisp.chat image.crisp.chat;font-src 'self' data: client.crisp.chat;style-src 'self' data: 'unsafe-inline' client.crisp.chat;script-src 'unsafe-inline' 'self' metabase.potentiel.beta.gouv.fr analytics.potentiel.beta.gouv.fr client.crisp.chat;object-src 'none'" }, { "id": "X-XSS-Protection", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -302557,7 +298906,7 @@ }, { "id": "heartbleed", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -302566,7 +298915,7 @@ }, { "id": "CCS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -302575,7 +298924,7 @@ }, { "id": "ticketbleed", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -302584,7 +298933,7 @@ }, { "id": "ROBOT", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -302593,7 +298942,7 @@ }, { "id": "secure_renego", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -302601,7 +298950,7 @@ }, { "id": "secure_client_renego", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -302610,7 +298959,7 @@ }, { "id": "CRIME_TLS", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -302619,7 +298968,7 @@ }, { "id": "BREACH", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -302628,7 +298977,7 @@ }, { "id": "POODLE_SSL", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -302637,14 +298986,14 @@ }, { "id": "fallback_SCSV", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -302653,7 +299002,7 @@ }, { "id": "FREAK", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -302662,7 +299011,7 @@ }, { "id": "DROWN", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -302671,7 +299020,7 @@ }, { "id": "DROWN_hint", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -302680,7 +299029,7 @@ }, { "id": "LOGJAM", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -302689,7 +299038,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -302698,7 +299047,7 @@ }, { "id": "BEAST", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -302707,7 +299056,7 @@ }, { "id": "LUCKY13", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -302716,7 +299065,7 @@ }, { "id": "winshock", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -302725,7 +299074,7 @@ }, { "id": "RC4", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -302734,325 +299083,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "potentiel.beta.gouv.fr/185.21.194.105", + "ip": "potentiel.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "113" + "finding": "112" } ], "thirdparties": { @@ -303063,15 +299412,15 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/cb5c5c5f-a671-43cf-b84f-cd514ea51495/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-10-10" + "url": "https://client.crisp.chat/settings/website/cb5c5c5f-a671-43cf-b84f-cd514ea51495/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-9-48" }, { "type": "unknown", @@ -303079,7 +299428,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/en.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/en.js?e0efffc" }, { "type": "unknown", @@ -303099,27 +299448,27 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/00A0-00FF/noto_sans_bold.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/00A0-00FF/noto_sans_bold.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/00A0-00FF/noto_sans_bold.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/00A0-00FF/noto_sans_bold.woff2?e0efffc" } ], "cookies": [], @@ -303129,8 +299478,8 @@ "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 07 Jan 2024 10:10:14 GMT", - "etag": "W/\"4f81-Rk+qzGYJXzWd858utzrglDtL5qE\"", + "date": "Sun, 14 Jan 2024 09:48:36 GMT", + "etag": "W/\"4f81-gSiboQI8TAoF5HLXO55YGCL8LjM\"", "origin-agent-cluster": "?1", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=31536000\nmax-age=63072000; preload", @@ -303139,13 +299488,13 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "5c16c308-6fc2-47c9-b21a-5ac2d40086f2", + "x-request-id": "87cee16c-dd70-425a-a006-8aa3be99259a", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "potentiel.beta.gouv.fr", - "ip": "185.21.194.105", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -303207,7 +299556,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -303241,7 +299590,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -303261,7 +299610,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -303319,37 +299668,37 @@ "rootPath": true }, { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "slug": "mailjet", + "name": "Mailjet", + "description": "Mailjet is an email delivery service for marketing and developer teams.", "confidence": 100, "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "icon": "Mailjet.svg", + "website": "https://www.mailjet.com/", "cpe": null, "categories": [ { - "id": 16, - "slug": "security", - "name": "Security" + "id": 75, + "slug": "email", + "name": "Email" } ], "rootPath": true }, { - "slug": "mailjet", - "name": "Mailjet", - "description": "Mailjet is an email delivery service for marketing and developer teams.", + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", "confidence": 100, "version": null, - "icon": "Mailjet.svg", - "website": "https://www.mailjet.com/", + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", "cpe": null, "categories": [ { - "id": 75, - "slug": "email", - "name": "Email" + "id": 16, + "slug": "security", + "name": "Security" } ], "rootPath": true @@ -303377,7 +299726,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 10:09:31", + "@generated": "Sun, 14 Jan 2024 09:47:55", "site": [ { "@name": "https://potentiel.beta.gouv.fr", @@ -303562,7 +299911,7 @@ { "requestedUrl": "https://potentiel.beta.gouv.fr/", "finalUrl": "https://potentiel.beta.gouv.fr/", - "fetchTime": "2024-01-07T10:09:46.967Z", + "fetchTime": "2024-01-14T09:48:09.366Z", "runWarnings": [], "categories": { "performance": { @@ -303625,53 +299974,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2150, + "numericValue": 2113, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2150, - "firstMeaningfulPaint": 2150, - "largestContentfulPaint": 3876, - "interactive": 2150, - "speedIndex": 2150, + "firstContentfulPaint": 2113, + "firstMeaningfulPaint": 2113, + "largestContentfulPaint": 3921, + "interactive": 2113, + "speedIndex": 2113, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.20660458755493166, "cumulativeLayoutShiftMainFrame": 0.20660458755493166, "totalCumulativeLayoutShift": 0.20660458755493166, "observedTimeOrigin": 0, - "observedTimeOriginTs": 221348306, + "observedTimeOriginTs": 298121483, "observedNavigationStart": 0, - "observedNavigationStartTs": 221348306, - "observedFirstPaint": 446, - "observedFirstPaintTs": 221794271, - "observedFirstContentfulPaint": 446, - "observedFirstContentfulPaintTs": 221794271, - "observedFirstContentfulPaintAllFrames": 446, - "observedFirstContentfulPaintAllFramesTs": 221794271, - "observedFirstMeaningfulPaint": 446, - "observedFirstMeaningfulPaintTs": 221794271, - "observedLargestContentfulPaint": 446, - "observedLargestContentfulPaintTs": 221794271, - "observedLargestContentfulPaintAllFrames": 446, - "observedLargestContentfulPaintAllFramesTs": 221794271, - "observedTraceEnd": 3277, - "observedTraceEndTs": 224624859, - "observedLoad": 628, - "observedLoadTs": 221976553, + "observedNavigationStartTs": 298121483, + "observedFirstPaint": 432, + "observedFirstPaintTs": 298553328, + "observedFirstContentfulPaint": 432, + "observedFirstContentfulPaintTs": 298553328, + "observedFirstContentfulPaintAllFrames": 432, + "observedFirstContentfulPaintAllFramesTs": 298553328, + "observedFirstMeaningfulPaint": 432, + "observedFirstMeaningfulPaintTs": 298553328, + "observedLargestContentfulPaint": 432, + "observedLargestContentfulPaintTs": 298553328, + "observedLargestContentfulPaintAllFrames": 432, + "observedLargestContentfulPaintAllFramesTs": 298553328, + "observedTraceEnd": 3292, + "observedTraceEndTs": 301413783, + "observedLoad": 647, + "observedLoadTs": 298768257, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 221348942, + "observedDomContentLoadedTs": 298122054, "observedCumulativeLayoutShift": 0.20660458755493166, "observedCumulativeLayoutShiftMainFrame": 0.20660458755493166, "observedTotalCumulativeLayoutShift": 0.20660458755493166, - "observedFirstVisualChange": 442, - "observedFirstVisualChangeTs": 221790306, - "observedLastVisualChange": 1042, - "observedLastVisualChangeTs": 222390306, - "observedSpeedIndex": 451, - "observedSpeedIndexTs": 221799461 + "observedFirstVisualChange": 433, + "observedFirstVisualChangeTs": 298554483, + "observedLastVisualChange": 1033, + "observedLastVisualChangeTs": 299154483, + "observedSpeedIndex": 441, + "observedSpeedIndexTs": 298562724 }, { "lcpInvalidated": false @@ -303693,19 +300042,19 @@ "numScripts": 4, "numStylesheets": 1, "numFonts": 4, - "numTasks": 23, + "numTasks": 14, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 2.0340000000000003, - "throughput": 15704444.680494148, - "maxRtt": 82.27, - "maxServerLatency": 10.520999999999999, - "totalByteWeight": 646817, - "totalTaskTime": 4.563999999999999, - "mainDocumentTransferSize": 6415 + "rtt": 5.353999999999999, + "throughput": 15794905.605660658, + "maxRtt": 81.258, + "maxServerLatency": 11.047999999999998, + "totalByteWeight": 646831, + "totalTaskTime": 3.707, + "mainDocumentTransferSize": 6366 } ] } @@ -303835,7 +300184,7 @@ "http": { "url": "https://recosante.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:19:28 GMT", + "end_time": "Sun, 14 Jan 2024 09:49:24 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -303847,7 +300196,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 07 Jan 2024 05:19:27 GMT", + "Date": "Sun, 14 Jan 2024 09:49:22 GMT", "ETag": "W/\"37e1e-18c59d4da78\"", "Last-Modified": "Mon, 11 Dec 2023 17:02:51 GMT", "Strict-Transport-Security": "max-age=15724800; includeSubDomains", @@ -303855,9 +300204,9 @@ "Vary": "Accept-Encoding", "X-Powered-By": "Express" }, - "scan_id": 46229005, + "scan_id": 46464870, "score": 40, - "start_time": "Sun, 07 Jan 2024 05:19:23 GMT", + "start_time": "Sun, 14 Jan 2024 09:49:19 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -304036,7 +300385,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2023-12-12T08:26:47Z", + "up_since": "2024-01-10T18:21:57Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -304048,8 +300397,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T10:23:57Z", - "next_check_at": "2024-01-07T10:28:56Z", + "last_check_at": "2024-01-14T09:57:52Z", + "next_check_at": "2024-01-14T10:02:51Z", "created_at": "2021-04-22T19:59:37Z", "mute_until": null, "favicon_url": "https://recosante.beta.gouv.fr/favicon-32x32.png?v=312ed0e942b49d10349a5b019914c5bf", @@ -304057,24 +300406,24 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T10:09:01Z", + "tested_at": "2024-01-14T09:42:57Z", "expires_at": "2024-03-05T14:40:43Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.958, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 73, - "connection": 108, - "handshake": 110, - "response": 134, - "total": 424 + "namelookup": 42, + "connection": 106, + "handshake": 113, + "response": 106, + "total": 367 } }, "uptimeGrade": "A", - "apdexGrade": "E" + "apdexGrade": "A" }, "nmap": { "host": "recosante.beta.gouv.fr", @@ -304450,7 +300799,7 @@ "ip": "recosante.beta.gouv.fr/20.74.14.77", "port": "443", "severity": "OK", - "finding": "58 >= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", @@ -304653,7 +301002,7 @@ "ip": "recosante.beta.gouv.fr/20.74.14.77", "port": "443", "severity": "INFO", - "finding": "1704622628" + "finding": "1705225850" }, { "id": "HSTS_time", @@ -305223,7 +301572,7 @@ "ip": "recosante.beta.gouv.fr/20.74.14.77", "port": "443", "severity": "INFO", - "finding": "55" + "finding": "54" } ], "thirdparties": { @@ -305245,7 +301594,7 @@ "cache-control": "public, max-age=0", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 10:16:11 GMT", + "date": "Sun, 14 Jan 2024 09:49:54 GMT", "etag": "W/\"37e1e-18c59d4da78\"", "last-modified": "Mon, 11 Dec 2023 17:02:51 GMT", "strict-transport-security": "max-age=15724800; includeSubDomains", @@ -305312,7 +301661,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -305331,7 +301680,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -305355,7 +301706,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -305685,7 +302036,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 10:15:30", + "@generated": "Sun, 14 Jan 2024 09:48:54", "site": [ { "@name": "https://recosante.beta.gouv.fr", @@ -305825,20 +302176,24 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "ns" + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -305847,17 +302202,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "recosante.beta.gouv.fr.", - "matched-at": "recosante.beta.gouv.fr", + "matched-at": "_dmarc.recosante.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2024-01-07T10:18:25.699808953Z", + "timestamp": "2024-01-14T09:52:06.322461405Z", "matcher-status": true }, { @@ -305897,26 +302252,26 @@ "10 mx1.alwaysdata.com.", "20 mx2.alwaysdata.com." ], - "timestamp": "2024-01-07T10:18:25.70767034Z", + "timestamp": "2024-01-14T09:52:06.334434134Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -305932,31 +302287,26 @@ "type": "dns", "host": "recosante.beta.gouv.fr.", "matched-at": "recosante.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:spf.sendinblue.com mx ~all\"", - "\"google-site-verification=Q2ej2lSSlWAxrHY506YYObybs2Mb9GV1EX5sMAdL9cE\"", - "\"Sendinblue-code:d6fdaf85a5e982dfabdb0d973944f42b\"" - ], - "timestamp": "2024-01-07T10:18:25.71562434Z", + "timestamp": "2024-01-14T09:52:06.400800817Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -305972,28 +302322,29 @@ "type": "dns", "host": "recosante.beta.gouv.fr.", "matched-at": "recosante.beta.gouv.fr", - "timestamp": "2024-01-07T10:18:26.630477279Z", + "extracted-results": [ + "\"Sendinblue-code:d6fdaf85a5e982dfabdb0d973944f42b\"", + "\"v=spf1 include:spf.sendinblue.com mx ~all\"", + "\"google-site-verification=Q2ej2lSSlWAxrHY506YYObybs2Mb9GV1EX5sMAdL9cE\"" + ], + "timestamp": "2024-01-14T09:52:07.236694216Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -306002,17 +302353,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "recosante.beta.gouv.fr.", - "matched-at": "_dmarc.recosante.beta.gouv.fr", + "matched-at": "recosante.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T10:18:26.712395202Z", + "timestamp": "2024-01-14T09:52:07.238828948Z", "matcher-status": true }, { @@ -306051,7 +302402,7 @@ "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:19:01.044874844Z", + "timestamp": "2024-01-14T09:52:41.437836616Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306085,7 +302436,7 @@ "Gatsby 5.11.0" ], "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:27.6920381Z", + "timestamp": "2024-01-14T09:54:12.604112237Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306112,7 +302463,7 @@ "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:28.222865374Z", + "timestamp": "2024-01-14T09:54:13.123432052Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306139,7 +302490,7 @@ "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:28.222906991Z", + "timestamp": "2024-01-14T09:54:13.123477768Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306166,7 +302517,7 @@ "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:28.222926127Z", + "timestamp": "2024-01-14T09:54:13.123496452Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306198,12 +302549,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "content-security-policy", "type": "http", "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594584499Z", + "timestamp": "2024-01-14T09:54:35.821016599Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306235,12 +302586,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594633651Z", + "timestamp": "2024-01-14T09:54:35.821067995Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306272,12 +302623,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594647788Z", + "timestamp": "2024-01-14T09:54:35.821078895Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306309,12 +302660,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594661423Z", + "timestamp": "2024-01-14T09:54:35.821094534Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306346,12 +302697,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594674698Z", + "timestamp": "2024-01-14T09:54:35.82110793Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306383,12 +302734,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594693563Z", + "timestamp": "2024-01-14T09:54:35.821121515Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306425,7 +302776,7 @@ "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594708872Z", + "timestamp": "2024-01-14T09:54:35.821134649Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306457,12 +302808,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594724571Z", + "timestamp": "2024-01-14T09:54:35.821147303Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306499,7 +302850,7 @@ "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594745119Z", + "timestamp": "2024-01-14T09:54:35.821164555Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306531,12 +302882,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:20:52.594761841Z", + "timestamp": "2024-01-14T09:54:35.821177279Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr'", "matcher-status": true }, @@ -306573,7 +302924,7 @@ "https://cdnjs.cloudflare.com/ajax/libs/iframe-resizer/4.3.2/iframeResizer.contentWindow.min.js" ], "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:21:44.342351618Z", + "timestamp": "2024-01-14T09:55:30.720095138Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: recosante.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr/'", "matcher-status": true }, @@ -306613,7 +302964,7 @@ "host": "https://recosante.beta.gouv.fr", "matched-at": "https://recosante.beta.gouv.fr/", "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:22:07.657357447Z", + "timestamp": "2024-01-14T09:55:58.126797867Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: recosante.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://recosante.beta.gouv.fr/'", "matcher-status": true }, @@ -306644,7 +302995,7 @@ "Let's Encrypt" ], "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:24:23.417879497Z", + "timestamp": "2024-01-14T09:58:15.157047053Z", "matcher-status": true }, { @@ -306674,7 +303025,7 @@ "recosante.beta.gouv.fr" ], "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:24:23.418000242Z", + "timestamp": "2024-01-14T09:58:15.157166075Z", "matcher-status": true }, { @@ -306705,7 +303056,7 @@ "tls12" ], "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:24:25.087045746Z", + "timestamp": "2024-01-14T09:58:16.575383998Z", "matcher-status": true }, { @@ -306736,7 +303087,7 @@ "tls13" ], "ip": "20.74.14.77", - "timestamp": "2024-01-07T10:24:25.274349489Z", + "timestamp": "2024-01-14T09:58:16.763074292Z", "matcher-status": true } ], @@ -306744,7 +303095,7 @@ { "requestedUrl": "https://recosante.beta.gouv.fr/", "finalUrl": "https://recosante.beta.gouv.fr/", - "fetchTime": "2024-01-07T10:15:43.846Z", + "fetchTime": "2024-01-14T09:49:07.998Z", "runWarnings": [], "categories": { "performance": { @@ -306755,7 +303106,7 @@ "snapshot" ], "id": "performance", - "score": 0.8 + "score": 0.85 }, "accessibility": { "title": "Accessibility", @@ -306807,53 +303158,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5742, + "numericValue": 5752, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1487, - "firstMeaningfulPaint": 1487, - "largestContentfulPaint": 1487, - "interactive": 5742, - "speedIndex": 2462, - "totalBlockingTime": 397, - "maxPotentialFID": 515, - "cumulativeLayoutShift": 0.0861409371693929, - "cumulativeLayoutShiftMainFrame": 0.0861409371693929, - "totalCumulativeLayoutShift": 0.0861409371693929, + "firstContentfulPaint": 1481, + "firstMeaningfulPaint": 1481, + "largestContentfulPaint": 1481, + "interactive": 5752, + "speedIndex": 2509, + "totalBlockingTime": 371, + "maxPotentialFID": 427, + "cumulativeLayoutShift": 0.05246354813045925, + "cumulativeLayoutShiftMainFrame": 0.05246354813045925, + "totalCumulativeLayoutShift": 0.05246354813045925, "observedTimeOrigin": 0, - "observedTimeOriginTs": 293074406, + "observedTimeOriginTs": 339744460, "observedNavigationStart": 0, - "observedNavigationStartTs": 293074406, - "observedFirstPaint": 395, - "observedFirstPaintTs": 293469008, - "observedFirstContentfulPaint": 395, - "observedFirstContentfulPaintTs": 293469008, - "observedFirstContentfulPaintAllFrames": 395, - "observedFirstContentfulPaintAllFramesTs": 293469008, - "observedFirstMeaningfulPaint": 395, - "observedFirstMeaningfulPaintTs": 293469008, - "observedLargestContentfulPaint": 395, - "observedLargestContentfulPaintTs": 293469008, - "observedLargestContentfulPaintAllFrames": 395, - "observedLargestContentfulPaintAllFramesTs": 293469008, - "observedTraceEnd": 3777, - "observedTraceEndTs": 296851830, - "observedLoad": 962, - "observedLoadTs": 294035953, - "observedDomContentLoaded": 490, - "observedDomContentLoadedTs": 293564863, - "observedCumulativeLayoutShift": 0.0861409371693929, - "observedCumulativeLayoutShiftMainFrame": 0.0861409371693929, - "observedTotalCumulativeLayoutShift": 0.0861409371693929, - "observedFirstVisualChange": 397, - "observedFirstVisualChangeTs": 293471406, - "observedLastVisualChange": 3080, - "observedLastVisualChangeTs": 296154406, - "observedSpeedIndex": 497, - "observedSpeedIndexTs": 293571423 + "observedNavigationStartTs": 339744460, + "observedFirstPaint": 412, + "observedFirstPaintTs": 340156312, + "observedFirstContentfulPaint": 412, + "observedFirstContentfulPaintTs": 340156312, + "observedFirstContentfulPaintAllFrames": 412, + "observedFirstContentfulPaintAllFramesTs": 340156312, + "observedFirstMeaningfulPaint": 412, + "observedFirstMeaningfulPaintTs": 340156312, + "observedLargestContentfulPaint": 412, + "observedLargestContentfulPaintTs": 340156312, + "observedLargestContentfulPaintAllFrames": 412, + "observedLargestContentfulPaintAllFramesTs": 340156312, + "observedTraceEnd": 3759, + "observedTraceEndTs": 343503079, + "observedLoad": 956, + "observedLoadTs": 340700928, + "observedDomContentLoaded": 478, + "observedDomContentLoadedTs": 340222838, + "observedCumulativeLayoutShift": 0.05246354813045925, + "observedCumulativeLayoutShiftMainFrame": 0.05246354813045925, + "observedTotalCumulativeLayoutShift": 0.05246354813045925, + "observedFirstVisualChange": 408, + "observedFirstVisualChangeTs": 340152460, + "observedLastVisualChange": 3058, + "observedLastVisualChangeTs": 342802460, + "observedSpeedIndex": 507, + "observedSpeedIndexTs": 340251723 }, { "lcpInvalidated": false @@ -306871,23 +303222,23 @@ "type": "debugdata", "items": [ { - "numRequests": 54, + "numRequests": 53, "numScripts": 9, "numStylesheets": 1, "numFonts": 3, - "numTasks": 1054, + "numTasks": 1089, "numTasksOver10ms": 11, "numTasksOver25ms": 4, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 5.263, - "throughput": 10443774.62528508, - "maxRtt": 84.611, - "maxServerLatency": 6.313000000000001, - "totalByteWeight": 634505, - "totalTaskTime": 612.8409999999978, - "mainDocumentTransferSize": 49187 + "rtt": 5.244, + "throughput": 10425465.232585778, + "maxRtt": 85.35600000000001, + "maxServerLatency": 7.214000000000002, + "totalByteWeight": 634529, + "totalTaskTime": 589.0739999999989, + "mainDocumentTransferSize": 49196 } ] } @@ -306978,8 +303329,8 @@ "sonarcloud": null, "summary": { "httpGrade": "D+", - "apdex": 0.958, - "apdexGrade": "E", + "apdex": 1, + "apdexGrade": "A", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", @@ -306992,8 +303343,8 @@ "cookiesCount": 0, "trackersGrade": "B", "trackersCount": 1, - "lighthouse_performance": 0.8, - "lighthouse_performanceGrade": "B", + "lighthouse_performance": 0.85, + "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.92, @@ -307018,7 +303369,7 @@ "http": { "url": "https://resorption-bidonvilles.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sat, 06 Jan 2024 19:24:00 GMT", + "end_time": "Sat, 13 Jan 2024 19:20:15 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -307027,7 +303378,7 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://stats.data.gouv.fr/matomo.php; font-src 'self'; img-src 'self'; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'", "Content-Type": "text/html;charset=utf-8", - "Date": "Sat, 06 Jan 2024 19:23:59 GMT", + "Date": "Sat, 13 Jan 2024 19:20:13 GMT", "Server": "nginx/1.19.10", "Strict-Transport-Security": "max-age=63072000; preload", "Transfer-Encoding": "chunked", @@ -307037,9 +303388,9 @@ "X-XSS-Protection": "1; mode=block", "x-powered-by": "Nuxt" }, - "scan_id": 46221008, + "scan_id": 46430083, "score": 80, - "start_time": "Sat, 06 Jan 2024 19:23:55 GMT", + "start_time": "Sat, 13 Jan 2024 19:20:10 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -307053,8 +303404,8 @@ "data": { "connect-src": [ "https://api.resorption-bidonvilles.beta.gouv.fr/", - "https://stats.data.gouv.fr/matomo.php", - "ws://localhost:*/_nuxt/" + "ws://localhost:*/_nuxt/", + "https://stats.data.gouv.fr/matomo.php" ], "default-src": [ "'none'" @@ -307070,8 +303421,8 @@ ], "script-src": [ "'unsafe-inline'", - "'unsafe-eval'", - "'self'" + "'self'", + "'unsafe-eval'" ], "style-src": [ "'unsafe-inline'", @@ -307264,8 +303615,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T10:21:57Z", - "next_check_at": "2024-01-07T10:26:57Z", + "last_check_at": "2024-01-14T09:59:25Z", + "next_check_at": "2024-01-14T10:04:23Z", "created_at": "2021-04-22T19:59:37Z", "mute_until": null, "favicon_url": "https://resorption-bidonvilles.beta.gouv.fr/favicon.ico", @@ -307273,7 +303624,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T10:07:06Z", + "tested_at": "2024-01-14T09:39:32Z", "expires_at": "2024-03-18T19:36:26Z", "valid": true, "error": null @@ -307281,12 +303632,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 614, + "redirect": 274, "namelookup": 0, "connection": 0, "handshake": 0, - "response": 181, - "total": 795 + "response": 83, + "total": 357 } }, "uptimeGrade": "A", @@ -307696,7 +304047,7 @@ "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "OK", - "finding": "71 >= 30 days" + "finding": "64 >= 30 days" }, { "id": "cert_notBefore", @@ -307899,14 +304250,14 @@ "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "1704622624" + "finding": "1705226156" }, { "id": "HSTS_time", @@ -308490,7 +304841,7 @@ "ip": "resorption-bidonvilles.beta.gouv.fr/51.178.137.38", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "61" } ], "thirdparties": { @@ -308500,7 +304851,7 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'none'; connect-src ws://localhost:*/_nuxt/ https://api.resorption-bidonvilles.beta.gouv.fr/ https://stats.data.gouv.fr/matomo.php; font-src 'self'; img-src 'self'; media-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'", "content-type": "text/html;charset=utf-8", - "date": "Sun, 07 Jan 2024 10:16:08 GMT", + "date": "Sun, 14 Jan 2024 09:55:00 GMT", "server": "nginx/1.19.10", "strict-transport-security": "max-age=63072000; preload", "vary": "Accept-Encoding\nAccept-Encoding", @@ -308514,15 +304865,6 @@ "hostname": "resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", "geoip": { - "city": { - "geoname_id": 2971874, - "names": { - "en": "Tremblay-en-France", - "ja": "トランブレ=アン=フランス", - "ru": "Трамбле-ан-Франс", - "zh-CN": "弗朗斯地区特朗布莱" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -308553,14 +304895,11 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 48.9497, - "longitude": 2.5624, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "93290" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -308575,30 +304914,7 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "pt-BR": "Ilha de França" - } - }, - { - "geoname_id": 2975246, - "iso_code": "93", - "names": { - "de": "Seine-Saint-Denis", - "en": "Seine-Saint-Denis", - "es": "Sena Saint Denis", - "fr": "Seine-Saint-Denis" - } - } - ] + } } } ] @@ -308758,7 +305074,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 10:15:27", + "@generated": "Sun, 14 Jan 2024 09:53:50", "site": [ { "@name": "https://resorption-bidonvilles.beta.gouv.fr", @@ -308898,20 +305214,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -308926,31 +305245,26 @@ "type": "dns", "host": "resorption-bidonvilles.beta.gouv.fr.", "matched-at": "resorption-bidonvilles.beta.gouv.fr", - "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." - ], - "timestamp": "2024-01-07T10:18:07.677245917Z", + "timestamp": "2024-01-14T09:57:00.509586737Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -308967,30 +305281,26 @@ "host": "resorption-bidonvilles.beta.gouv.fr.", "matched-at": "resorption-bidonvilles.beta.gouv.fr", "extracted-results": [ - "20 mx2.alwaysdata.com.", - "10 mx1.alwaysdata.com." + "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ?all\"" ], - "timestamp": "2024-01-07T10:18:07.830124641Z", + "timestamp": "2024-01-14T09:57:00.512117769Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -309006,28 +305316,30 @@ "host": "resorption-bidonvilles.beta.gouv.fr.", "matched-at": "resorption-bidonvilles.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com ?all\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T10:18:07.837400138Z", + "timestamp": "2024-01-14T09:57:00.572270606Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -309043,7 +305355,11 @@ "type": "dns", "host": "resorption-bidonvilles.beta.gouv.fr.", "matched-at": "resorption-bidonvilles.beta.gouv.fr", - "timestamp": "2024-01-07T10:18:07.934671635Z", + "extracted-results": [ + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." + ], + "timestamp": "2024-01-14T09:57:01.648553195Z", "matcher-status": true }, { @@ -309083,7 +305399,7 @@ "1; mode=block" ], "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:18:27.171904552Z", + "timestamp": "2024-01-14T09:57:20.073854168Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309110,7 +305426,7 @@ "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:11.370149896Z", + "timestamp": "2024-01-14T09:58:03.816817569Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309137,7 +305453,7 @@ "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:11.37018975Z", + "timestamp": "2024-01-14T09:58:03.816870036Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309164,7 +305480,7 @@ "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:11.370200189Z", + "timestamp": "2024-01-14T09:58:03.816880235Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309191,7 +305507,7 @@ "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:11.410235611Z", + "timestamp": "2024-01-14T09:58:03.867297317Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309223,12 +305539,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:25.918812864Z", + "timestamp": "2024-01-14T09:58:18.269056113Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309260,12 +305576,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:25.918850595Z", + "timestamp": "2024-01-14T09:58:18.269118649Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309297,12 +305613,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:25.918868788Z", + "timestamp": "2024-01-14T09:58:18.269137885Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309334,12 +305650,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:25.918882785Z", + "timestamp": "2024-01-14T09:58:18.269150639Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309371,12 +305687,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:25.91891773Z", + "timestamp": "2024-01-14T09:58:18.269288645Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309408,12 +305724,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:25.918937867Z", + "timestamp": "2024-01-14T09:58:18.269303393Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309445,12 +305761,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/en", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:19:25.918955701Z", + "timestamp": "2024-01-14T09:58:18.269319202Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr'", "matcher-status": true }, @@ -309490,7 +305806,7 @@ "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:20:02.441509189Z", + "timestamp": "2024-01-14T09:58:54.265944325Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: resorption-bidonvilles.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr/'", "matcher-status": true }, @@ -309530,7 +305846,7 @@ "host": "https://resorption-bidonvilles.beta.gouv.fr", "matched-at": "https://resorption-bidonvilles.beta.gouv.fr/", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:20:02.441553793Z", + "timestamp": "2024-01-14T09:58:54.265991673Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: resorption-bidonvilles.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://resorption-bidonvilles.beta.gouv.fr/'", "matcher-status": true }, @@ -309561,7 +305877,7 @@ "Let's Encrypt" ], "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:20:35.660105527Z", + "timestamp": "2024-01-14T09:59:27.916923957Z", "matcher-status": true }, { @@ -309594,7 +305910,7 @@ "api.resorption-bidonvilles.beta.gouv.fr" ], "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:20:35.660227294Z", + "timestamp": "2024-01-14T09:59:27.917035014Z", "matcher-status": true }, { @@ -309628,7 +305944,7 @@ "host": "resorption-bidonvilles.beta.gouv.fr:443", "matched-at": "resorption-bidonvilles.beta.gouv.fr:443", "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:20:36.511977093Z", + "timestamp": "2024-01-14T09:59:29.644261764Z", "matcher-status": true }, { @@ -309659,7 +305975,7 @@ "tls12" ], "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:20:37.463856853Z", + "timestamp": "2024-01-14T09:59:29.75939413Z", "matcher-status": true }, { @@ -309690,7 +306006,7 @@ "tls13" ], "ip": "51.178.137.38", - "timestamp": "2024-01-07T10:20:37.660751264Z", + "timestamp": "2024-01-14T09:59:29.95287859Z", "matcher-status": true } ], @@ -309698,7 +306014,7 @@ { "requestedUrl": "https://resorption-bidonvilles.beta.gouv.fr/", "finalUrl": "https://resorption-bidonvilles.beta.gouv.fr/", - "fetchTime": "2024-01-07T10:15:41.172Z", + "fetchTime": "2024-01-14T09:54:34.834Z", "runWarnings": [], "categories": { "performance": { @@ -309761,53 +306077,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7612, + "numericValue": 7528, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2144, - "firstMeaningfulPaint": 2144, - "largestContentfulPaint": 2144, - "interactive": 7612, - "speedIndex": 4018, - "totalBlockingTime": 130, - "maxPotentialFID": 149, - "cumulativeLayoutShift": 0.0023717736138237845, - "cumulativeLayoutShiftMainFrame": 0.0023717736138237845, - "totalCumulativeLayoutShift": 0.0023717736138237845, + "firstContentfulPaint": 2042, + "firstMeaningfulPaint": 2042, + "largestContentfulPaint": 2118, + "interactive": 7528, + "speedIndex": 4002, + "totalBlockingTime": 141, + "maxPotentialFID": 142, + "cumulativeLayoutShift": 0.0025219328138563367, + "cumulativeLayoutShiftMainFrame": 0.0025219328138563367, + "totalCumulativeLayoutShift": 0.0025219328138563367, "observedTimeOrigin": 0, - "observedTimeOriginTs": 284155503, + "observedTimeOriginTs": 316467191, "observedNavigationStart": 0, - "observedNavigationStartTs": 284155503, - "observedFirstPaint": 651, - "observedFirstPaintTs": 284806299, - "observedFirstContentfulPaint": 651, - "observedFirstContentfulPaintTs": 284806299, - "observedFirstContentfulPaintAllFrames": 651, - "observedFirstContentfulPaintAllFramesTs": 284806299, - "observedFirstMeaningfulPaint": 651, - "observedFirstMeaningfulPaintTs": 284806299, - "observedLargestContentfulPaint": 651, - "observedLargestContentfulPaintTs": 284806299, - "observedLargestContentfulPaintAllFrames": 651, - "observedLargestContentfulPaintAllFramesTs": 284806299, - "observedTraceEnd": 3319, - "observedTraceEndTs": 287474838, - "observedLoad": 993, - "observedLoadTs": 285148611, - "observedDomContentLoaded": 668, - "observedDomContentLoadedTs": 284823092, - "observedCumulativeLayoutShift": 0.0023717736138237845, - "observedCumulativeLayoutShiftMainFrame": 0.0023717736138237845, - "observedTotalCumulativeLayoutShift": 0.0023717736138237845, - "observedFirstVisualChange": 649, - "observedFirstVisualChangeTs": 284804503, - "observedLastVisualChange": 1483, - "observedLastVisualChangeTs": 285638503, - "observedSpeedIndex": 707, - "observedSpeedIndexTs": 284862772 + "observedNavigationStartTs": 316467191, + "observedFirstPaint": 633, + "observedFirstPaintTs": 317100379, + "observedFirstContentfulPaint": 633, + "observedFirstContentfulPaintTs": 317100379, + "observedFirstContentfulPaintAllFrames": 633, + "observedFirstContentfulPaintAllFramesTs": 317100379, + "observedFirstMeaningfulPaint": 633, + "observedFirstMeaningfulPaintTs": 317100379, + "observedLargestContentfulPaint": 633, + "observedLargestContentfulPaintTs": 317100379, + "observedLargestContentfulPaintAllFrames": 633, + "observedLargestContentfulPaintAllFramesTs": 317100379, + "observedTraceEnd": 3375, + "observedTraceEndTs": 319842380, + "observedLoad": 958, + "observedLoadTs": 317424719, + "observedDomContentLoaded": 655, + "observedDomContentLoadedTs": 317122060, + "observedCumulativeLayoutShift": 0.0025219328138563367, + "observedCumulativeLayoutShiftMainFrame": 0.0025219328138563367, + "observedTotalCumulativeLayoutShift": 0.0025219328138563367, + "observedFirstVisualChange": 636, + "observedFirstVisualChangeTs": 317103191, + "observedLastVisualChange": 1453, + "observedLastVisualChangeTs": 317920191, + "observedSpeedIndex": 678, + "observedSpeedIndexTs": 317144814 }, { "lcpInvalidated": false @@ -309829,19 +306145,19 @@ "numScripts": 9, "numStylesheets": 3, "numFonts": 5, - "numTasks": 1004, - "numTasksOver10ms": 6, - "numTasksOver25ms": 4, - "numTasksOver50ms": 1, + "numTasks": 1014, + "numTasksOver10ms": 8, + "numTasksOver25ms": 5, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 81.92800000000001, - "throughput": 150347122.7311138, - "maxRtt": 83.14699999999999, - "maxServerLatency": 180.425, - "totalByteWeight": 15681972, - "totalTaskTime": 310.46599999999785, - "mainDocumentTransferSize": 8077 + "rtt": 85.919, + "throughput": 135230671.71452123, + "maxRtt": 86.45100000000001, + "maxServerLatency": 86.51300000000002, + "totalByteWeight": 15681994, + "totalTaskTime": 361.7419999999981, + "mainDocumentTransferSize": 8071 } ] } @@ -309976,7 +306292,7 @@ "http": { "url": "https://santepsy.etudiant.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 10:36:57 GMT", + "end_time": "Sun, 14 Jan 2024 10:11:43 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -309989,7 +306305,7 @@ "Content-Type": "text/html; charset=UTF-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 10:36:56 GMT", + "Date": "Sun, 14 Jan 2024 10:11:42 GMT", "ETag": "W/\"6a9-18c7d8e6830\"", "Expires": "0", "Feature-Policy": "geolocation 'self'", @@ -310007,12 +306323,12 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "ea8af393-8f9a-48a4-850b-1e284efecbc4", + "X-Request-ID": "82c097c6-6d14-4918-b9a6-53327a66bc03", "X-XSS-Protection": "0" }, - "scan_id": 46232958, + "scan_id": 46466095, "score": 110, - "start_time": "Sun, 07 Jan 2024 10:36:53 GMT", + "start_time": "Sun, 14 Jan 2024 10:11:39 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -310028,18 +306344,18 @@ "'self'" ], "connect-src": [ + "https://nominatim.openstreetmap.org", "'self'", "https://client.axept.io/", - "https://nominatim.openstreetmap.org", "https://stats.beta.gouv.fr/" ], "default-src": [ "'self'" ], "font-src": [ - "'self'", "data:", - "https:" + "https:", + "'self'" ], "form-action": [ "'self'" @@ -310048,32 +306364,32 @@ "'self'" ], "frame-src": [ - "https://santepsy-metabase.osc-secnum-fr1.scalingo.io", "https://bid.g.doubleclick.net/", - "https://stats.santepsyetudiant.beta.gouv.fr" + "https://stats.santepsyetudiant.beta.gouv.fr", + "https://santepsy-metabase.osc-secnum-fr1.scalingo.io" ], "img-src": [ "https://*.tile.openstreetmap.org/", + "https://www.facebook.com", + "https://googleads.g.doubleclick.net", + "data:", + "https://www.google.com/", "https://stats.beta.gouv.fr/", "https://www.google.fr/", - "https://googleads.g.doubleclick.net", - "'self'", "https://axeptio.imgix.net", - "https://www.google.com/", - "https://www.facebook.com", - "data:" + "'self'" ], "object-src": [ "'none'" ], "script-src": [ - "https://connect.facebook.net", - "https://stats.beta.gouv.fr/", "https://www.googleadservices.com/", - "https://googleads.g.doubleclick.net", "'sha256-sqjiu0yvewrfwpjx2fpbsuhfmtb6cd2u2u+ip0kxg4c='", - "'self'", + "https://connect.facebook.net", + "https://googleads.g.doubleclick.net", + "https://stats.beta.gouv.fr/", "https://www.googletagmanager.com/", + "'self'", "https://static.axept.io/" ], "script-src-attr": [ @@ -310081,8 +306397,8 @@ "'unsafe-inline'" ], "style-src": [ - "'self'", "https:", + "'self'", "'unsafe-inline'" ], "upgrade-insecure-requests": [ @@ -310260,10 +306576,10 @@ "url": "https://santepsy.etudiant.gouv.fr", "alias": "", "last_status": 200, - "uptime": 99.946, + "uptime": 99.683, "down": false, "down_since": null, - "up_since": "2024-01-07T05:52:18Z", + "up_since": "2024-01-13T20:37:28Z", "error": null, "period": 120, "apdex_t": 0.5, @@ -310276,8 +306592,8 @@ "email:3616943751", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T10:57:13Z", - "next_check_at": "2024-01-07T10:59:12Z", + "last_check_at": "2024-01-14T10:32:35Z", + "next_check_at": "2024-01-14T10:34:35Z", "created_at": "2021-04-02T08:14:32Z", "mute_until": null, "favicon_url": "https://santepsy.etudiant.gouv.fr/favicon.ico", @@ -310285,771 +306601,174 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T10:57:13Z", + "tested_at": "2024-01-14T10:20:40Z", "expires_at": "2024-02-10T23:59:59Z", "valid": true, "error": null }, "metrics": { - "apdex": 0.983, + "apdex": 1, "timings": { "redirect": 0, - "namelookup": 90, - "connection": 124, - "handshake": 133, - "response": 196, - "total": 542 + "namelookup": 74, + "connection": 131, + "handshake": 140, + "response": 162, + "total": 506 } }, "uptimeGrade": "A", - "apdexGrade": "B" + "apdexGrade": "A" + }, + "nmap": { + "host": "santepsy.etudiant.gouv.fr", + "protocol": "tcp", + "closed_ports": "985", + "open_ports": [ + { + "service": { + "name": "ssh", + "product": "OpenSSH", + "id": "22", + "version": "8.0", + "vulnerabilities": [ + { + "is_exploit": "false", + "cvss": "6.8", + "id": "CVE-2020-15778", + "type": "cve" + }, + { + "is_exploit": "true", + "cvss": "6.8", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "type": "githubexploit" + }, + { + "is_exploit": "true", + "cvss": "6.8", + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "type": "githubexploit" + }, + { + "is_exploit": "false", + "cvss": "5.0", + "id": "PRION:CVE-2016-20012", + "type": "prion" + }, + { + "is_exploit": "false", + "cvss": "5.0", + "id": "PRION:CVE-2010-4816", + "type": "prion" + } + ] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "80", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "tcpwrapped", + "id": "443", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "cisco-tdp", + "id": "711", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "mtqp", + "id": "1038", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "nucleus-sand", + "id": "1201", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "dproxy", + "id": "1296", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "citrix-ica", + "id": "1494", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "fj-hdnet", + "id": "1717", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "unknown", + "id": "3546", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "upnotifyp", + "id": "4445", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "onscreen", + "id": "5080", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "3exmp", + "id": "5221", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "m2mservices", + "id": "8383", + "vulnerabilities": [] + } + }, + { + "service": { + "name": "dynamid", + "id": "9002", + "vulnerabilities": [] + } + } + ], + "grade": "C" }, - "nmap": null, "dependabot": null, "codescan": null, - "testssl": [ - { - "id": "service", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "cipher-tls1_2_xc030", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_x9f", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9f DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384" - }, - { - "id": "cipher-tls1_2_xc02f", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "cipher-tls1_2_x9e", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "TLSv1.2 x9e DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256" - }, - { - "id": "supportedciphers_TLSv1_2", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "cipher_order", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "NOT a cipher order configured" - }, - { - "id": "FS", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1" - }, - { - "id": "TLS_extensions", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10'" - }, - { - "id": "TLS_session_ticket", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "no -- no lifetime advertised" - }, - { - "id": "SSL_sessionID_support", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "yes" - }, - { - "id": "sessionresumption_ticket", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "not supported" - }, - { - "id": "sessionresumption_ID", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "supported" - }, - { - "id": "TLS_timestamp", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "random" - }, - { - "id": "certificate_compression", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "clientAuth", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "none" - }, - { - "id": "cert_numbers", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "1" - }, - { - "id": "cert_signatureAlgorithm", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "SHA384 with RSA" - }, - { - "id": "cert_keySize", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "RSA 4096 bits (exponent is 65537)" - }, - { - "id": "cert_keyUsage", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "Digital Signature, Key Encipherment" - }, - { - "id": "cert_extKeyUsage", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "TLS Web Server Authentication, TLS Web Client Authentication" - }, - { - "id": "cert_serialNumber", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "9E8D6E7517054698ECDE0DEE7AA6DDAC" - }, - { - "id": "cert_serialNumberLen", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "16" - }, - { - "id": "cert_fingerprintSHA1", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "F3269C8530E21A270D1E7D3E90AB133B46FF618B" - }, - { - "id": "cert_fingerprintSHA256", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "9EFAA7723BE1A40965DA1565254F9192734DB492EF6016601EB0E63EE3C42CCC" - }, - { - "id": "cert", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "cert_commonName", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "etudiant.gouv.fr" - }, - { - "id": "cert_commonName_wo_SNI", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "*.dedie.ate.info" - }, - { - "id": "cert_subjectAltName", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "etudiant.gouv.fr back.etudiant.gouv.fr etudiants.gouv.fr isoprod.back.etudiant.gouv.fr isoprod.etudiant.gouv.fr santepsy.etudiant.gouv.fr test.back.etudiant.gouv.fr test.etudiant.gouv.fr www.etudiant.gouv.fr www.etudiants.gouv.fr" - }, - { - "id": "cert_trust", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "Ok via SAN (SNI mandatory)" - }, - { - "id": "cert_chain_of_trust", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "passed." - }, - { - "id": "cert_certificatePolicies_EV", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_expirationStatus", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (34)" - }, - { - "id": "cert_notBefore", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "2023-02-10 00:00" - }, - { - "id": "cert_notAfter", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-10 23:59" - }, - { - "id": "cert_extlifeSpan", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl" - }, - { - "id": "cert_ocspURL", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "http://GEANT.ocsp.sectigo.com" - }, - { - "id": "OCSP_stapling", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cert_ocspRevoked", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "not revoked" - }, - { - "id": "cert_mustStapleExtension", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "GEANT OV RSA CA 4 (GEANT Vereniging from NL)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "37834FA5EA40FBF7B61196955962E1CA0558872435E4206653D3F620DD8E988E" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "2020-02-18 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "2033-05-01 23:59" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "GEANT OV RSA CA 4 <-- USERTrust RSA Certification Authority" - }, - { - "id": "intermediate_cert <#2>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "68B9C761219A5B1F0131784474665DB61BBDB109E00F05CA9F74244EE5F5F52B" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "2019-03-12 00:00" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "2028-12-31 23:59" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "USERTrust RSA Certification Authority <-- AAA Certificate Services" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "1704624563" - }, - { - "id": "HSTS_time", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "nginx" - }, - { - "id": "banner_application", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' https://stats.beta.gouv.fr/ https://*.tile.openstreetmap.org/ https://axeptio.imgix.net https://www.google.com/ https://www.google.fr/ https://www.facebook.com https://googleads.g.doubleclick.net data:;object-src 'none';script-src 'self' https://stats.beta.gouv.fr/ 'sha256-sqjiu0yVEwRFwPjX2fpBsUHfmtb6Cd2U2U+ip0KXg4c=' https://static.axept.io/ https://connect.facebook.net https://www.googletagmanager.com/ https://www.googleadservices.com/ https://googleads.g.doubleclick.net;script-src-attr 'self' 'unsafe-inline';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests;frame-src https://santepsy-metabase.osc-secnum-fr1.scalingo.io https://stats.santepsyetudiant.beta.gouv.fr https://bid.g.doubleclick.net/;connect-src 'self' https://nominatim.openstreetmap.org https://stats.beta.gouv.fr/ https://client.axept.io/" - }, - { - "id": "Permissions-Policy", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "finding": "geolocation=(self), accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=()" - }, - { - "id": "X-XSS-Protection", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "no-referrer" - }, - { - "id": "Cache-Control", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "no-cache, no-store, must-revalidate" - }, - { - "id": "Pragma", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "finding": "no-cache" - }, - { - "id": "banner_reverseproxy", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "no session ticket extension" - }, - { - "id": "scanProblem", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "FATAL", - "finding": "repeated TCP connect problems, giving up" - }, - { - "id": "scanTime", - "ip": "santepsy.etudiant.gouv.fr/185.75.143.93", - "port": "443", - "severity": "WARN", - "finding": "Scan interrupted" - } - ], + "testssl": null, "thirdparties": { "trackers": null, "cookies": null, @@ -311102,7 +306821,7 @@ "name": "Leaflet", "description": "Leaflet is the open-source JavaScript library for mobile-friendly interactive maps.", "confidence": 100, - "version": "1.7.1", + "version": "1.9.3", "icon": "Leaflet.png", "website": "https://leafletjs.com", "cpe": null, @@ -311197,7 +306916,7 @@ "name": "Livefyre", "description": "Livefyre is a platform that integrates with the social web to boost social interaction.", "confidence": 0, - "version": "1.7.1", + "version": "1.9.3", "icon": "Livefyre.png", "website": "https://livefyre.com", "cpe": null, @@ -311369,10 +307088,13 @@ "sonarcloud": null, "summary": { "httpGrade": "A+", - "apdex": 0.983, - "apdexGrade": "B", - "uptime": 99.946, + "apdex": 1, + "apdexGrade": "A", + "uptime": 99.683, "uptimeGrade": "A", + "nmapGrade": "C", + "nmapOpenPortsCount": 15, + "nmapOpenPortsGrade": "F", "cookiesGrade": null, "cookiesCount": null, "trackersGrade": null, @@ -311392,7 +307114,7 @@ "http": { "url": "https://espace-membre.incubateur.net", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 10:34:52 GMT", + "end_time": "Sun, 14 Jan 2024 10:11:45 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -311401,18 +307123,18 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 10:34:51 GMT", - "ETag": "\"jmsksegj4yedm\"", + "Date": "Sun, 14 Jan 2024 10:11:44 GMT", + "ETag": "\"t57tob672eedm\"", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "X-Powered-By": "Next.js", - "X-Request-ID": "93c33c2a-d7a5-4612-8918-76425f623ebf", + "X-Request-ID": "8f172df2-1d71-4133-bce5-997e499ea344", "x-nextjs-cache": "HIT" }, - "scan_id": 46232918, + "scan_id": 46466100, "score": 40, - "start_time": "Sun, 07 Jan 2024 10:34:48 GMT", + "start_time": "Sun, 14 Jan 2024 10:11:41 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -311606,77 +307328,77 @@ "testssl": [ { "id": "service", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -311684,7 +307406,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -311692,7 +307414,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -311700,7 +307422,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -311708,7 +307430,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -311716,7 +307438,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -311724,497 +307446,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-06 16:35" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-05 16:35" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704623801" + "finding": "1705227182" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -312222,7 +307944,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -312231,7 +307953,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -312240,7 +307962,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -312249,7 +307971,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -312258,7 +307980,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -312266,7 +307988,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -312275,7 +307997,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -312284,7 +308006,7 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -312293,7 +308015,7 @@ }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -312302,14 +308024,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -312318,7 +308040,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -312327,7 +308049,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -312336,7 +308058,7 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -312345,7 +308067,7 @@ }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -312354,7 +308076,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -312363,7 +308085,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -312372,7 +308094,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -312381,7 +308103,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -312390,7 +308112,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -312399,392 +308121,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/148.253.96.193", + "ip": "espace-membre.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -312792,7 +308514,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -312800,7 +308522,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -312808,7 +308530,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -312816,7 +308538,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -312824,7 +308546,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -312832,497 +308554,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-06 16:35" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-05 16:35" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704623900" + "finding": "1705227239" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -313330,7 +309052,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -313339,7 +309061,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -313348,7 +309070,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -313357,7 +309079,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -313366,7 +309088,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -313374,7 +309096,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -313383,7 +309105,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -313392,7 +309114,7 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -313401,7 +309123,7 @@ }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -313410,14 +309132,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -313426,7 +309148,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -313435,7 +309157,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -313444,7 +309166,7 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -313453,7 +309175,7 @@ }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -313462,7 +309184,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -313471,7 +309193,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -313480,7 +309202,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -313489,7 +309211,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -313498,7 +309220,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -313507,392 +309229,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/80.247.12.255", + "ip": "espace-membre.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313900,7 +309622,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313908,7 +309630,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313916,7 +309638,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -313924,7 +309646,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -313932,7 +309654,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -313940,497 +309662,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-06 16:35" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-05 16:35" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704623999" + "finding": "1705227297" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -314438,7 +310160,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -314447,7 +310169,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -314456,7 +310178,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -314465,7 +310187,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -314474,7 +310196,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -314482,7 +310204,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -314491,7 +310213,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -314500,7 +310222,7 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -314509,7 +310231,7 @@ }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -314518,14 +310240,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -314534,7 +310256,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -314543,7 +310265,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -314552,7 +310274,7 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -314561,7 +310283,7 @@ }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -314570,7 +310292,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -314579,7 +310301,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -314588,7 +310310,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -314597,7 +310319,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -314606,7 +310328,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -314615,392 +310337,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/80.247.13.145", + "ip": "espace-membre.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -315008,7 +310730,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -315016,7 +310738,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -315024,7 +310746,7 @@ }, { "id": "cipherlist_LOW", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -315032,7 +310754,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -315040,7 +310762,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -315048,497 +310770,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "51 >= 30 days" }, { "id": "cert_notBefore", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-06 16:35" }, { "id": "cert_notAfter", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-05 16:35" }, { "id": "cert_extlifeSpan", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704624099" + "finding": "1705227355" }, { "id": "HSTS_time", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -315546,7 +311268,7 @@ }, { "id": "heartbleed", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -315555,7 +311277,7 @@ }, { "id": "CCS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -315564,7 +311286,7 @@ }, { "id": "ticketbleed", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -315573,7 +311295,7 @@ }, { "id": "ROBOT", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -315582,7 +311304,7 @@ }, { "id": "secure_renego", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -315590,7 +311312,7 @@ }, { "id": "secure_client_renego", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -315599,7 +311321,7 @@ }, { "id": "CRIME_TLS", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -315608,7 +311330,7 @@ }, { "id": "BREACH", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -315617,7 +311339,7 @@ }, { "id": "POODLE_SSL", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -315626,14 +311348,14 @@ }, { "id": "fallback_SCSV", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -315642,7 +311364,7 @@ }, { "id": "FREAK", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -315651,7 +311373,7 @@ }, { "id": "DROWN", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -315660,7 +311382,7 @@ }, { "id": "DROWN_hint", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -315669,7 +311391,7 @@ }, { "id": "LOGJAM", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -315678,7 +311400,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -315687,7 +311409,7 @@ }, { "id": "BEAST", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -315696,7 +311418,7 @@ }, { "id": "LUCKY13", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -315705,7 +311427,7 @@ }, { "id": "winshock", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -315714,7 +311436,7 @@ }, { "id": "RC4", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -315723,325 +311445,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "espace-membre.incubateur.net/185.21.194.105", + "ip": "espace-membre.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "402" + "finding": "235" } ], "thirdparties": { @@ -316051,18 +311773,18 @@ "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 10:35:23 GMT", - "etag": "\"jmsksegj4yedm\"", + "date": "Sun, 14 Jan 2024 10:12:18 GMT", + "etag": "\"t57tob672eedm\"", "strict-transport-security": "max-age=31536000", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "x-nextjs-cache": "HIT", "x-powered-by": "Next.js", - "x-request-id": "18ee2511-25f7-4d31-8bb9-2d3ccc606bda" + "x-request-id": "84bec7c6-5223-4838-b878-f46d2e55ff46" }, "endpoints": [ { "hostname": "espace-membre.incubateur.net", - "ip": "80.247.12.255", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -316249,7 +311971,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 10:34:21", + "@generated": "Sun, 14 Jan 2024 10:11:16", "site": [ { "@name": "https://espace-membre.incubateur.net", @@ -316371,7 +312093,7 @@ { "requestedUrl": "https://espace-membre.incubateur.net/", "finalUrl": "https://espace-membre.incubateur.net/", - "fetchTime": "2024-01-07T10:34:35.399Z", + "fetchTime": "2024-01-14T10:11:30.196Z", "runWarnings": [], "categories": { "performance": { @@ -316434,53 +312156,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5211, + "numericValue": 5140, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1354, - "firstMeaningfulPaint": 1354, - "largestContentfulPaint": 5621, - "interactive": 5211, - "speedIndex": 5283, - "totalBlockingTime": 143, - "maxPotentialFID": 161, + "firstContentfulPaint": 1356, + "firstMeaningfulPaint": 1356, + "largestContentfulPaint": 5428, + "interactive": 5140, + "speedIndex": 4259, + "totalBlockingTime": 56, + "maxPotentialFID": 158, "cumulativeLayoutShift": 0.0002758246527777778, "cumulativeLayoutShiftMainFrame": 0.0002758246527777778, "totalCumulativeLayoutShift": 0.0005167100694444444, "observedTimeOrigin": 0, - "observedTimeOriginTs": 213257565, + "observedTimeOriginTs": 198831353, "observedNavigationStart": 0, - "observedNavigationStartTs": 213257565, - "observedFirstPaint": 1017, - "observedFirstPaintTs": 214274302, - "observedFirstContentfulPaint": 1017, - "observedFirstContentfulPaintTs": 214274302, - "observedFirstContentfulPaintAllFrames": 1017, - "observedFirstContentfulPaintAllFramesTs": 214274302, - "observedFirstMeaningfulPaint": 1017, - "observedFirstMeaningfulPaintTs": 214274302, - "observedLargestContentfulPaint": 2667, - "observedLargestContentfulPaintTs": 215924079, - "observedLargestContentfulPaintAllFrames": 2667, - "observedLargestContentfulPaintAllFramesTs": 215924079, - "observedTraceEnd": 5304, - "observedTraceEndTs": 218561961, - "observedLoad": 1599, - "observedLoadTs": 214856606, - "observedDomContentLoaded": 972, - "observedDomContentLoadedTs": 214229239, + "observedNavigationStartTs": 198831353, + "observedFirstPaint": 669, + "observedFirstPaintTs": 199500799, + "observedFirstContentfulPaint": 669, + "observedFirstContentfulPaintTs": 199500799, + "observedFirstContentfulPaintAllFrames": 669, + "observedFirstContentfulPaintAllFramesTs": 199500799, + "observedFirstMeaningfulPaint": 669, + "observedFirstMeaningfulPaintTs": 199500799, + "observedLargestContentfulPaint": 1800, + "observedLargestContentfulPaintTs": 200631683, + "observedLargestContentfulPaintAllFrames": 1800, + "observedLargestContentfulPaintAllFramesTs": 200631683, + "observedTraceEnd": 4345, + "observedTraceEndTs": 203176561, + "observedLoad": 1102, + "observedLoadTs": 199932990, + "observedDomContentLoaded": 665, + "observedDomContentLoadedTs": 199496386, "observedCumulativeLayoutShift": 0.0002758246527777778, "observedCumulativeLayoutShiftMainFrame": 0.0002758246527777778, "observedTotalCumulativeLayoutShift": 0.0005167100694444444, - "observedFirstVisualChange": 983, - "observedFirstVisualChangeTs": 214240565, - "observedLastVisualChange": 2833, - "observedLastVisualChangeTs": 216090565, - "observedSpeedIndex": 2421, - "observedSpeedIndexTs": 215678206 + "observedFirstVisualChange": 677, + "observedFirstVisualChangeTs": 199508353, + "observedLastVisualChange": 1927, + "observedLastVisualChangeTs": 200758353, + "observedSpeedIndex": 1654, + "observedSpeedIndexTs": 200485480 }, { "lcpInvalidated": false @@ -316502,19 +312224,19 @@ "numScripts": 25, "numStylesheets": 2, "numFonts": 4, - "numTasks": 867, - "numTasksOver10ms": 6, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numTasks": 844, + "numTasksOver10ms": 4, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 148.892, - "throughput": 14092959.112668369, - "maxRtt": 152.99999999999997, - "maxServerLatency": 4.118000000000023, - "totalByteWeight": 836385, - "totalTaskTime": 401.5739999999996, - "mainDocumentTransferSize": 4620 + "rtt": 100.85499999999999, + "throughput": 17135542.500783246, + "maxRtt": 100.9, + "maxServerLatency": 5.643000000000015, + "totalByteWeight": 836286, + "totalTaskTime": 291.5539999999992, + "mainDocumentTransferSize": 4616 } ] } @@ -316600,7 +312322,7 @@ "http": { "url": "https://trackdechets.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:34:36 GMT", + "end_time": "Sun, 14 Jan 2024 05:27:29 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -316612,7 +312334,7 @@ "Content-Type": "text/html; charset=UTF-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 05:34:34 GMT", + "Date": "Sun, 14 Jan 2024 05:27:27 GMT", "ETag": "W/\"162ca-18c1564d190\"", "Last-Modified": "Tue, 28 Nov 2023 10:06:18 GMT", "Origin-Agent-Cluster": "?1", @@ -316624,12 +312346,12 @@ "X-Download-Options": "noopen", "X-Frame-Options": "DENY", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "5eda423a-552d-4a28-ad9e-6920490c186d", + "X-Request-ID": "79534a48-92a3-4c6f-82b6-1e9188aaf0ca", "X-XSS-Protection": "0" }, - "scan_id": 46229211, + "scan_id": 46455579, "score": 50, - "start_time": "Sun, 07 Jan 2024 05:34:31 GMT", + "start_time": "Sun, 14 Jan 2024 05:27:24 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -316645,17 +312367,17 @@ "'self'" ], "connect-src": [ - "https://formations.trackdechets.beta.gouv.fr", + "'self'", "https://plausible.trackdechets.beta.gouv.fr/", - "'self'" + "https://formations.trackdechets.beta.gouv.fr" ], "default-src": [ "'self'" ], "font-src": [ + "'self'", "https:", - "data:", - "'self'" + "data:" ], "form-action": [ "'self'" @@ -316664,31 +312386,31 @@ "'none'" ], "frame-src": [ - "youtube.com", + "*.sibforms.com", "*.trackdechets.beta.gouv.fr", "www.youtube.com", - "*.sibforms.com" + "youtube.com" ], "img-src": [ - "data:", - "'self'" + "'self'", + "data:" ], "object-src": [ "'none'" ], "script-src": [ - "stats.data.gouv.fr", + "'self'", "'unsafe-inline'", "https://plausible.trackdechets.beta.gouv.fr/", - "'self'" + "stats.data.gouv.fr" ], "script-src-attr": [ "'none'" ], "style-src": [ - "https:", + "'self'", "'unsafe-inline'", - "'self'" + "https:" ], "upgrade-insecure-requests": [ "'none'" @@ -316868,7 +312590,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-06T12:10:19Z", + "up_since": "2024-01-08T14:04:20Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -316880,8 +312602,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T10:43:52Z", - "next_check_at": "2024-01-07T10:48:52Z", + "last_check_at": "2024-01-14T10:21:33Z", + "next_check_at": "2024-01-14T10:26:31Z", "created_at": "2021-04-22T19:59:38Z", "mute_until": null, "favicon_url": "https://trackdechets.beta.gouv.fr/favicon.ico", @@ -316889,7 +312611,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T10:14:01Z", + "tested_at": "2024-01-14T09:46:45Z", "expires_at": "2024-03-24T21:07:08Z", "valid": true, "error": null @@ -316898,11 +312620,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 100, - "connection": 85, - "handshake": 92, - "response": 89, - "total": 367 + "namelookup": 127, + "connection": 113, + "handshake": 122, + "response": 116, + "total": 478 } }, "uptimeGrade": "A", @@ -316935,77 +312657,77 @@ "testssl": [ { "id": "service", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -317013,7 +312735,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -317021,7 +312743,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -317029,7 +312751,7 @@ }, { "id": "cipherlist_LOW", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -317037,7 +312759,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -317045,7 +312767,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -317053,539 +312775,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-25 21:07" }, { "id": "cert_notAfter", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-24 21:07" }, { "id": "cert_extlifeSpan", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704623810" + "finding": "1705227217" }, { "id": "HSTS_multiple", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self';connect-src 'self' https://formations.trackdechets.beta.gouv.fr https://plausible.trackdechets.beta.gouv.fr/;base-uri 'self';font-src 'self' https: data:;frame-ancestors 'none';frame-src youtube.com www.youtube.com *.sibforms.com *.trackdechets.beta.gouv.fr;img-src 'self' data:;script-src 'self' 'unsafe-inline' stats.data.gouv.fr https://plausible.trackdechets.beta.gouv.fr/;style-src 'self' https: 'unsafe-inline';form-action 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "X-XSS-Protection", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -317593,7 +313315,7 @@ }, { "id": "heartbleed", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -317602,7 +313324,7 @@ }, { "id": "CCS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -317611,7 +313333,7 @@ }, { "id": "ticketbleed", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -317620,7 +313342,7 @@ }, { "id": "ROBOT", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -317629,7 +313351,7 @@ }, { "id": "secure_renego", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -317637,7 +313359,7 @@ }, { "id": "secure_client_renego", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -317646,7 +313368,7 @@ }, { "id": "CRIME_TLS", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -317655,7 +313377,7 @@ }, { "id": "BREACH", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -317664,7 +313386,7 @@ }, { "id": "POODLE_SSL", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -317673,14 +313395,14 @@ }, { "id": "fallback_SCSV", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -317689,7 +313411,7 @@ }, { "id": "FREAK", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -317698,7 +313420,7 @@ }, { "id": "DROWN", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -317707,7 +313429,7 @@ }, { "id": "DROWN_hint", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -317716,7 +313438,7 @@ }, { "id": "LOGJAM", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -317725,7 +313447,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -317734,7 +313456,7 @@ }, { "id": "BEAST", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -317743,7 +313465,7 @@ }, { "id": "LUCKY13", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -317752,7 +313474,7 @@ }, { "id": "winshock", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -317761,7 +313483,7 @@ }, { "id": "RC4", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -317770,392 +313492,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "trackdechets.beta.gouv.fr/185.21.194.105", + "ip": "trackdechets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -318163,7 +313885,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -318171,7 +313893,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -318179,7 +313901,7 @@ }, { "id": "cipherlist_LOW", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -318187,7 +313909,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -318195,7 +313917,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -318203,539 +313925,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-25 21:07" }, { "id": "cert_notAfter", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-24 21:07" }, { "id": "cert_extlifeSpan", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704623864" + "finding": "1705227313" }, { "id": "HSTS_multiple", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self';connect-src 'self' https://formations.trackdechets.beta.gouv.fr https://plausible.trackdechets.beta.gouv.fr/;base-uri 'self';font-src 'self' https: data:;frame-ancestors 'none';frame-src youtube.com www.youtube.com *.sibforms.com *.trackdechets.beta.gouv.fr;img-src 'self' data:;script-src 'self' 'unsafe-inline' stats.data.gouv.fr https://plausible.trackdechets.beta.gouv.fr/;style-src 'self' https: 'unsafe-inline';form-action 'self';object-src 'none';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "X-XSS-Protection", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -318743,7 +314465,7 @@ }, { "id": "heartbleed", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -318752,7 +314474,7 @@ }, { "id": "CCS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -318761,7 +314483,7 @@ }, { "id": "ticketbleed", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -318770,7 +314492,7 @@ }, { "id": "ROBOT", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -318779,7 +314501,7 @@ }, { "id": "secure_renego", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -318787,7 +314509,7 @@ }, { "id": "secure_client_renego", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -318796,7 +314518,7 @@ }, { "id": "CRIME_TLS", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -318805,7 +314527,7 @@ }, { "id": "BREACH", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -318814,7 +314536,7 @@ }, { "id": "POODLE_SSL", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -318823,14 +314545,14 @@ }, { "id": "fallback_SCSV", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -318839,7 +314561,7 @@ }, { "id": "FREAK", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -318848,7 +314570,7 @@ }, { "id": "DROWN", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -318857,7 +314579,7 @@ }, { "id": "DROWN_hint", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -318866,7 +314588,7 @@ }, { "id": "LOGJAM", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -318875,7 +314597,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -318884,7 +314606,7 @@ }, { "id": "BEAST", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -318893,7 +314615,7 @@ }, { "id": "LUCKY13", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -318902,7 +314624,7 @@ }, { "id": "winshock", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -318911,7 +314633,7 @@ }, { "id": "RC4", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -318920,325 +314642,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "trackdechets.beta.gouv.fr/148.253.96.193", + "ip": "trackdechets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "112" + "finding": "196" } ], "thirdparties": { @@ -319251,7 +314973,7 @@ "content-type": "text/html; charset=UTF-8", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 07 Jan 2024 10:36:09 GMT", + "date": "Sun, 14 Jan 2024 10:12:23 GMT", "etag": "W/\"162ca-18c1564d190\"", "last-modified": "Tue, 28 Nov 2023 10:06:18 GMT", "origin-agent-cluster": "?1", @@ -319262,7 +314984,7 @@ "x-download-options": "noopen", "x-frame-options": "DENY", "x-permitted-cross-domain-policies": "none", - "x-request-id": "bbc9e4b5-c7b5-466d-848a-784fb45e7e0f", + "x-request-id": "b13ad6d1-6ffc-4e57-a3e9-be879a0f5c1e", "x-xss-protection": "0" }, "endpoints": [ @@ -319548,7 +315270,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 10:35:28", + "@generated": "Sun, 14 Jan 2024 10:11:43", "site": [ { "@name": "https://trackdechets.beta.gouv.fr", @@ -319680,121 +315402,6 @@ ] }, "nuclei": [ - { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", - "info": { - "name": "DNS DMARC - Detect", - "author": [ - "juliosmelo" - ], - "tags": [ - "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "dns", - "host": "trackdechets.beta.gouv.fr.", - "matched-at": "_dmarc.trackdechets.beta.gouv.fr", - "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" - ], - "timestamp": "2024-01-07T10:39:09.55173259Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "trackdechets.beta.gouv.fr.", - "matched-at": "trackdechets.beta.gouv.fr", - "extracted-results": [ - "\"Sendinblue-code:0b86c28461d8da9c177594d98ac6ccb7\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"", - "\"google-site-verification=ESaQrbdx4A2KgYsn6CXN26Y7iTqtkYJBIAdWCqm0t9w\"" - ], - "timestamp": "2024-01-07T10:39:09.553532345Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "trackdechets.beta.gouv.fr.", - "matched-at": "trackdechets.beta.gouv.fr", - "timestamp": "2024-01-07T10:39:09.649523599Z", - "matcher-status": true - }, { "template": "dns/nameserver-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", @@ -319828,7 +315435,82 @@ "dns2.alwaysdata.com.", "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T10:39:09.70505534Z", + "timestamp": "2024-01-14T10:17:00.93526532Z", + "matcher-status": true + }, + { + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "info": { + "name": "DNS TXT Record Detected", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "trackdechets.beta.gouv.fr.", + "matched-at": "trackdechets.beta.gouv.fr", + "extracted-results": [ + "\"v=spf1 include:spf.sendinblue.com mx ~all\"", + "\"google-site-verification=ESaQrbdx4A2KgYsn6CXN26Y7iTqtkYJBIAdWCqm0t9w\"", + "\"Sendinblue-code:0b86c28461d8da9c177594d98ac6ccb7\"" + ], + "timestamp": "2024-01-14T10:17:00.935634231Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "trackdechets.beta.gouv.fr.", + "matched-at": "trackdechets.beta.gouv.fr", + "timestamp": "2024-01-14T10:17:00.938849802Z", "matcher-status": true }, { @@ -319865,10 +315547,50 @@ "host": "trackdechets.beta.gouv.fr.", "matched-at": "trackdechets.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2024-01-14T10:17:01.008676119Z", + "matcher-status": true + }, + { + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "info": { + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "trackdechets.beta.gouv.fr.", + "matched-at": "_dmarc.trackdechets.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2024-01-07T10:39:10.632898839Z", + "timestamp": "2024-01-14T10:17:01.344411743Z", "matcher-status": true }, { @@ -319896,8 +315618,8 @@ "extracted-results": [ "GET,HEAD" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:39:17.986668937Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:17:14.628891092Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319930,8 +315652,8 @@ "extracted-results": [ "Gatsby 2.28.0" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:39:53.12707787Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:18:06.542219769Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319957,8 +315679,8 @@ "type": "http", "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:39:53.47384769Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:18:06.882213109Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -319984,8 +315706,8 @@ "type": "http", "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:39:53.473882415Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:18:06.882247944Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -320021,8 +315743,8 @@ "type": "http", "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:40:00.9035813Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:18:20.702865461Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -320058,8 +315780,8 @@ "type": "http", "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:40:00.903617258Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:18:20.702918489Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -320095,8 +315817,8 @@ "type": "http", "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:40:00.903633228Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:18:20.702935822Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr'", "matcher-status": true }, @@ -320132,8 +315854,8 @@ "extracted-results": [ "https://plausible.trackdechets.beta.gouv.fr/js/script.outbound-links.js?original=/js/index.js" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:40:20.429172418Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:18:51.227624312Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: trackdechets.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr/'", "matcher-status": true }, @@ -320172,8 +315894,8 @@ "type": "http", "host": "https://trackdechets.beta.gouv.fr", "matched-at": "https://trackdechets.beta.gouv.fr/", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:40:29.297041064Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:19:05.187266491Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: trackdechets.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://trackdechets.beta.gouv.fr/'", "matcher-status": true }, @@ -320203,8 +315925,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:43:32.96375811Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:22:21.733795806Z", "matcher-status": true }, { @@ -320233,8 +315955,8 @@ "extracted-results": [ "trackdechets.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:43:32.96385382Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:22:21.733922653Z", "matcher-status": true }, { @@ -320264,8 +315986,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:43:34.586819371Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:22:24.196982771Z", "matcher-status": true }, { @@ -320295,8 +316017,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T10:43:34.764594021Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T10:22:24.599711472Z", "matcher-status": true } ], @@ -320304,7 +316026,7 @@ { "requestedUrl": "https://trackdechets.beta.gouv.fr/", "finalUrl": "https://trackdechets.beta.gouv.fr/", - "fetchTime": "2024-01-07T10:35:42.539Z", + "fetchTime": "2024-01-14T10:11:57.905Z", "runWarnings": [], "categories": { "performance": { @@ -320367,53 +316089,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1744, + "numericValue": 1663, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 992, - "firstMeaningfulPaint": 1744, - "largestContentfulPaint": 3024, - "interactive": 1744, - "speedIndex": 992, + "firstContentfulPaint": 913, + "firstMeaningfulPaint": 1663, + "largestContentfulPaint": 2938, + "interactive": 1663, + "speedIndex": 1051, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.12631036037868926, - "cumulativeLayoutShiftMainFrame": 0.12631036037868926, - "totalCumulativeLayoutShift": 0.12631036037868926, + "cumulativeLayoutShift": 0.1271106021669176, + "cumulativeLayoutShiftMainFrame": 0.1271106021669176, + "totalCumulativeLayoutShift": 0.1271106021669176, "observedTimeOrigin": 0, - "observedTimeOriginTs": 231409461, + "observedTimeOriginTs": 205295090, "observedNavigationStart": 0, - "observedNavigationStartTs": 231409461, - "observedFirstPaint": 139, - "observedFirstPaintTs": 231548754, - "observedFirstContentfulPaint": 139, - "observedFirstContentfulPaintTs": 231548754, - "observedFirstContentfulPaintAllFrames": 139, - "observedFirstContentfulPaintAllFramesTs": 231548754, - "observedFirstMeaningfulPaint": 397, - "observedFirstMeaningfulPaintTs": 231806166, - "observedLargestContentfulPaint": 397, - "observedLargestContentfulPaintTs": 231806166, - "observedLargestContentfulPaintAllFrames": 397, - "observedLargestContentfulPaintAllFramesTs": 231806166, - "observedTraceEnd": 3116, - "observedTraceEndTs": 234525010, - "observedLoad": 429, - "observedLoadTs": 231838121, + "observedNavigationStartTs": 205295090, + "observedFirstPaint": 153, + "observedFirstPaintTs": 205447645, + "observedFirstContentfulPaint": 153, + "observedFirstContentfulPaintTs": 205447645, + "observedFirstContentfulPaintAllFrames": 153, + "observedFirstContentfulPaintAllFramesTs": 205447645, + "observedFirstMeaningfulPaint": 601, + "observedFirstMeaningfulPaintTs": 205896254, + "observedLargestContentfulPaint": 601, + "observedLargestContentfulPaintTs": 205896254, + "observedLargestContentfulPaintAllFrames": 601, + "observedLargestContentfulPaintAllFramesTs": 205896254, + "observedTraceEnd": 3529, + "observedTraceEndTs": 208824571, + "observedLoad": 671, + "observedLoadTs": 205966016, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 231410197, - "observedCumulativeLayoutShift": 0.12631036037868926, - "observedCumulativeLayoutShiftMainFrame": 0.12631036037868926, - "observedTotalCumulativeLayoutShift": 0.12631036037868926, - "observedFirstVisualChange": 114, - "observedFirstVisualChangeTs": 231523461, - "observedLastVisualChange": 1431, - "observedLastVisualChangeTs": 232840461, - "observedSpeedIndex": 366, - "observedSpeedIndexTs": 231775229 + "observedDomContentLoadedTs": 205295715, + "observedCumulativeLayoutShift": 0.1271106021669176, + "observedCumulativeLayoutShiftMainFrame": 0.1271106021669176, + "observedTotalCumulativeLayoutShift": 0.1271106021669176, + "observedFirstVisualChange": 146, + "observedFirstVisualChangeTs": 205441090, + "observedLastVisualChange": 1829, + "observedLastVisualChangeTs": 207124090, + "observedSpeedIndex": 505, + "observedSpeedIndexTs": 205800268 }, { "lcpInvalidated": false @@ -320435,18 +316157,18 @@ "numScripts": 9, "numStylesheets": 0, "numFonts": 4, - "numTasks": 13, + "numTasks": 14, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.792, - "throughput": 9530221.518517796, - "maxRtt": 86.34, - "maxServerLatency": 89.81900000000002, - "totalByteWeight": 401975, - "totalTaskTime": 1.929, + "rtt": 133.68800000000002, + "throughput": 5971992.524894256, + "maxRtt": 136.102, + "maxServerLatency": 25.727000000000004, + "totalByteWeight": 402410, + "totalTaskTime": 4.951, "mainDocumentTransferSize": 29419 } ] @@ -320584,37 +316306,36 @@ "http": { "url": "https://transport.data.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 06:05:16 GMT", - "grade": "B+", + "end_time": "Sun, 14 Jan 2024 05:57:11 GMT", + "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "Sozu-Id": "01HKH8D0H8WPA5B52WGXZ11866", + "Sozu-Id": "01HM38Q7R1Y94RRMA3VGPCY8SF", "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", - "content-length": "8535", - "content-security-policy": "default-src 'none';connect-src *;font-src *;img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-OyGonKb13UgBGA' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod", + "content-length": "8539", + "content-security-policy": "default-src 'none';connect-src *;font-src *;img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-R3wDyUBtz9Nczg' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod", "content-type": "text/html; charset=utf-8", - "cross-origin-window-policy": "deny", - "date": "Sun, 07 Jan 2024 06:05:15 GMT", + "date": "Sun, 14 Jan 2024 05:57:09 GMT", + "referrer-policy": "strict-origin-when-cross-origin", "server": "Cowboy", - "set-cookie": "_transport_key=SFMyNTY.g3QAAAACbQAAAAtfY3NyZl90b2tlbm0AAAAYUVJlcG85dC1hZDZqbTh4TE5FbF9mdEpRbQAAAAZsb2NhbGVtAAAAAmZy.UY7QJmoMTvWmEVmtLPaiNcTG3JlKhJ-wxmSyOhDn0aI; path=/; expires=Mon, 22 Jan 2024 06:05:15 GMT; max-age=1296000; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_transport_key=SFMyNTY.g3QAAAACbQAAAAtfY3NyZl90b2tlbm0AAAAYM2M5NlZ4S2M4SklIaHRHcVptYkVxN3dnbQAAAAZsb2NhbGVtAAAAAmZy.V-01jJABNd24EaR66B5-LmU8y-4ozyAF-1bKR4IIrO8; path=/; expires=Mon, 29 Jan 2024 05:57:10 GMT; max-age=1296000; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000", "vary": "accept-encoding", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "F6f7gQKNtpPtgEEAQu2i", - "x-xss-protection": "1; mode=block" + "x-request-id": "F6ohIAX8buPJ4SIBPwmk" }, - "scan_id": 46229732, - "score": 80, - "start_time": "Sun, 07 Jan 2024 06:05:12 GMT", + "scan_id": 46456620, + "score": 70, + "start_time": "Sun, 14 Jan 2024 05:57:07 GMT", "state": "FINISHED", "status_code": 200, - "tests_failed": 1, - "tests_passed": 11, + "tests_failed": 2, + "tests_passed": 10, "tests_quantity": 12, "details": { "content-security-policy": { @@ -320636,26 +316357,26 @@ ], "img-src": [ "'self'", - "https://static.data.gouv.fr", - "https://*.dmcdn.net", "data:", + "https://api.mapbox.com", "https://www.data.gouv.fr", - "https://api.mapbox.com" + "https://*.dmcdn.net", + "https://static.data.gouv.fr" ], "report-uri": [ "https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod" ], "script-src": [ + "'self'", "'unsafe-inline'", "'unsafe-eval'", - "https://stats.data.gouv.fr/matomo.js", - "'self'" + "https://stats.data.gouv.fr/matomo.js" ], "style-src": [ - "'sha256-mmuum7+pin7rz79eumm0omufwjcx6nz97rdjoibtnag='", - "'nonce-oygonkb13ugbga'", + "'nonce-r3wdyubtz9nczg'", "'sha256-9uoguazm3j6w7+fh2wfvji8p7zxcclrw5tvuu3qkza0='", - "'self'" + "'self'", + "'sha256-mmuum7+pin7rz79eumm0omufwjcx6nz97rdjoibtnag='" ] }, "http": true, @@ -320698,7 +316419,7 @@ "data": { "_transport_key": { "domain": "transport.data.gouv.fr", - "expires": 1705903516, + "expires": 1706507831, "httponly": true, "max-age": null, "path": "/", @@ -320765,14 +316486,14 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": null, - "http": false, + "data": "strict-origin-when-cross-origin", + "http": true, "meta": false }, "pass": true, - "result": "referrer-policy-not-implemented", - "score_description": "Referrer-Policy header not implemented", - "score_modifier": 0 + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", @@ -320826,12 +316547,12 @@ "expectation": "x-xss-protection-1-mode-block", "name": "x-xss-protection", "output": { - "data": "1; mode=block" + "data": null }, - "pass": true, - "result": "x-xss-protection-enabled-mode-block", - "score_description": "X-XSS-Protection header set to \"1; mode=block\"", - "score_modifier": 0 + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 } } }, @@ -320855,8 +316576,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T11:11:42Z", - "next_check_at": "2024-01-07T11:16:40Z", + "last_check_at": "2024-01-14T10:50:17Z", + "next_check_at": "2024-01-14T10:55:15Z", "created_at": "2021-04-22T19:59:39Z", "mute_until": null, "favicon_url": "https://transport.data.gouv.fr/favicon.ico", @@ -320864,7 +316585,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T11:11:45Z", + "tested_at": "2024-01-14T10:45:20Z", "expires_at": "2024-02-13T17:46:58Z", "valid": true, "error": null @@ -320873,11 +316594,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 782, - "connection": 142, - "handshake": 148, - "response": 154, - "total": 1226 + "namelookup": 312, + "connection": 120, + "handshake": 128, + "response": 130, + "total": 690 } }, "uptimeGrade": "A", @@ -321350,7 +317071,7 @@ "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", @@ -321580,8 +317301,8 @@ "id": "HTTP_status_code", "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", - "severity": "WARN", - "finding": "Unexpected 429 Too Many Requests @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", @@ -321595,7 +317316,7 @@ "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1704625148" + "finding": "1705228589" }, { "id": "HSTS_time", @@ -321644,7 +317365,49 @@ "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "transport.data.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "transport.data.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "transport.data.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "transport.data.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "transport.data.gouv.fr/46.252.181.103", + "port": "443", + "severity": "OK", + "finding": "default-src 'none';connect-src *;font-src *;img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-XtLMRJGNj1BtOA' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod" + }, + { + "id": "Referrer-Policy", + "ip": "transport.data.gouv.fr/46.252.181.103", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", @@ -321727,10 +317490,10 @@ "id": "BREACH", "ip": "transport.data.gouv.fr/46.252.181.103", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", @@ -322507,7 +318270,7 @@ "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", @@ -322737,8 +318500,8 @@ "id": "HTTP_status_code", "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", - "severity": "WARN", - "finding": "Unexpected 429 Too Many Requests @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", @@ -322752,7 +318515,7 @@ "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1704625252" + "finding": "1705228691" }, { "id": "HSTS_time", @@ -322801,7 +318564,49 @@ "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "transport.data.gouv.fr/185.42.117.109", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "transport.data.gouv.fr/185.42.117.109", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "transport.data.gouv.fr/185.42.117.109", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "transport.data.gouv.fr/185.42.117.109", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "transport.data.gouv.fr/185.42.117.109", + "port": "443", + "severity": "OK", + "finding": "default-src 'none';connect-src *;font-src *;img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-eE0y3oKeBsMnDg' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod" + }, + { + "id": "Referrer-Policy", + "ip": "transport.data.gouv.fr/185.42.117.109", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", @@ -322884,10 +318689,10 @@ "id": "BREACH", "ip": "transport.data.gouv.fr/185.42.117.109", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", @@ -323312,70 +319117,70 @@ }, { "id": "service", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -323383,7 +319188,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -323391,7 +319196,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -323399,7 +319204,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -323407,7 +319212,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -323415,7 +319220,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -323423,553 +319228,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "04CA0DA5AF08AA3B71E52F89E8FBA36C25C6" }, { "id": "cert_serialNumberLen", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "301C947E91FEC516CA287ED5018790D764CF8FEB" }, { "id": "cert_fingerprintSHA256", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "cert", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "transport.data.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr" }, { "id": "cert_trust", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-13 17:46" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 17:46" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", - "severity": "WARN", - "finding": "Unexpected 429 Too Many Requests @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1704625350" + "finding": "1705228791" }, { "id": "HSTS_time", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Cowboy" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "transport.data.gouv.fr/46.252.181.104", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "transport.data.gouv.fr/46.252.181.104", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "transport.data.gouv.fr/46.252.181.104", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "transport.data.gouv.fr/46.252.181.104", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "transport.data.gouv.fr/46.252.181.104", + "port": "443", + "severity": "OK", + "finding": "default-src 'none';connect-src *;font-src *;img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-RCAP3Khxfx-Xtw' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod" + }, + { + "id": "Referrer-Policy", + "ip": "transport.data.gouv.fr/46.252.181.104", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -323977,7 +319824,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -323986,7 +319833,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -323995,7 +319842,7 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -324004,7 +319851,7 @@ }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -324013,7 +319860,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -324021,7 +319868,7 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -324030,7 +319877,7 @@ }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -324039,16 +319886,16 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -324057,14 +319904,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -324073,7 +319920,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -324082,7 +319929,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -324091,7 +319938,7 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -324100,7 +319947,7 @@ }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -324109,7 +319956,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -324118,7 +319965,7 @@ }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -324127,7 +319974,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -324136,7 +319983,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -324145,7 +319992,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -324154,385 +320001,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/185.42.117.108", + "ip": "transport.data.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -324540,7 +320387,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -324548,7 +320395,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -324556,7 +320403,7 @@ }, { "id": "cipherlist_LOW", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -324564,7 +320411,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -324572,7 +320419,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -324580,553 +320427,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "04CA0DA5AF08AA3B71E52F89E8FBA36C25C6" }, { "id": "cert_serialNumberLen", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "301C947E91FEC516CA287ED5018790D764CF8FEB" }, { "id": "cert_fingerprintSHA256", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "cert", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE+jCCA+KgAwIBAgISBMoNpa8Iqjtx5S+J6PujbCXGMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxNzQ2NTlaFw0yNDAyMTMxNzQ2NThaMCExHzAdBgNVBAMTFnRyYW5zcG9ydC5kYXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuxBSmkltr6O5WfLtxCAs/qB6H9ZB1XDnCIaYapbsAUvvSW/hMzTiCkNYgODrN9WUst1TuxiMnopI1enVGEJIbRLC0tA3zEkUFJvAcXQ//+X8JH/dlnOm706Zd+d8dbCE9kTNBXELCgxBl0BR8SfoSaYH46o45OLJvWknvcBUjmY0J30UG+IECXxTI65H7wpUpF+XYORENnk+416jUlh3qWkcdmjs3q0Ogs5bZDNarA9iPbM219GnOxR3vHeyAwpei+9xnJiH9v2WY/A99h4kQ89wUrvul5WovkO2/884UK8ixTbxPgChw3dHuowTxUQH8iSRw+cGj9FzBr+KZF1nBAgMBAAGjggIZMIICFTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHEQEuWYIm6Rk8ZtZ7OWhTc13woPMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCEGA1UdEQQaMBiCFnRyYW5zcG9ydC5kYXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYvUTtyTAAAEAwBHMEUCIQDSH0mrKHfusGKcDD/23EVHTbTsCo7c3HB+4FX6rlU+VAIgDKGgkxNXk6fF+inInUa+GOCtBgWCzcbIQo0WG8enkJUAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYvUTtzJAAAEAwBIMEYCIQDd+P48/ZjRN7Q9CnlFSATKV0mGU0mcRtq96d1SdmZ+3wIhAPPZ1b0rSGQokb6S1mhIlVFTnY42gmACNeHjVvFAyapIMA0GCSqGSIb3DQEBCwUAA4IBAQA5VsPoT55xo5gqfj2mm24wgXKAJR+hs+KTzasR4xvUVdg56dLa5VaSaDVjoGwwR5cqpIXuAlEQKIs7y5ZAIoYVKRyLQ1en/Pct/4+irOYriFsS947mKbixh8jFsmQ7tksGU0orRnNeR/czA1FoRU+gkC2WBNfMgBcZZSkL/1iOIYelH7VbzzWL1qvaxlo5XX3xNQwVkatWq2Nnwd9ZxgvquVP2hnLAQkohQ3br8zB0EWpi4tKSe2XFoFdm9vTJ0bC2m503Bfs8KU0gUXo/ZGzNfFsg5r9epFYW5YDO/Uku1T1bD6VgLvBXyHlCLschI2KI4DxugMzdzNzmiirz4bXG\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "transport.data.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr" }, { "id": "cert_trust", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "cert_notAfter", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-13 17:46" }, { "id": "cert_extlifeSpan", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E82383E0C7B46BA249C461D07B48DC0085646447ACC185C0727F7A8CED802196" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 17:46" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 17:46" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "transport.data.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", - "severity": "WARN", - "finding": "Unexpected 429 Too Many Requests @ '/'" + "severity": "INFO", + "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1704625448" + "finding": "1705228892" }, { "id": "HSTS_time", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Cowboy" }, { "id": "banner_application", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "transport.data.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "transport.data.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "transport.data.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "transport.data.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "transport.data.gouv.fr/185.42.117.108", + "port": "443", + "severity": "OK", + "finding": "default-src 'none';connect-src *;font-src *;img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-3ioBarAp6frYiQ' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod" + }, + { + "id": "Referrer-Policy", + "ip": "transport.data.gouv.fr/185.42.117.108", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -325134,7 +321023,7 @@ }, { "id": "heartbleed", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -325143,7 +321032,7 @@ }, { "id": "CCS", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -325152,7 +321041,7 @@ }, { "id": "ticketbleed", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -325161,7 +321050,7 @@ }, { "id": "ROBOT", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -325170,7 +321059,7 @@ }, { "id": "secure_renego", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -325178,7 +321067,7 @@ }, { "id": "secure_client_renego", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -325187,7 +321076,7 @@ }, { "id": "CRIME_TLS", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -325196,16 +321085,16 @@ }, { "id": "BREACH", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -325214,14 +321103,14 @@ }, { "id": "fallback_SCSV", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -325230,7 +321119,7 @@ }, { "id": "FREAK", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -325239,7 +321128,7 @@ }, { "id": "DROWN", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -325248,7 +321137,7 @@ }, { "id": "DROWN_hint", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -325257,7 +321146,7 @@ }, { "id": "LOGJAM", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -325266,7 +321155,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -325275,7 +321164,7 @@ }, { "id": "BEAST", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -325284,7 +321173,7 @@ }, { "id": "LUCKY13", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -325293,7 +321182,7 @@ }, { "id": "winshock", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -325302,7 +321191,7 @@ }, { "id": "RC4", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -325311,343 +321200,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "transport.data.gouv.fr/46.252.181.104", + "ip": "transport.data.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "403" + "finding": "409" } ], "thirdparties": { "trackers": [], - "cookies": [], + "cookies": [ + { + "name": "_pk_id.58.964a", + "value": "218a6ce48c438ed0.1705228497.", + "domain": ".transport.data.gouv.fr", + "path": "/", + "expires": 1739183697, + "size": 42, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_ses.58.964a", + "value": "1", + "domain": ".transport.data.gouv.fr", + "path": "/", + "expires": 1705230297, + "size": 16, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_transport_key", + "value": "SFMyNTY.g3QAAAACbQAAAAtfY3NyZl90b2tlbm0AAAAYcExNZjMybDhmcThXWkVMM1RFeEMzRS1FbQAAAAZsb2NhbGVtAAAAAmVu.MnlKMnN71PN7JzdiUNC61VuJSfrklXe8ROk_Gc8G1V0", + "domain": "transport.data.gouv.fr", + "path": "/", + "expires": 1706524496.074177, + "size": 158, + "httpOnly": true, + "secure": true, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + } + ], "headers": { - "sozu-id": "01HKHS4V5CD4Y214XAFNB5E483", + "sozu-id": "01HM3RKTYPEBB0Z7KT9Q56FEYH", "cache-control": "max-age=0, private, must-revalidate", - "content-length": "0", - "date": "Sun, 07 Jan 2024 10:57:52 GMT", + "content-encoding": "gzip", + "content-length": "8134", + "content-security-policy": "default-src 'none';connect-src *;font-src *;img-src 'self' data: https://api.mapbox.com https://static.data.gouv.fr https://www.data.gouv.fr https://*.dmcdn.net;script-src 'self' 'unsafe-eval' 'unsafe-inline' https://stats.data.gouv.fr/matomo.js;frame-src https://www.dailymotion.com/;style-src 'self' 'nonce-nEDQ2QWymDjNmA' 'sha256-9uoGUaZm3j6W7+Fh2wfvjI8P7zXcclRw5tVUu3qKZa0=' 'sha256-MmUum7+PiN7Rz79EUMm0OmUFWjCx6NZ97rdjoIbTnAg=';report-uri https://o1140487.ingest.sentry.io/api/6197733/security/?sentry_key=ee95fa9a50c747ec93b1467ed9377251&sentry_environment=prod", + "content-type": "text/html; charset=utf-8", + "date": "Sun, 14 Jan 2024 10:34:55 GMT", + "referrer-policy": "strict-origin-when-cross-origin", "server": "Cowboy", + "set-cookie": "_transport_key=SFMyNTY.g3QAAAACbQAAAAtfY3NyZl90b2tlbm0AAAAYcExNZjMybDhmcThXWkVMM1RFeEMzRS1FbQAAAAZsb2NhbGVtAAAAAmVu.MnlKMnN71PN7JzdiUNC61VuJSfrklXe8ROk_Gc8G1V0; path=/; expires=Mon, 29 Jan 2024 10:34:55 GMT; max-age=1296000; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000", - "x-request-id": "F6gLeQwNLeWjamQAXATE" + "vary": "accept-encoding", + "x-content-type-options": "nosniff", + "x-download-options": "noopen", + "x-frame-options": "SAMEORIGIN", + "x-permitted-cross-domain-policies": "none", + "x-request-id": "F6owSExanSPIcLYBnkND" }, "endpoints": [ { "hostname": "transport.data.gouv.fr", - "ip": "46.252.181.103", + "ip": "185.42.117.109", "geoip": { "continent": { "code": "EU", @@ -325899,7 +321844,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 10:55:46", + "@generated": "Sun, 14 Jan 2024 10:34:11", "site": [ { "@name": "https://transport.data.gouv.fr", @@ -325907,6 +321852,13 @@ "@port": "443", "@ssl": "true", "alerts": [ + { + "name": "PII Disclosure", + "riskcode": "3", + "confidence": "3", + "riskdesc": "High (High)", + "desc": "

The response contains Personally Identifiable Information, such as CC number, SSN and similar sensitive data.

" + }, { "name": "Absence of Anti-CSRF Tokens", "riskcode": "2", @@ -325914,6 +321866,13 @@ "riskdesc": "Medium (Low)", "desc": "

No Anti-CSRF tokens were found in a HTML submission form.

A cross-site request forgery is an attack that involves forcing a victim to send an HTTP request to a target destination without their knowledge or intent in order to perform an action as the victim. The underlying cause is application functionality using predictable URL/form actions in a repeatable way. The nature of the attack is that CSRF exploits the trust that a web site has for a user. By contrast, cross-site scripting (XSS) exploits the trust that a user has for a web site. Like XSS, CSRF attacks are not necessarily cross-site, but they can be. Cross-site request forgery is also known as CSRF, XSRF, one-click attack, session riding, confused deputy, and sea surf.

CSRF attacks are effective in a number of situations, including:

* The victim has an active session on the target site.

* The victim is authenticated via HTTP auth on the target site.

* The victim is on the same local network as the target site.

CSRF has primarily been used to perform an action against a target site using the victim's privileges, but recent techniques have been discovered to disclose information by gaining access to the response. The risk of information disclosure is dramatically increased when the target site is vulnerable to XSS, because XSS can be used as a platform for CSRF, allowing the attack to operate within the bounds of the same-origin policy.

" }, + { + "name": "Application Error Disclosure", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "

This page contains an error/warning message that may disclose sensitive information like the location of the file that produced the unhandled exception. This information can be used to launch further attacks against the web application. The alert could be a false positive if the error message is found inside a documentation page.

" + }, { "name": "CSP: Wildcard Directive", "riskcode": "2", @@ -325984,6 +321943,13 @@ "riskdesc": "Low (Medium)", "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, + { + "name": "Strict-Transport-Security Header Not Set", + "riskcode": "1", + "confidence": "3", + "riskdesc": "Low (High)", + "desc": "

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.

" + }, { "name": "Timestamp Disclosure - Unix", "riskcode": "1", @@ -326124,7 +322090,43 @@ "extracted-results": [ "\"v=DMARC1;p=quarantine;\"" ], - "timestamp": "2024-01-07T11:08:20.102627228Z", + "timestamp": "2024-01-14T10:45:47.270473054Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "transport.data.gouv.fr.", + "matched-at": "transport.data.gouv.fr", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." + ], + "timestamp": "2024-01-14T10:45:47.404865516Z", "matcher-status": true }, { @@ -326159,7 +322161,7 @@ "type": "dns", "host": "transport.data.gouv.fr.", "matched-at": "transport.data.gouv.fr", - "timestamp": "2024-01-07T11:08:20.217097337Z", + "timestamp": "2024-01-14T10:45:47.58340848Z", "matcher-status": true }, { @@ -326198,7 +322200,7 @@ "\"v=spf1 include:spf.mailjet.com include:_spf.alwaysdata.com include:_spf.scw-tem.cloud include:servers.mcsv.net -all\"", "\"google-site-verification=2ynzGMtND4Fvl3yI4AaWnX7Okiin_uGWxxMOW3n-xw8\"" ], - "timestamp": "2024-01-07T11:08:20.384607022Z", + "timestamp": "2024-01-14T10:45:47.696063346Z", "matcher-status": true }, { @@ -326238,116 +322240,72 @@ "20 mx2.alwaysdata.com.", "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T11:08:20.976710168Z", + "timestamp": "2024-01-14T10:45:47.971496721Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "http/misconfiguration/httponly-cookie-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/httponly-cookie-detect", + "template-id": "httponly-cookie-detect", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/httponly-cookie-detect.yaml", "info": { - "name": "NS Record Detection", + "name": "HttpOnly Cookie - Detect", "author": [ - "pdteam" + "mr. bobo hp" ], "tags": [ - "dns", - "ns" + "misconfig", + "http", + "cookie", + "generic" + ], + "description": "Checks whether cookies in the HTTP response contain the HttpOnly attribute. If the HttpOnly flag is set, it means that the cookie is HTTP-only\n", + "reference": [ + "https://stackoverflow.com/questions/4316539/how-do-i-test-httponly-cookie-flag" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 1, + "verified": true }, "classification": { "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "transport.data.gouv.fr.", - "matched-at": "transport.data.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2024-01-07T11:08:20.977480941Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 + "cwe-id": null, + "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204058997Z", + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:46:05.941031822Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", "info": { - "name": "HTTP Missing Security Headers", + "name": "Wappalyzer Technology Detection", "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" + "hakluke" ], "tags": [ - "misconfig", - "headers", - "generic" + "tech" ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "mailchimp", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204111715Z", + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:46:43.024604124Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -326379,12 +322337,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204134508Z", + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:46:56.243975549Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -326416,12 +322374,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204154996Z", + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:46:56.244015653Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -326453,12 +322411,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204174753Z", + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:46:56.244034659Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -326490,12 +322448,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204191073Z", + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:46:56.244048244Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, @@ -326527,152 +322485,113 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://transport.data.gouv.fr", "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204207153Z", + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:46:56.244066007Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", "matcher-status": true }, { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "template": "http/miscellaneous/security-txt.yaml", + "template-url": "https://templates.nuclei.sh/public/security-txt", + "template-id": "security-txt", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/security-txt.yaml", "info": { - "name": "HTTP Missing Security Headers", + "name": "security.txt File", "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" + "bad5ect0r", + "noraj" ], "tags": [ - "misconfig", - "headers", + "misc", "generic" ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://transport.data.gouv.fr", - "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204268968Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" + "description": "File similar to robots.txt but intended to be read by humans wishing to contact a website’s owner about security issues. Often defines a security policy and contact details.\n", + "reference": [ + "https://securitytxt.org/", + "https://community.turgensec.com/security-txt-progress-in-ethical-security-research/" ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 2, + "shodan-query": "http.securitytxt:contact http.status:200", + "verified": true } }, - "matcher-name": "clear-site-data", "type": "http", "host": "https://transport.data.gouv.fr", - "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204289376Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", + "matched-at": "https://transport.data.gouv.fr/.well-known/security.txt", + "extracted-results": [ + " mailto:contact@transport.data.gouv.fr" + ], + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:47:12.376897054Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr/.well-known/security.txt'", "matcher-status": true }, { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "HTTP Missing Security Headers", + "name": "TLS Version - Detect", "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" + "pdteam", + "pussycat0x" ], "tags": [ - "misconfig", - "headers", - "generic" + "ssl", + "tls" ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://transport.data.gouv.fr", - "matched-at": "https://transport.data.gouv.fr", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:30.204309063Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr'", + "type": "ssl", + "host": "transport.data.gouv.fr", + "matched-at": "transport.data.gouv.fr:443", + "extracted-results": [ + "tls12" + ], + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:49:02.763157071Z", "matcher-status": true }, { - "template": "http/miscellaneous/robots-txt-endpoint.yaml", - "template-url": "https://templates.nuclei.sh/public/robots-txt-endpoint", - "template-id": "robots-txt-endpoint", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/robots-txt-endpoint.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "robots.txt endpoint prober", + "name": "TLS Version - Detect", "author": [ - "caspergn", - "pdteam" + "pdteam", + "pussycat0x" ], "tags": [ - "misc", - "generic" + "ssl", + "tls" ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 2 + "max-request": 4 } }, - "type": "http", - "host": "https://transport.data.gouv.fr", - "matched-at": "https://transport.data.gouv.fr/robots.txt", - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:09:46.515873559Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://transport.data.gouv.fr/robots.txt'", + "type": "ssl", + "host": "transport.data.gouv.fr", + "matched-at": "transport.data.gouv.fr:443", + "extracted-results": [ + "tls13" + ], + "ip": "185.42.117.109", + "timestamp": "2024-01-14T10:49:03.074539816Z", "matcher-status": true }, { @@ -326701,8 +322620,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "46.252.181.103", - "timestamp": "2024-01-07T11:11:55.079914719Z", + "ip": "46.252.181.104", + "timestamp": "2024-01-14T10:49:08.926501394Z", "matcher-status": true }, { @@ -326731,74 +322650,166 @@ "extracted-results": [ "transport.data.gouv.fr" ], - "ip": "46.252.181.103", - "timestamp": "2024-01-07T11:11:55.080024733Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "transport.data.gouv.fr", - "matched-at": "transport.data.gouv.fr:443", - "extracted-results": [ - "tls12" - ], "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:12:04.431855566Z", + "timestamp": "2024-01-14T10:49:08.926637818Z", "matcher-status": true - }, + } + ], + "lhr": [ { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 + "requestedUrl": "https://transport.data.gouv.fr/", + "finalUrl": "https://transport.data.gouv.fr/", + "fetchTime": "2024-01-14T10:34:26.049Z", + "runWarnings": [], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.30291061401367186 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.93 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.92 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.2 } }, - "type": "ssl", - "host": "transport.data.gouv.fr", - "matched-at": "transport.data.gouv.fr:443", - "extracted-results": [ - "tls13" - ], - "ip": "46.252.181.104", - "timestamp": "2024-01-07T11:12:04.741877693Z", - "matcher-status": true + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 3626, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 1120, + "firstMeaningfulPaint": 3626, + "largestContentfulPaint": 5814, + "interactive": 3626, + "speedIndex": 2186, + "totalBlockingTime": 130, + "maxPotentialFID": 180, + "cumulativeLayoutShift": 0.004172018051147461, + "cumulativeLayoutShiftMainFrame": 0.004172018051147461, + "totalCumulativeLayoutShift": 0.004416999604966905, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 277989730, + "observedNavigationStart": 0, + "observedNavigationStartTs": 277989730, + "observedFirstPaint": 826, + "observedFirstPaintTs": 278815368, + "observedFirstContentfulPaint": 826, + "observedFirstContentfulPaintTs": 278815368, + "observedFirstContentfulPaintAllFrames": 826, + "observedFirstContentfulPaintAllFramesTs": 278815368, + "observedFirstMeaningfulPaint": 1551, + "observedFirstMeaningfulPaintTs": 279540822, + "observedLargestContentfulPaint": 1712, + "observedLargestContentfulPaintTs": 279702196, + "observedLargestContentfulPaintAllFrames": 1712, + "observedLargestContentfulPaintAllFramesTs": 279702196, + "observedTraceEnd": 5848, + "observedTraceEndTs": 283837468, + "observedLoad": 3540, + "observedLoadTs": 281530182, + "observedDomContentLoaded": 1409, + "observedDomContentLoadedTs": 279398672, + "observedCumulativeLayoutShift": 0.004172018051147461, + "observedCumulativeLayoutShiftMainFrame": 0.004172018051147461, + "observedTotalCumulativeLayoutShift": 0.004416999604966905, + "observedFirstVisualChange": 832, + "observedFirstVisualChangeTs": 278821730, + "observedLastVisualChange": 3832, + "observedLastVisualChangeTs": 281821730, + "observedSpeedIndex": 1220, + "observedSpeedIndexTs": 279209665 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 93, + "numScripts": 2, + "numStylesheets": 1, + "numFonts": 4, + "numTasks": 1582, + "numTasksOver10ms": 4, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 115.786, + "throughput": 17411127.140436213, + "maxRtt": 150.182, + "maxServerLatency": 35.158000000000015, + "totalByteWeight": 2081892, + "totalTaskTime": 290.33599999999524, + "mainDocumentTransferSize": 9931 + } + ] + } + } + } } ], - "lhr": null, "screenshot": true, "stats": { "grade": "F", @@ -326822,11 +322833,12 @@ "declaration-rgpd": [ { "slug": "ml", - "mention": null, - "maxScore": 0, - "score": 0, + "mention": "Mentions légales", + "maxScore": 4, + "score": 4, "missingWords": [], - "missingTrackers": [] + "missingTrackers": [], + "declarationUrl": "https://transport.data.gouv.fr/legal" }, { "slug": "pc", @@ -326896,7 +322908,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "B+", + "httpGrade": "B", "apdex": 1, "apdexGrade": "A", "uptime": 100, @@ -326904,18 +322916,28 @@ "nmapGrade": "B", "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, + "testsslExpireSoon": true, "testsslExpireDate": "2024-02-13T17:46:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, + "cookiesGrade": "C", + "cookiesCount": 3, "trackersGrade": "A", "trackersCount": 0, + "lighthouse_performance": 0.30291061401367186, + "lighthouse_performanceGrade": "E", + "lighthouse_accessibility": 0.93, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.92, + "lighthouse_best-practicesGrade": "A", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.2, + "lighthouse_pwaGrade": "E", "statsGrade": "F", "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "C", - "declaration-rgpd-ml": "F", + "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "F" } }, @@ -326926,7 +322948,7 @@ "http": { "url": "https://webinaire.numerique.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:48:30 GMT", + "end_time": "Sun, 14 Jan 2024 01:44:06 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -326934,7 +322956,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 01:48:29 GMT", + "Date": "Sun, 14 Jan 2024 01:44:04 GMT", "Server": "nginx", "Strict-Transport-Security": "max-age=15552000;preload", "Transfer-Encoding": "chunked", @@ -326944,9 +322966,9 @@ "X-Robots-Tag": "none", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46226513, + "scan_id": 46435180, "score": 0, - "start_time": "Sun, 07 Jan 2024 01:46:18 GMT", + "start_time": "Sun, 14 Jan 2024 01:44:01 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -327140,8 +323162,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T11:07:43Z", - "next_check_at": "2024-01-07T11:12:43Z", + "last_check_at": "2024-01-14T10:41:40Z", + "next_check_at": "2024-01-14T10:46:38Z", "created_at": "2022-08-21T11:40:09Z", "mute_until": null, "favicon_url": "https://webinaire.numerique.gouv.fr/static/images/favicon.png", @@ -327149,7 +323171,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T10:28:02Z", + "tested_at": "2024-01-14T10:01:47Z", "expires_at": "2024-11-22T22:59:59Z", "valid": false, "error": "error code 20: unable to get local issuer certificate" @@ -327157,12 +323179,12 @@ "metrics": { "apdex": 1, "timings": { - "redirect": 323, + "redirect": 456, "namelookup": 0, - "connection": 103, - "handshake": 109, - "response": 112, - "total": 646 + "connection": 144, + "handshake": 150, + "response": 155, + "total": 905 } }, "uptimeGrade": "A", @@ -327182,51 +323204,51 @@ "vulnerabilities": [ { "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", - "is_exploit": "true", + "cvss": "5.8", "type": "exploitpack", - "cvss": "5.8" + "is_exploit": "true" }, { "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", - "is_exploit": "true", + "cvss": "5.8", "type": "exploitpack", - "cvss": "5.8" + "is_exploit": "true" }, { "id": "EDB-ID:46516", - "is_exploit": "true", + "cvss": "5.8", "type": "exploitdb", - "cvss": "5.8" + "is_exploit": "true" }, { "id": "EDB-ID:46193", - "is_exploit": "true", + "cvss": "5.8", "type": "exploitdb", - "cvss": "5.8" + "is_exploit": "true" }, { "id": "CVE-2019-6111", - "is_exploit": "false", + "cvss": "5.8", "type": "cve", - "cvss": "5.8" + "is_exploit": "false" }, { "id": "1337DAY-ID-32328", - "is_exploit": "true", + "cvss": "5.8", "type": "zdt", - "cvss": "5.8" + "is_exploit": "true" }, { "id": "1337DAY-ID-32009", - "is_exploit": "true", + "cvss": "5.8", "type": "zdt", - "cvss": "5.8" + "is_exploit": "true" }, { "id": "PACKETSTORM:151227", - "is_exploit": "true", + "cvss": "0.0", "type": "packetstorm", - "cvss": "0.0" + "is_exploit": "true" } ] } @@ -327635,7 +323657,7 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "OK", - "finding": "320 >= 60 days" + "finding": "313 >= 60 days" }, { "id": "cert_notBefore", @@ -327754,7 +323776,7 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "1704625653" + "finding": "1705228743" }, { "id": "HSTS_time", @@ -328345,7 +324367,7 @@ "ip": "webinaire.numerique.gouv.fr/51.15.207.28", "port": "443", "severity": "INFO", - "finding": "56" + "finding": "68" } ], "thirdparties": { @@ -328353,7 +324375,7 @@ "cookies": [ { "name": "session", - "value": "eyJjdXJyZW50X3Byb3ZpZGVyIjoiZGVmYXVsdCJ9.ZZqFuA.5I3U9DlgXnl3GDJgrRPhjNckPkA", + "value": "eyJjdXJyZW50X3Byb3ZpZGVyIjoiZGVmYXVsdCJ9.ZaO5fg.uIHDeBNik2V8aPiCWsRyo3aQGKg", "domain": "webinaire.numerique.gouv.fr", "path": "/", "expires": -1, @@ -328370,7 +324392,7 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 11:06:33 GMT", + "date": "Sun, 14 Jan 2024 10:37:50 GMT", "server": "nginx", "strict-transport-security": "max-age=15552000;preload", "transfer-encoding": "chunked", @@ -328493,7 +324515,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 11:05:51", + "@generated": "Sun, 14 Jan 2024 10:37:09", "site": [ { "@name": "https://webinaire.numerique.gouv.fr", @@ -328661,23 +324683,22 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -328693,30 +324714,27 @@ "type": "dns", "host": "webinaire.numerique.gouv.fr.", "matched-at": "webinaire.numerique.gouv.fr", - "extracted-results": [ - "20 securemail2.akio.com.", - "10 securemail1.akio.com." - ], - "timestamp": "2024-01-07T11:08:35.693058512Z", + "timestamp": "2024-01-14T10:40:08.311121022Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -328732,7 +324750,11 @@ "type": "dns", "host": "webinaire.numerique.gouv.fr.", "matched-at": "webinaire.numerique.gouv.fr", - "timestamp": "2024-01-07T11:08:35.830650952Z", + "extracted-results": [ + "10 securemail1.akio.com.", + "20 securemail2.akio.com." + ], + "timestamp": "2024-01-14T10:40:09.332562961Z", "matcher-status": true }, { @@ -328770,7 +324792,7 @@ "extracted-results": [ "\"v=spf1 include:spf.akio.cloud ip4:193.51.147.16/28 ~all\"" ], - "timestamp": "2024-01-07T11:08:36.576839346Z", + "timestamp": "2024-01-14T10:40:09.559674063Z", "matcher-status": true }, { @@ -328796,10 +324818,10 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr", "extracted-results": [ - "GET, HEAD, OPTIONS" + "GET, OPTIONS, HEAD" ], "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:08:42.557458777Z", + "timestamp": "2024-01-14T10:40:16.696424306Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328838,7 +324860,7 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr", "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:08:47.11511589Z", + "timestamp": "2024-01-14T10:40:22.458642851Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328879,7 +324901,7 @@ "1; mode=block" ], "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:08:47.116190013Z", + "timestamp": "2024-01-14T10:40:22.459596395Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328906,7 +324928,7 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:10.44687806Z", + "timestamp": "2024-01-14T10:40:49.910515729Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328933,7 +324955,229 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr", "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:10.486990456Z", + "timestamp": "2024-01-14T10:40:49.952062613Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://webinaire.numerique.gouv.fr", + "matched-at": "https://webinaire.numerique.gouv.fr/home", + "ip": "51.15.207.28", + "timestamp": "2024-01-14T10:41:00.846586612Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://webinaire.numerique.gouv.fr", + "matched-at": "https://webinaire.numerique.gouv.fr/home", + "ip": "51.15.207.28", + "timestamp": "2024-01-14T10:41:00.846634492Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://webinaire.numerique.gouv.fr", + "matched-at": "https://webinaire.numerique.gouv.fr/home", + "ip": "51.15.207.28", + "timestamp": "2024-01-14T10:41:00.846675981Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://webinaire.numerique.gouv.fr", + "matched-at": "https://webinaire.numerique.gouv.fr/home", + "ip": "51.15.207.28", + "timestamp": "2024-01-14T10:41:00.846694866Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://webinaire.numerique.gouv.fr", + "matched-at": "https://webinaire.numerique.gouv.fr/home", + "ip": "51.15.207.28", + "timestamp": "2024-01-14T10:41:00.846711537Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://webinaire.numerique.gouv.fr", + "matched-at": "https://webinaire.numerique.gouv.fr/home", + "ip": "51.15.207.28", + "timestamp": "2024-01-14T10:41:00.846728088Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -328970,7 +325214,7 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:19.525443409Z", + "timestamp": "2024-01-14T10:41:00.846743377Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -329007,229 +325251,7 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/home", "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:19.525493132Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://webinaire.numerique.gouv.fr", - "matched-at": "https://webinaire.numerique.gouv.fr/home", - "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:19.525510043Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://webinaire.numerique.gouv.fr", - "matched-at": "https://webinaire.numerique.gouv.fr/home", - "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:19.525522807Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://webinaire.numerique.gouv.fr", - "matched-at": "https://webinaire.numerique.gouv.fr/home", - "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:19.525535642Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://webinaire.numerique.gouv.fr", - "matched-at": "https://webinaire.numerique.gouv.fr/home", - "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:19.525548385Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://webinaire.numerique.gouv.fr", - "matched-at": "https://webinaire.numerique.gouv.fr/home", - "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:19.5255617Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://webinaire.numerique.gouv.fr", - "matched-at": "https://webinaire.numerique.gouv.fr/home", - "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:19.525575015Z", + "timestamp": "2024-01-14T10:41:00.846758937Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr'", "matcher-status": true }, @@ -329266,7 +325288,7 @@ "https://rizomo.numerique.gouv.fr/scripts/widget" ], "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:34.649958592Z", + "timestamp": "2024-01-14T10:41:19.537771161Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: webinaire.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr/'", "matcher-status": true }, @@ -329306,7 +325328,7 @@ "host": "https://webinaire.numerique.gouv.fr", "matched-at": "https://webinaire.numerique.gouv.fr/", "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:09:41.397406652Z", + "timestamp": "2024-01-14T10:41:27.681288281Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: webinaire.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://webinaire.numerique.gouv.fr/'", "matcher-status": true }, @@ -329356,7 +325378,38 @@ "SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2" ], "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:10:00.919132082Z", + "timestamp": "2024-01-14T10:41:51.328908354Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "webinaire.numerique.gouv.fr", + "matched-at": "webinaire.numerique.gouv.fr:443", + "extracted-results": [ + "tls12" + ], + "ip": "51.15.207.28", + "timestamp": "2024-01-14T10:41:56.793999717Z", "matcher-status": true }, { @@ -329386,7 +325439,7 @@ "DHIMYOTIS" ], "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:10:05.687448747Z", + "timestamp": "2024-01-14T10:41:57.167344074Z", "matcher-status": true }, { @@ -329417,7 +325470,7 @@ "webinaire.numerique.gouv.fr" ], "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:10:05.687569744Z", + "timestamp": "2024-01-14T10:41:57.167479157Z", "matcher-status": true }, { @@ -329452,38 +325505,7 @@ " SAN: [*.webinaire.numerique.gouv.fr webinaire.numerique.gouv.fr]" ], "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:10:05.687613466Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "webinaire.numerique.gouv.fr", - "matched-at": "webinaire.numerique.gouv.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:10:05.719366553Z", + "timestamp": "2024-01-14T10:41:57.167527348Z", "matcher-status": true }, { @@ -329514,7 +325536,7 @@ "tls13" ], "ip": "51.15.207.28", - "timestamp": "2024-01-07T11:10:06.590871553Z", + "timestamp": "2024-01-14T10:41:57.857907079Z", "matcher-status": true } ], @@ -329522,7 +325544,7 @@ { "requestedUrl": "https://webinaire.numerique.gouv.fr/", "finalUrl": "https://webinaire.numerique.gouv.fr/home", - "fetchTime": "2024-01-07T11:06:05.147Z", + "fetchTime": "2024-01-14T10:37:23.828Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://webinaire.numerique.gouv.fr/) was redirected to https://webinaire.numerique.gouv.fr/home. Try testing the second URL directly." ], @@ -329535,7 +325557,7 @@ "snapshot" ], "id": "performance", - "score": 0.9361339569091797 + "score": 0.9361324310302734 }, "accessibility": { "title": "Accessibility", @@ -329587,53 +325609,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6738, + "numericValue": 6669, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 6738, - "firstMeaningfulPaint": 6738, - "largestContentfulPaint": 6813, - "interactive": 6738, - "speedIndex": 6738, + "firstContentfulPaint": 6669, + "firstMeaningfulPaint": 6669, + "largestContentfulPaint": 6744, + "interactive": 6669, + "speedIndex": 6669, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.011818613688151042, "cumulativeLayoutShiftMainFrame": 0.011818613688151042, "totalCumulativeLayoutShift": 0.011818613688151042, "observedTimeOrigin": 0, - "observedTimeOriginTs": 232257760, + "observedTimeOriginTs": 222080133, "observedNavigationStart": 0, - "observedNavigationStartTs": 232257760, - "observedFirstPaint": 1175, - "observedFirstPaintTs": 233432768, - "observedFirstContentfulPaint": 1175, - "observedFirstContentfulPaintTs": 233432768, - "observedFirstContentfulPaintAllFrames": 1175, - "observedFirstContentfulPaintAllFramesTs": 233432768, - "observedFirstMeaningfulPaint": 1175, - "observedFirstMeaningfulPaintTs": 233432768, - "observedLargestContentfulPaint": 1175, - "observedLargestContentfulPaintTs": 233432768, - "observedLargestContentfulPaintAllFrames": 1175, - "observedLargestContentfulPaintAllFramesTs": 233432768, - "observedTraceEnd": 3900, - "observedTraceEndTs": 236157621, - "observedLoad": 1591, - "observedLoadTs": 233848853, - "observedDomContentLoaded": 1163, - "observedDomContentLoadedTs": 233420611, + "observedNavigationStartTs": 222080133, + "observedFirstPaint": 1420, + "observedFirstPaintTs": 223500113, + "observedFirstContentfulPaint": 1420, + "observedFirstContentfulPaintTs": 223500113, + "observedFirstContentfulPaintAllFrames": 1420, + "observedFirstContentfulPaintAllFramesTs": 223500113, + "observedFirstMeaningfulPaint": 1420, + "observedFirstMeaningfulPaintTs": 223500113, + "observedLargestContentfulPaint": 1420, + "observedLargestContentfulPaintTs": 223500113, + "observedLargestContentfulPaintAllFrames": 1420, + "observedLargestContentfulPaintAllFramesTs": 223500113, + "observedTraceEnd": 4151, + "observedTraceEndTs": 226231257, + "observedLoad": 1844, + "observedLoadTs": 223923805, + "observedDomContentLoaded": 1417, + "observedDomContentLoadedTs": 223497210, "observedCumulativeLayoutShift": 0.011818613688151042, "observedCumulativeLayoutShiftMainFrame": 0.011818613688151042, "observedTotalCumulativeLayoutShift": 0.011818613688151042, - "observedFirstVisualChange": 1166, - "observedFirstVisualChangeTs": 233423760, - "observedLastVisualChange": 1782, - "observedLastVisualChangeTs": 234039760, - "observedSpeedIndex": 1181, - "observedSpeedIndexTs": 233438829 + "observedFirstVisualChange": 1427, + "observedFirstVisualChangeTs": 223507133, + "observedLastVisualChange": 2044, + "observedLastVisualChangeTs": 224124133, + "observedSpeedIndex": 1447, + "observedSpeedIndexTs": 223527392 }, { "lcpInvalidated": false @@ -329655,19 +325677,19 @@ "numScripts": 5, "numStylesheets": 6, "numFonts": 4, - "numTasks": 703, - "numTasksOver10ms": 2, + "numTasks": 698, + "numTasksOver10ms": 1, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.476, - "throughput": 19111708.783536453, - "maxRtt": 81, - "maxServerLatency": 9.762999999999991, - "totalByteWeight": 1383418, - "totalTaskTime": 164.1759999999994, - "mainDocumentTransferSize": 2899 + "rtt": 100.187, + "throughput": 17426110.558791317, + "maxRtt": 101.08099999999999, + "maxServerLatency": 10.575000000000003, + "totalByteWeight": 1383426, + "totalTaskTime": 164.67199999999943, + "mainDocumentTransferSize": 2898 } ] } @@ -329738,7 +325760,7 @@ "cookiesCount": 1, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.9361339569091797, + "lighthouse_performance": 0.9361324310302734, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.8, "lighthouse_accessibilityGrade": "B", @@ -329830,7 +325852,7 @@ "type": "dns", "host": "www.peps.beta.gouv.fr.", "matched-at": "www.peps.beta.gouv.fr", - "timestamp": "2024-01-07T11:21:53.962731533Z", + "timestamp": "2024-01-14T10:56:12.779833346Z", "matcher-status": true } ], @@ -329945,7 +325967,7 @@ "http": { "url": "https://www.rdv-solidarites.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:54:25 GMT", + "end_time": "Sun, 14 Jan 2024 02:09:54 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -329955,24 +325977,24 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 01:54:24 GMT", - "ETag": "W/\"1c7f4b68e5a9e680f31c0389d1493abb\"", - "Link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", + "Date": "Sun, 14 Jan 2024 02:09:53 GMT", + "ETag": "W/\"d7138e6e195c16d8c66e975a49efaf2d\"", + "Link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_lapin_session_id=395695bcc97d436b233d17562b8e0c14; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_lapin_session_id=faa01acc12dd6c6ce1886762adddcbde; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=63072000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept", "X-Content-Type-Options": "nosniff", "X-Download-Options": "noopen", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "4faa5411-ad4a-4ecf-b54a-d460b23686ce, 4faa5411-ad4a-4ecf-b54a-d460b23686ce", - "X-Runtime": "0.013946", + "X-Request-ID": "327b5d60-0a0d-4229-ad9f-d8fe590c1bb0, 327b5d60-0a0d-4229-ad9f-d8fe590c1bb0", + "X-Runtime": "0.016934", "X-XSS-Protection": "0" }, - "scan_id": 46226573, + "scan_id": 46435632, "score": 50, - "start_time": "Sun, 07 Jan 2024 01:54:21 GMT", + "start_time": "Sun, 14 Jan 2024 02:09:51 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -329985,57 +326007,57 @@ "output": { "data": { "child-src": [ - "blob:", - "'self'" + "'self'", + "blob:" ], "connect-src": [ - "api-adresse.data.gouv.fr", "'self'", + "etalab-tiles.fr", "cdnjs.cloudflare.com", - "stats.data.gouv.fr", - "etalab-tiles.fr" + "api-adresse.data.gouv.fr", + "stats.data.gouv.fr" ], "default-src": [ "'self'" ], "font-src": [ - "github.com", + "'self'", "data:", - "'self'" + "github.com" ], "frame-src": [ - "*.instatus.com", - "'self'" + "'self'", + "*.instatus.com" ], "img-src": [ - "blob:", - "voxusagers.numerique.gouv.fr", "'self'", - "stats.data.gouv.fr", - "data:" + "data:", + "voxusagers.numerique.gouv.fr", + "blob:", + "stats.data.gouv.fr" ], "object-src": [ "'none'" ], "script-src": [ - "blob:", - "api-adresse.data.gouv.fr", - "'self'", + "data1.ollapges.com", + "data1.gryplex.com", + "tags.clickintext.net", "lb.apicit.net", + "'self'", + "blob:", "'unsafe-inline'", - "api.mapbox.com", - "tags.clickintext.net", - "fidoapi.com", "stats.data.gouv.fr", - "data1.gryplex.com", - "data1.ollapges.com" + "api.mapbox.com", + "api-adresse.data.gouv.fr", + "fidoapi.com" ], "style-src": [ "'self'", + "*.bootstrapcdn.com", "cdnjs.cloudflare.com", "'unsafe-inline'", - "api.mapbox.com", - "*.bootstrapcdn.com" + "api.mapbox.com" ], "worker-src": [ "blob:" @@ -330223,10 +326245,10 @@ "url": "https://www.rdv-solidarites.fr", "alias": null, "last_status": 200, - "uptime": 99.978, + "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-01T11:29:56Z", + "up_since": "2024-01-11T09:21:11Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -330238,8 +326260,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T11:36:17Z", - "next_check_at": "2024-01-07T11:41:14Z", + "last_check_at": "2024-01-14T11:08:42Z", + "next_check_at": "2024-01-14T11:13:40Z", "created_at": "2021-04-22T19:59:40Z", "mute_until": null, "favicon_url": "https://www.rdv-solidarites.fr/assets/favicon/favicon-a933d69b078f2d798a5fee2eeb0a8e97de10b68c24a6e5af3a2b8b727e14d73d.ico", @@ -330247,7 +326269,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T10:51:27Z", + "tested_at": "2024-01-14T11:08:45Z", "expires_at": "2024-02-17T15:48:10Z", "valid": true, "error": null @@ -330256,11 +326278,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 44, - "connection": 94, - "handshake": 101, - "response": 111, - "total": 350 + "namelookup": 49, + "connection": 124, + "handshake": 127, + "response": 139, + "total": 439 } }, "uptimeGrade": "A", @@ -330638,7 +326660,7 @@ "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "41 >= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", @@ -330841,7 +326863,7 @@ "ip": "www.rdv-solidarites.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704626720" + "finding": "1705229804" }, { "id": "HSTS_time", @@ -331788,7 +327810,7 @@ "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "41 >= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", @@ -331991,7 +328013,7 @@ "ip": "www.rdv-solidarites.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704626819" + "finding": "1705229902" }, { "id": "HSTS_time", @@ -332593,77 +328615,77 @@ }, { "id": "service", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332671,7 +328693,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332679,7 +328701,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332687,7 +328709,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -332695,7 +328717,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -332703,7 +328725,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -332711,539 +328733,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-19 15:48" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-02-17 15:48" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704626918" + "finding": "1705230001" }, { "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -333251,7 +329273,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -333260,7 +329282,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -333269,7 +329291,7 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -333278,7 +329300,7 @@ }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -333287,7 +329309,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -333295,7 +329317,7 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -333304,7 +329326,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -333313,7 +329335,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -333322,7 +329344,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -333331,14 +329353,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -333347,7 +329369,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -333356,7 +329378,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -333365,7 +329387,7 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -333374,7 +329396,7 @@ }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -333383,7 +329405,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -333392,7 +329414,7 @@ }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -333401,7 +329423,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -333410,7 +329432,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -333419,7 +329441,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -333428,392 +329450,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/148.253.96.193", + "ip": "www.rdv-solidarites.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -333821,7 +329843,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -333829,7 +329851,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -333837,7 +329859,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -333845,7 +329867,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -333853,7 +329875,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -333861,539 +329883,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-19 15:48" }, { "id": "cert_notAfter", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-02-17 15:48" }, { "id": "cert_extlifeSpan", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704627016" + "finding": "1705230100" }, { "id": "HSTS_time", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -334401,7 +330423,7 @@ }, { "id": "heartbleed", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -334410,7 +330432,7 @@ }, { "id": "CCS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -334419,7 +330441,7 @@ }, { "id": "ticketbleed", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -334428,7 +330450,7 @@ }, { "id": "ROBOT", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -334437,7 +330459,7 @@ }, { "id": "secure_renego", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -334445,7 +330467,7 @@ }, { "id": "secure_client_renego", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -334454,7 +330476,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -334463,7 +330485,7 @@ }, { "id": "BREACH", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -334472,7 +330494,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -334481,14 +330503,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -334497,7 +330519,7 @@ }, { "id": "FREAK", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -334506,7 +330528,7 @@ }, { "id": "DROWN", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -334515,7 +330537,7 @@ }, { "id": "DROWN_hint", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -334524,7 +330546,7 @@ }, { "id": "LOGJAM", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -334533,7 +330555,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -334542,7 +330564,7 @@ }, { "id": "BEAST", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -334551,7 +330573,7 @@ }, { "id": "LUCKY13", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -334560,7 +330582,7 @@ }, { "id": "winshock", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -334569,7 +330591,7 @@ }, { "id": "RC4", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -334578,322 +330600,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "www.rdv-solidarites.fr/185.21.194.105", + "ip": "www.rdv-solidarites.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "399" @@ -334904,10 +330926,10 @@ "cookies": [ { "name": "_pk_id.123.afa7", - "value": "65bf2e1c09658a07.1704626625.", + "value": "585f41aaa3e5547b.1705229706.", "domain": "www.rdv-solidarites.fr", "path": "/", - "expires": 1738581825, + "expires": 1739184906, "size": 43, "httpOnly": false, "secure": false, @@ -334922,7 +330944,7 @@ "value": "1", "domain": "www.rdv-solidarites.fr", "path": "/", - "expires": 1704628425, + "expires": 1705231506, "size": 17, "httpOnly": false, "secure": false, @@ -334934,7 +330956,7 @@ }, { "name": "_lapin_session_id", - "value": "86a7ba389fed9d25d83b73bc6a4e2627", + "value": "0ca3570f00c326c0b1f133f4c1285016", "domain": "www.rdv-solidarites.fr", "path": "/", "expires": -1, @@ -334953,23 +330975,23 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; font-src 'self' data: github.com; object-src 'none'; worker-src blob:; child-src blob: 'self'; frame-src 'self' *.instatus.com; script-src 'self' 'unsafe-inline' stats.data.gouv.fr api-adresse.data.gouv.fr data1.ollapges.com fidoapi.com data1.gryplex.com lb.apicit.net tags.clickintext.net api.mapbox.com blob:; connect-src 'self' stats.data.gouv.fr api-adresse.data.gouv.fr cdnjs.cloudflare.com etalab-tiles.fr; style-src 'self' 'unsafe-inline' *.bootstrapcdn.com cdnjs.cloudflare.com api.mapbox.com; img-src 'self' data: blob: stats.data.gouv.fr voxusagers.numerique.gouv.fr", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 11:23:44 GMT", - "etag": "W/\"f2a3d8a5f451e034b01c1d9e7ff1de59\"", - "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", + "date": "Sun, 14 Jan 2024 10:55:04 GMT", + "etag": "W/\"a2b23c825c2265fce64e39435492cbe6\"", + "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_lapin_session_id=86a7ba389fed9d25d83b73bc6a4e2627; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_lapin_session_id=0ca3570f00c326c0b1f133f4c1285016; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=63072000; includeSubDomains", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-permitted-cross-domain-policies": "none", - "x-request-id": "13a8df6f-5635-4067-99ad-960f5b7b394e\n13a8df6f-5635-4067-99ad-960f5b7b394e", - "x-runtime": "0.012913", + "x-request-id": "936b6651-1580-4fff-87d6-684357375e09\n936b6651-1580-4fff-87d6-684357375e09", + "x-runtime": "0.013802", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "www.rdv-solidarites.fr", - "ip": "148.253.96.193", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -335103,24 +331125,6 @@ ], "rootPath": true }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, { "slug": "sendinblue", "name": "Sendinblue", @@ -335143,13 +331147,31 @@ } ], "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 11:23:02", + "@generated": "Sun, 14 Jan 2024 10:54:25", "site": [ { "@name": "https://www.rdv-solidarites.fr", @@ -335241,6 +331263,13 @@ "riskdesc": "Informational (Low)", "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" + }, { "name": "Non-Storable Content", "riskcode": "0", @@ -335310,73 +331339,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "www.rdv-solidarites.fr.", "matched-at": "www.rdv-solidarites.fr", - "extracted-results": [ - "production-rdv-solidarites.osc-secnum-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T11:32:06.230543976Z", + "timestamp": "2024-01-14T11:03:29.501613669Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "www.rdv-solidarites.fr.", "matched-at": "www.rdv-solidarites.fr", - "timestamp": "2024-01-07T11:32:06.508333821Z", + "extracted-results": [ + "production-rdv-solidarites.osc-secnum-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T11:03:29.646737573Z", "matcher-status": true }, { @@ -335413,8 +331442,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:32:25.354909791Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:03:48.376691522Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -335440,8 +331469,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:03.225847949Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:26.077258275Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -335473,12 +331502,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:18.006481043Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:40.689727746Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -335510,12 +331539,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:18.006522981Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:40.689769363Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -335547,12 +331576,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:18.006540574Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:40.689787067Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -335584,12 +331613,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:18.006556655Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:40.689803287Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -335621,12 +331650,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:18.006573215Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:40.689816752Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -335658,12 +331687,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:18.006590157Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:40.689831009Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr'", "matcher-status": true }, @@ -335690,8 +331719,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr/robots.txt", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:34.488839361Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:57.008233233Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr/robots.txt'", "matcher-status": true }, @@ -335718,8 +331747,8 @@ "type": "http", "host": "https://www.rdv-solidarites.fr", "matched-at": "https://www.rdv-solidarites.fr/robots.txt", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:34.558257481Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:57.036155003Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr/robots.txt'", "matcher-status": true }, @@ -335756,8 +331785,8 @@ "extracted-results": [ " mailto:support-incubateur@anct.gouv.fr" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:33:34.558356332Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:04:57.050861627Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdv-solidarites.fr/.well-known/security.txt'", "matcher-status": true }, @@ -335787,8 +331816,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:39:48.635430285Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:11:10.803885966Z", "matcher-status": true }, { @@ -335817,8 +331846,8 @@ "extracted-results": [ "www.rdv-solidarites.fr" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:39:48.635538497Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:11:10.80399567Z", "matcher-status": true }, { @@ -335848,8 +331877,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:39:50.765168986Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:11:12.983711289Z", "matcher-status": true }, { @@ -335879,8 +331908,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T11:39:51.073142355Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T11:11:13.294040179Z", "matcher-status": true } ], @@ -335888,7 +331917,7 @@ { "requestedUrl": "https://www.rdv-solidarites.fr/", "finalUrl": "https://www.rdv-solidarites.fr/", - "fetchTime": "2024-01-07T11:23:16.532Z", + "fetchTime": "2024-01-14T10:54:38.870Z", "runWarnings": [], "categories": { "performance": { @@ -335951,53 +331980,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3579, + "numericValue": 3169, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2506, - "firstMeaningfulPaint": 2506, - "largestContentfulPaint": 2506, - "interactive": 3579, - "speedIndex": 4859, - "totalBlockingTime": 361, - "maxPotentialFID": 286, - "cumulativeLayoutShift": 0.002481395085652669, - "cumulativeLayoutShiftMainFrame": 0.002481395085652669, - "totalCumulativeLayoutShift": 0.002481395085652669, + "firstContentfulPaint": 2083, + "firstMeaningfulPaint": 2083, + "largestContentfulPaint": 2254, + "interactive": 3169, + "speedIndex": 3110, + "totalBlockingTime": 76, + "maxPotentialFID": 104, + "cumulativeLayoutShift": 0.0022073364257812504, + "cumulativeLayoutShiftMainFrame": 0.0022073364257812504, + "totalCumulativeLayoutShift": 0.0022073364257812504, "observedTimeOrigin": 0, - "observedTimeOriginTs": 239790358, + "observedTimeOriginTs": 282659863, "observedNavigationStart": 0, - "observedNavigationStartTs": 239790358, - "observedFirstPaint": 2428, - "observedFirstPaintTs": 242218149, - "observedFirstContentfulPaint": 2428, - "observedFirstContentfulPaintTs": 242218149, - "observedFirstContentfulPaintAllFrames": 2428, - "observedFirstContentfulPaintAllFramesTs": 242218149, - "observedFirstMeaningfulPaint": 2428, - "observedFirstMeaningfulPaintTs": 242218149, - "observedLargestContentfulPaint": 2428, - "observedLargestContentfulPaintTs": 242218149, - "observedLargestContentfulPaintAllFrames": 2428, - "observedLargestContentfulPaintAllFramesTs": 242218149, - "observedTraceEnd": 5864, - "observedTraceEndTs": 245654697, - "observedLoad": 3522, - "observedLoadTs": 243312808, - "observedDomContentLoaded": 2405, - "observedDomContentLoadedTs": 242194858, - "observedCumulativeLayoutShift": 0.002481395085652669, - "observedCumulativeLayoutShiftMainFrame": 0.002481395085652669, - "observedTotalCumulativeLayoutShift": 0.002481395085652669, - "observedFirstVisualChange": 2416, - "observedFirstVisualChangeTs": 242206358, - "observedLastVisualChange": 3533, - "observedLastVisualChangeTs": 243323358, - "observedSpeedIndex": 2486, - "observedSpeedIndexTs": 242275975 + "observedNavigationStartTs": 282659863, + "observedFirstPaint": 1324, + "observedFirstPaintTs": 283983763, + "observedFirstContentfulPaint": 1324, + "observedFirstContentfulPaintTs": 283983763, + "observedFirstContentfulPaintAllFrames": 1324, + "observedFirstContentfulPaintAllFramesTs": 283983763, + "observedFirstMeaningfulPaint": 1324, + "observedFirstMeaningfulPaintTs": 283983763, + "observedLargestContentfulPaint": 1324, + "observedLargestContentfulPaintTs": 283983763, + "observedLargestContentfulPaintAllFrames": 1324, + "observedLargestContentfulPaintAllFramesTs": 283983763, + "observedTraceEnd": 4230, + "observedTraceEndTs": 286890085, + "observedLoad": 1924, + "observedLoadTs": 284584160, + "observedDomContentLoaded": 1326, + "observedDomContentLoadedTs": 283985774, + "observedCumulativeLayoutShift": 0.0022073364257812504, + "observedCumulativeLayoutShiftMainFrame": 0.0022073364257812504, + "observedTotalCumulativeLayoutShift": 0.0022073364257812504, + "observedFirstVisualChange": 1328, + "observedFirstVisualChangeTs": 283987863, + "observedLastVisualChange": 1595, + "observedLastVisualChangeTs": 284254863, + "observedSpeedIndex": 1334, + "observedSpeedIndexTs": 283993973 }, { "lcpInvalidated": false @@ -336019,18 +332048,18 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 919, - "numTasksOver10ms": 5, - "numTasksOver25ms": 5, - "numTasksOver50ms": 3, + "numTasks": 818, + "numTasksOver10ms": 4, + "numTasksOver25ms": 1, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 146.43300000000002, - "throughput": 2027328.4148563442, - "maxRtt": 146.98299999999998, - "maxServerLatency": 83.15300000000002, - "totalByteWeight": 524610, - "totalTaskTime": 381.7129999999994, + "rtt": 144.73000000000002, + "throughput": 6179444.783896064, + "maxRtt": 146.539, + "maxServerLatency": 3.7639999999999816, + "totalByteWeight": 524631, + "totalTaskTime": 167.91199999999947, "mainDocumentTransferSize": 4846 } ] @@ -336086,7 +332115,7 @@ "httpGrade": "C", "apdex": 1, "apdexGrade": "A", - "uptime": 99.978, + "uptime": 100, "uptimeGrade": "A", "nmapGrade": "A", "nmapOpenPortsCount": 2, @@ -336123,7 +332152,7 @@ "http": { "url": "https://osmose.numerique.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:59:30 GMT", + "end_time": "Sun, 14 Jan 2024 01:56:47 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -336132,7 +332161,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html;charset=UTF-8", - "Date": "Sun, 07 Jan 2024 01:59:28 GMT", + "Date": "Sun, 14 Jan 2024 01:56:45 GMT", "Expires": "0", "Feature-Policy": "accelerometer 'none'; autoplay 'none'; camera *; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone *; midi 'none'; payment 'none'; usb 'none';", "Permissions-Policy": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()", @@ -336143,9 +332172,9 @@ "X-Content-Type-Options": "nosniff", "X-XSS-Protection": "1" }, - "scan_id": 46226611, + "scan_id": 46435336, "score": 55, - "start_time": "Sun, 07 Jan 2024 01:59:25 GMT", + "start_time": "Sun, 14 Jan 2024 01:56:42 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -336698,7 +332727,7 @@ "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "OK", - "finding": "88 >= 60 days" + "finding": "81 >= 60 days" }, { "id": "cert_notBefore", @@ -336908,7 +332937,7 @@ "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "1704627150" + "finding": "1705230376" }, { "id": "HSTS_time", @@ -337506,7 +333535,7 @@ "ip": "osmose.numerique.gouv.fr/148.253.96.234", "port": "443", "severity": "INFO", - "finding": "101" + "finding": "62" } ], "thirdparties": { @@ -337547,7 +333576,7 @@ "cookies": [ { "name": "JSESSIONID", - "value": "2398F8590D10366645BE3F904ED2C77F.n1", + "value": "4D8CA38483CBA704C3FF6DE1F57B15B1.n1", "domain": "osmose.numerique.gouv.fr", "path": "/", "expires": -1, @@ -337564,7 +333593,7 @@ "cache-control": "no-cache, no-store, must-revalidate", "content-encoding": "gzip", "content-type": "text/html;charset=UTF-8", - "date": "Sun, 07 Jan 2024 11:30:51 GMT", + "date": "Sun, 14 Jan 2024 11:05:10 GMT", "expires": "0", "feature-policy": "accelerometer 'none'; autoplay 'none'; camera *; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone *; midi 'none'; payment 'none'; usb 'none';", "permissions-policy": "accelerometer=(), autoplay=(), camera=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=*, midi=(), payment=(), usb=()", @@ -337633,7 +333662,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.191.74", + "ip": "142.250.190.106", "geoip": { "continent": { "code": "NA", @@ -337653,7 +333682,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -337673,7 +333702,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -337974,7 +334003,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 11:30:10", + "@generated": "Sun, 14 Jan 2024 11:04:30", "site": [ { "@name": "https://osmose.numerique.gouv.fr", @@ -338051,22 +334080,23 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -338082,27 +334112,30 @@ "type": "dns", "host": "osmose.numerique.gouv.fr.", "matched-at": "osmose.numerique.gouv.fr", - "timestamp": "2024-01-07T11:34:02.031454923Z", + "extracted-results": [ + "10 mx01.xsalto.net.", + "20 mx02.xsalto.net." + ], + "timestamp": "2024-01-14T11:07:33.658203726Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -338118,11 +334151,7 @@ "type": "dns", "host": "osmose.numerique.gouv.fr.", "matched-at": "osmose.numerique.gouv.fr", - "extracted-results": [ - "20 mx02.xsalto.net.", - "10 mx01.xsalto.net." - ], - "timestamp": "2024-01-07T11:34:02.35159309Z", + "timestamp": "2024-01-14T11:07:33.686863659Z", "matcher-status": true }, { @@ -338160,7 +334189,7 @@ "extracted-results": [ "\"v=spf1 include:spf.xsalto.com include:spf.akio.cloud ~all\"" ], - "timestamp": "2024-01-07T11:34:03.192063578Z", + "timestamp": "2024-01-14T11:07:33.809253151Z", "matcher-status": true }, { @@ -338198,7 +334227,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:34:22.31858037Z", + "timestamp": "2024-01-14T11:07:47.887832386Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338239,7 +334268,7 @@ "1" ], "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:34:22.319528558Z", + "timestamp": "2024-01-14T11:07:47.888649972Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338273,7 +334302,7 @@ "Jalios JCMS - Copyright (C) Jalios S.A. 2001 - 2024 - https://www.jalios.com/" ], "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:02.633445372Z", + "timestamp": "2024-01-14T11:08:17.4744861Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338300,7 +334329,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:02.759410806Z", + "timestamp": "2024-01-14T11:08:17.603339683Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338327,7 +334356,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:02.759442275Z", + "timestamp": "2024-01-14T11:08:17.603371443Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338354,7 +334383,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:02.759452815Z", + "timestamp": "2024-01-14T11:08:17.603382353Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338395,7 +334424,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:10.442844229Z", + "timestamp": "2024-01-14T11:08:22.792437583Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338427,12 +334456,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:20.861337043Z", + "timestamp": "2024-01-14T11:08:30.364963877Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338464,12 +334493,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:20.8613783Z", + "timestamp": "2024-01-14T11:08:30.365007519Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338501,12 +334530,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:20.861396274Z", + "timestamp": "2024-01-14T11:08:30.365024751Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338538,12 +334567,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:20.861779729Z", + "timestamp": "2024-01-14T11:08:30.365041262Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338575,12 +334604,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:20.861804785Z", + "timestamp": "2024-01-14T11:08:30.365147843Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338612,12 +334641,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:20.861862872Z", + "timestamp": "2024-01-14T11:08:30.365164254Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338649,12 +334678,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/plugins/DINUMThemePlugin/jsp/front/privateLoginOsmose.jsp?redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:20.861882629Z", + "timestamp": "2024-01-14T11:08:30.365177298Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr'", "matcher-status": true }, @@ -338682,7 +334711,7 @@ "host": "https://osmose.numerique.gouv.fr", "matched-at": "https://osmose.numerique.gouv.fr/robots.txt", "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:38.408206853Z", + "timestamp": "2024-01-14T11:08:42.691206415Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr/robots.txt'", "matcher-status": true }, @@ -338720,7 +334749,7 @@ " https://www.jalios.com/jcms/reel_5010/en/contact-us" ], "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:35:38.49624662Z", + "timestamp": "2024-01-14T11:08:42.716563234Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://osmose.numerique.gouv.fr/.well-known/security.txt'", "matcher-status": true }, @@ -338751,7 +334780,7 @@ "DHIMYOTIS" ], "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:37:59.804191213Z", + "timestamp": "2024-01-14T11:10:47.167807076Z", "matcher-status": true }, { @@ -338782,7 +334811,7 @@ "osmose.numerique.gouv.fr" ], "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:37:59.804313982Z", + "timestamp": "2024-01-14T11:10:47.167913496Z", "matcher-status": true }, { @@ -338817,7 +334846,7 @@ " SAN: [*.osmose.numerique.gouv.fr osmose.numerique.gouv.fr]" ], "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:37:59.804358676Z", + "timestamp": "2024-01-14T11:10:47.16797395Z", "matcher-status": true }, { @@ -338848,7 +334877,7 @@ "tls12" ], "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:38:01.142869486Z", + "timestamp": "2024-01-14T11:10:47.513732983Z", "matcher-status": true }, { @@ -338879,7 +334908,7 @@ "tls13" ], "ip": "148.253.96.234", - "timestamp": "2024-01-07T11:38:02.698785442Z", + "timestamp": "2024-01-14T11:10:48.572276542Z", "matcher-status": true } ], @@ -338887,7 +334916,7 @@ { "requestedUrl": "https://osmose.numerique.gouv.fr/", "finalUrl": "https://osmose.numerique.gouv.fr/plugins/SmartPhonePlugin/jsp/core/login.jsp?smartPhonePreventRedirection=true&redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F", - "fetchTime": "2024-01-07T11:30:24.692Z", + "fetchTime": "2024-01-14T11:04:44.289Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://osmose.numerique.gouv.fr/) was redirected to https://osmose.numerique.gouv.fr/plugins/SmartPhonePlugin/jsp/core/login.jsp?smartPhonePreventRedirection=true&redirect=https%3A%2F%2Fosmose.numerique.gouv.fr%2Fjcms%2F. Try testing the second URL directly." ], @@ -338900,7 +334929,7 @@ "snapshot" ], "id": "performance", - "score": 0.6957700729370118 + "score": 0.695762825012207 }, "accessibility": { "title": "Accessibility", @@ -338952,53 +334981,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11736, + "numericValue": 11484, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 11383, - "firstMeaningfulPaint": 11447, - "largestContentfulPaint": 11481, - "interactive": 11736, - "speedIndex": 11383, - "totalBlockingTime": 105, - "maxPotentialFID": 128, - "cumulativeLayoutShift": 0.00023377482096354166, - "cumulativeLayoutShiftMainFrame": 0.00023377482096354166, - "totalCumulativeLayoutShift": 0.00023377482096354166, + "firstContentfulPaint": 11367, + "firstMeaningfulPaint": 11409, + "largestContentfulPaint": 11409, + "interactive": 11484, + "speedIndex": 11367, + "totalBlockingTime": 48, + "maxPotentialFID": 111, + "cumulativeLayoutShift": 0, + "cumulativeLayoutShiftMainFrame": 0, + "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 280855257, + "observedTimeOriginTs": 179893453, "observedNavigationStart": 0, - "observedNavigationStartTs": 280855257, - "observedFirstPaint": 1852, - "observedFirstPaintTs": 282706787, - "observedFirstContentfulPaint": 1852, - "observedFirstContentfulPaintTs": 282706787, - "observedFirstContentfulPaintAllFrames": 1852, - "observedFirstContentfulPaintAllFramesTs": 282706787, - "observedFirstMeaningfulPaint": 1852, - "observedFirstMeaningfulPaintTs": 282706787, - "observedLargestContentfulPaint": 1852, - "observedLargestContentfulPaintTs": 282706787, - "observedLargestContentfulPaintAllFrames": 1852, - "observedLargestContentfulPaintAllFramesTs": 282706787, - "observedTraceEnd": 4471, - "observedTraceEndTs": 285326263, - "observedLoad": 2013, - "observedLoadTs": 282867770, - "observedDomContentLoaded": 1846, - "observedDomContentLoadedTs": 282701032, - "observedCumulativeLayoutShift": 0.00023377482096354166, - "observedCumulativeLayoutShiftMainFrame": 0.00023377482096354166, - "observedTotalCumulativeLayoutShift": 0.00023377482096354166, - "observedFirstVisualChange": 1850, - "observedFirstVisualChangeTs": 282705257, - "observedLastVisualChange": 4350, - "observedLastVisualChangeTs": 285205257, - "observedSpeedIndex": 1984, - "observedSpeedIndexTs": 282839353 + "observedNavigationStartTs": 179893453, + "observedFirstPaint": 1281, + "observedFirstPaintTs": 181174454, + "observedFirstContentfulPaint": 1281, + "observedFirstContentfulPaintTs": 181174454, + "observedFirstContentfulPaintAllFrames": 1281, + "observedFirstContentfulPaintAllFramesTs": 181174454, + "observedFirstMeaningfulPaint": 1281, + "observedFirstMeaningfulPaintTs": 181174454, + "observedLargestContentfulPaint": 1281, + "observedLargestContentfulPaintTs": 181174454, + "observedLargestContentfulPaintAllFrames": 1281, + "observedLargestContentfulPaintAllFramesTs": 181174454, + "observedTraceEnd": 3795, + "observedTraceEndTs": 183688084, + "observedLoad": 1394, + "observedLoadTs": 181287910, + "observedDomContentLoaded": 1275, + "observedDomContentLoadedTs": 181168589, + "observedCumulativeLayoutShift": 0, + "observedCumulativeLayoutShiftMainFrame": 0, + "observedTotalCumulativeLayoutShift": 0, + "observedFirstVisualChange": 1282, + "observedFirstVisualChangeTs": 181175453, + "observedLastVisualChange": 3782, + "observedLastVisualChangeTs": 183675453, + "observedSpeedIndex": 1377, + "observedSpeedIndexTs": 181270582 }, { "lcpInvalidated": false @@ -339020,19 +335049,19 @@ "numScripts": 1, "numStylesheets": 1, "numFonts": 3, - "numTasks": 255, - "numTasksOver10ms": 5, - "numTasksOver25ms": 4, - "numTasksOver50ms": 2, + "numTasks": 275, + "numTasksOver10ms": 3, + "numTasksOver25ms": 2, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 148.902, - "throughput": 27889133.160024595, - "maxRtt": 148.902, - "maxServerLatency": 5.655000000000001, - "totalByteWeight": 2643617, - "totalTaskTime": 261.2319999999997, - "mainDocumentTransferSize": 6198 + "rtt": 101.36200000000001, + "throughput": 40351635.259752594, + "maxRtt": 101.36200000000001, + "maxServerLatency": 5.657000000000025, + "totalByteWeight": 2643655, + "totalTaskTime": 162.54199999999975, + "mainDocumentTransferSize": 6200 } ] } @@ -339100,7 +335129,7 @@ "cookiesCount": 1, "trackersGrade": "C", "trackersCount": 4, - "lighthouse_performance": 0.6957700729370118, + "lighthouse_performance": 0.695762825012207, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.85, "lighthouse_accessibilityGrade": "A", @@ -339126,7 +335155,7 @@ "http": { "url": "https://www.data.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 03:00:19 GMT", + "end_time": "Sun, 14 Jan 2024 03:07:16 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -339135,19 +335164,19 @@ "cache-control": "public", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 03:00:17 GMT", + "date": "Sun, 14 Jan 2024 03:07:06 GMT", "pragma": "public", "server": "nginx", - "set-cookie": "session=d2~eyJjc3JmX3Rva2VuIjoiZDdhMDRkMjk0ZDhhYTFjNWQ0ZGZmMDdlNmRkOGFmMDM1MGM5ZTc2OSJ9.ZZoTwQ.KCocoh49E4Ps9wpXwWMR4-J0cJA; Domain=.www.data.gouv.fr; Secure; HttpOnly; Path=/; SameSite=Lax", + "set-cookie": "session=d1~eyJjc3JmX3Rva2VuIjoiNjg4MTZjZTZhMjQxNTRkYjMyNDNmNGNkNGRhOTA1Y2E4NDg1ZDNlYSJ9.ZaNP2g.YirtesryFx1iTsZ4g3_kW5R3PHs; Domain=.www.data.gouv.fr; Secure; HttpOnly; Path=/; SameSite=Lax", "transfer-encoding": "chunked", "vary": "Accept-Encoding, Cookie", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-xss-protection": "1; mode=block" }, - "scan_id": 46227593, + "scan_id": 46436416, "score": 55, - "start_time": "Sun, 07 Jan 2024 03:00:14 GMT", + "start_time": "Sun, 14 Jan 2024 03:05:08 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -339536,7 +335565,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 11:33:06", + "@generated": "Sun, 14 Jan 2024 11:07:15", "site": [ { "@name": "https://www.data.gouv.fr", @@ -339621,13 +335650,6 @@ "riskdesc": "Low (Low)", "desc": "

A timestamp was disclosed by the application/web server - Unix

" }, - { - "name": "Authentication Request Identified", - "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", - "desc": "

The given request has been identified as an authentication request. The 'Other Info' field contains a set of key=value lines which identify any relevant fields. If the request is in a context which has an Authentication Method set to \"Auto-Detect\" then this rule will change the authentication to match the request identified.

" - }, { "name": "Base64 Disclosure", "riskcode": "0", @@ -339818,7 +335840,7 @@ "http": { "url": "https://anais.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 11:52:51 GMT", + "end_time": "Sun, 14 Jan 2024 11:33:52 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -339826,7 +335848,7 @@ "Cache-Control": "no-store", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 11:52:50 GMT", + "Date": "Sun, 14 Jan 2024 11:33:50 GMT", "Etag": "W/\"653bb2e8-2169\"", "Last-Modified": "Fri, 27 Oct 2023 12:54:00 GMT", "Referrer-Policy": "strict-origin-when-cross-origin", @@ -339839,9 +335861,9 @@ "X-Server": "ANAIS-UI", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 46233481, + "scan_id": 46467830, "score": 75, - "start_time": "Sun, 07 Jan 2024 11:52:47 GMT", + "start_time": "Sun, 14 Jan 2024 11:22:30 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -340027,8 +336049,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T11:12:01Z", - "next_check_at": "2024-01-07T12:12:00Z", + "last_check_at": "2024-01-14T11:20:25Z", + "next_check_at": "2024-01-14T12:20:15Z", "created_at": "2021-04-22T21:33:36Z", "mute_until": "forever", "favicon_url": "https://anais.beta.gouv.fr/assets/images/favicon_anais.png", @@ -340036,7 +336058,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T02:14:33Z", + "tested_at": "2024-01-14T03:22:04Z", "expires_at": "2024-02-29T14:02:58Z", "valid": true, "error": null @@ -340045,11 +336067,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 166, - "connection": 136, - "handshake": 288, - "response": 136, - "total": 726 + "namelookup": 286, + "connection": 204, + "handshake": 423, + "response": 207, + "total": 1120 } }, "uptimeGrade": "A", @@ -340429,7 +336451,7 @@ "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "OK", - "finding": "53 >= 30 days" + "finding": "46 >= 30 days" }, { "id": "cert_notBefore", @@ -340632,7 +336654,7 @@ "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "1704628483" + "finding": "1705232095" }, { "id": "HSTS_time", @@ -341223,7 +337245,7 @@ "ip": "anais.beta.gouv.fr/91.134.110.2", "port": "443", "severity": "INFO", - "finding": "124" + "finding": "80" } ], "thirdparties": { @@ -341233,7 +337255,7 @@ "cache-control": "no-store", "content-encoding": "br", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 11:53:22 GMT", + "date": "Sun, 14 Jan 2024 11:34:10 GMT", "etag": "W/\"653bb2e8-2169\"", "last-modified": "Fri, 27 Oct 2023 12:54:00 GMT", "referrer-policy": "strict-origin-when-cross-origin", @@ -341481,7 +337503,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 11:52:20", + "@generated": "Sun, 14 Jan 2024 11:22:04", "site": [ { "@name": "https://anais.beta.gouv.fr", @@ -341496,6 +337518,13 @@ "riskdesc": "Medium (High)", "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, + { + "name": "Cross-Domain Misconfiguration", + "riskcode": "2", + "confidence": "2", + "riskdesc": "Medium (Medium)", + "desc": "

Web browser data loading may be possible, due to a Cross Origin Resource Sharing (CORS) misconfiguration on the web server

" + }, { "name": "Dangerous JS Functions", "riskcode": "1", @@ -341606,6 +337635,82 @@ ] }, "nuclei": [ + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "anais.beta.gouv.fr.", + "matched-at": "anais.beta.gouv.fr", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." + ], + "timestamp": "2024-01-14T11:36:25.74194588Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "anais.beta.gouv.fr.", + "matched-at": "anais.beta.gouv.fr", + "extracted-results": [ + "letsencrypt.org", + "sectigo.com", + "buypass.com" + ], + "timestamp": "2024-01-14T11:36:25.746829115Z", + "matcher-status": true + }, { "template": "dns/mx-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", @@ -341643,47 +337748,7 @@ "20 mx2.alwaysdata.com.", "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T11:56:33.429399004Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "anais.beta.gouv.fr.", - "matched-at": "anais.beta.gouv.fr", - "extracted-results": [ - "buypass.com", - "sectigo.com", - "letsencrypt.org" - ], - "timestamp": "2024-01-07T11:56:33.587245437Z", + "timestamp": "2024-01-14T11:36:25.894814462Z", "matcher-status": true }, { @@ -341723,7 +337788,7 @@ "extracted-results": [ "\"v=DMARC1; p=reject; rua=mailto:equipe@anais.beta.gouv.fr; ruf=mailto:equipe@anais.beta.gouv.fr; fo=0; adkim=s; aspf=s; pct=100; rf=afrf; sp=reject; ri=604800;\"" ], - "timestamp": "2024-01-07T11:56:33.70495809Z", + "timestamp": "2024-01-14T11:36:25.90092487Z", "matcher-status": true }, { @@ -341759,46 +337824,10 @@ "host": "anais.beta.gouv.fr.", "matched-at": "anais.beta.gouv.fr", "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"", - "\"google-site-verification=gZJSqcHa6RiC77Hro77aia6TCjElEM9iCw5HuuK4wbk\"" - ], - "timestamp": "2024-01-07T11:56:34.625460406Z", - "matcher-status": true - }, - { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "anais.beta.gouv.fr.", - "matched-at": "anais.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "\"google-site-verification=gZJSqcHa6RiC77Hro77aia6TCjElEM9iCw5HuuK4wbk\"", + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2024-01-07T11:56:34.678521481Z", + "timestamp": "2024-01-14T11:36:25.97638685Z", "matcher-status": true }, { @@ -341837,7 +337866,7 @@ "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:56:59.53384035Z", + "timestamp": "2024-01-14T11:36:41.856611702Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341878,7 +337907,7 @@ "1; mode=block" ], "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:56:59.54281933Z", + "timestamp": "2024-01-14T11:36:41.870031609Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341910,7 +337939,7 @@ "nginx/1.21.6" ], "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:56:59.54656566Z", + "timestamp": "2024-01-14T11:36:41.873795204Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341937,7 +337966,7 @@ "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:57:50.23625872Z", + "timestamp": "2024-01-14T11:37:12.888365602Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -341969,12 +337998,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:58:10.540103075Z", + "timestamp": "2024-01-14T11:37:25.085656181Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -342006,12 +338035,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:58:10.540147998Z", + "timestamp": "2024-01-14T11:37:25.085702427Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -342043,12 +338072,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:58:10.540163868Z", + "timestamp": "2024-01-14T11:37:25.085717104Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -342080,12 +338109,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:58:10.540176472Z", + "timestamp": "2024-01-14T11:37:25.085731531Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -342117,12 +338146,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:58:10.540189546Z", + "timestamp": "2024-01-14T11:37:25.085744856Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -342154,12 +338183,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:58:10.540202831Z", + "timestamp": "2024-01-14T11:37:25.08575794Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -342191,12 +338220,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:58:10.540215805Z", + "timestamp": "2024-01-14T11:37:25.085770633Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr'", "matcher-status": true }, @@ -342236,7 +338265,7 @@ "host": "https://anais.beta.gouv.fr", "matched-at": "https://anais.beta.gouv.fr/", "ip": "91.134.110.2", - "timestamp": "2024-01-07T11:59:02.693976202Z", + "timestamp": "2024-01-14T11:37:56.777779782Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: anais.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anais.beta.gouv.fr/'", "matcher-status": true }, @@ -342267,7 +338296,7 @@ "Let's Encrypt" ], "ip": "91.134.110.2", - "timestamp": "2024-01-07T12:01:17.647045047Z", + "timestamp": "2024-01-14T11:39:54.163918056Z", "matcher-status": true }, { @@ -342294,12 +338323,12 @@ "host": "anais.beta.gouv.fr", "matched-at": "anais.beta.gouv.fr:443", "extracted-results": [ + "maps.anais.beta.gouv.fr", "anais.beta.gouv.fr", - "anais.snc.seanais.fr", - "maps.anais.beta.gouv.fr" + "anais.snc.seanais.fr" ], "ip": "91.134.110.2", - "timestamp": "2024-01-07T12:01:17.647166705Z", + "timestamp": "2024-01-14T11:39:54.16404415Z", "matcher-status": true }, { @@ -342330,7 +338359,7 @@ "tls12" ], "ip": "91.134.110.2", - "timestamp": "2024-01-07T12:01:19.932638964Z", + "timestamp": "2024-01-14T11:39:55.41877006Z", "matcher-status": true }, { @@ -342361,7 +338390,7 @@ "tls13" ], "ip": "91.134.110.2", - "timestamp": "2024-01-07T12:01:20.518411241Z", + "timestamp": "2024-01-14T11:39:55.727376251Z", "matcher-status": true } ], @@ -342369,7 +338398,7 @@ { "requestedUrl": "https://anais.beta.gouv.fr/", "finalUrl": "https://anais.beta.gouv.fr/", - "fetchTime": "2024-01-07T11:52:34.433Z", + "fetchTime": "2024-01-14T11:22:19.025Z", "runWarnings": [], "categories": { "performance": { @@ -342380,7 +338409,7 @@ "snapshot" ], "id": "performance", - "score": 0.9122116088867187 + "score": 0.9122098922729492 }, "accessibility": { "title": "Accessibility", @@ -342432,53 +338461,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6909, + "numericValue": 7342, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5852, - "firstMeaningfulPaint": 5976, - "largestContentfulPaint": 8777, - "interactive": 6909, - "speedIndex": 8330, - "totalBlockingTime": 657, - "maxPotentialFID": 585, - "cumulativeLayoutShift": 0.09155755276150174, - "cumulativeLayoutShiftMainFrame": 0.09155755276150174, - "totalCumulativeLayoutShift": 0.09155755276150174, + "firstContentfulPaint": 5855, + "firstMeaningfulPaint": 6045, + "largestContentfulPaint": 8780, + "interactive": 7342, + "speedIndex": 6883, + "totalBlockingTime": 937, + "maxPotentialFID": 657, + "cumulativeLayoutShift": 0.17593255276150174, + "cumulativeLayoutShiftMainFrame": 0.17593255276150174, + "totalCumulativeLayoutShift": 0.17593255276150174, "observedTimeOrigin": 0, - "observedTimeOriginTs": 305046673, + "observedTimeOriginTs": 340164802, "observedNavigationStart": 0, - "observedNavigationStartTs": 305046673, - "observedFirstPaint": 649, - "observedFirstPaintTs": 305695695, - "observedFirstContentfulPaint": 3000, - "observedFirstContentfulPaintTs": 308046566, - "observedFirstContentfulPaintAllFrames": 3000, - "observedFirstContentfulPaintAllFramesTs": 308046566, - "observedFirstMeaningfulPaint": 3000, - "observedFirstMeaningfulPaintTs": 308046566, - "observedLargestContentfulPaint": 3314, - "observedLargestContentfulPaintTs": 308360859, - "observedLargestContentfulPaintAllFrames": 3314, - "observedLargestContentfulPaintAllFramesTs": 308360859, - "observedTraceEnd": 5600, - "observedTraceEndTs": 310647171, - "observedLoad": 2227, - "observedLoadTs": 307273256, - "observedDomContentLoaded": 1789, - "observedDomContentLoadedTs": 306835552, - "observedCumulativeLayoutShift": 0.09155755276150174, - "observedCumulativeLayoutShiftMainFrame": 0.09155755276150174, - "observedTotalCumulativeLayoutShift": 0.09155755276150174, - "observedFirstVisualChange": 3007, - "observedFirstVisualChangeTs": 308053673, - "observedLastVisualChange": 3340, - "observedLastVisualChangeTs": 308386673, - "observedSpeedIndex": 3154, - "observedSpeedIndexTs": 308200338 + "observedNavigationStartTs": 340164802, + "observedFirstPaint": 413, + "observedFirstPaintTs": 340578225, + "observedFirstContentfulPaint": 1977, + "observedFirstContentfulPaintTs": 342142172, + "observedFirstContentfulPaintAllFrames": 1977, + "observedFirstContentfulPaintAllFramesTs": 342142172, + "observedFirstMeaningfulPaint": 1977, + "observedFirstMeaningfulPaintTs": 342142172, + "observedLargestContentfulPaint": 2166, + "observedLargestContentfulPaintTs": 342330883, + "observedLargestContentfulPaintAllFrames": 2166, + "observedLargestContentfulPaintAllFramesTs": 342330883, + "observedTraceEnd": 4518, + "observedTraceEndTs": 344682305, + "observedLoad": 1325, + "observedLoadTs": 341489400, + "observedDomContentLoaded": 1160, + "observedDomContentLoadedTs": 341325020, + "observedCumulativeLayoutShift": 0.17593255276150174, + "observedCumulativeLayoutShiftMainFrame": 0.17593255276150174, + "observedTotalCumulativeLayoutShift": 0.17593255276150174, + "observedFirstVisualChange": 1988, + "observedFirstVisualChangeTs": 342152802, + "observedLastVisualChange": 2221, + "observedLastVisualChangeTs": 342385802, + "observedSpeedIndex": 2101, + "observedSpeedIndexTs": 342265309 }, { "lcpInvalidated": false @@ -342500,18 +338529,18 @@ "numScripts": 4, "numStylesheets": 1, "numFonts": 4, - "numTasks": 831, - "numTasksOver10ms": 6, - "numTasksOver25ms": 3, - "numTasksOver50ms": 2, + "numTasks": 743, + "numTasksOver10ms": 10, + "numTasksOver25ms": 6, + "numTasksOver50ms": 3, "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 147.036, - "throughput": 13480060.304873195, - "maxRtt": 147.036, - "maxServerLatency": 2.2220000000000084, - "totalByteWeight": 1508840, - "totalTaskTime": 479.40899999999823, + "rtt": 85.411, + "throughput": 19736125.531186786, + "maxRtt": 85.411, + "maxServerLatency": 5.4280000000000115, + "totalByteWeight": 1508849, + "totalTaskTime": 694.4139999999979, "mainDocumentTransferSize": 3027 } ] @@ -342612,7 +338641,7 @@ "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.9122116088867187, + "lighthouse_performance": 0.9122098922729492, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.88, "lighthouse_accessibilityGrade": "A", @@ -342641,7 +338670,7 @@ "http": { "url": "https://www.demarches-simplifiees.fr", "algorithm_version": 2, - "end_time": "Sun, 31 Dec 2023 02:10:35 GMT", + "end_time": "Sat, 13 Jan 2024 19:31:13 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -342650,12 +338679,12 @@ "content-encoding": "gzip", "content-security-policy": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr wxs.ign.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr; report-uri https://demarchessimplifieestest.report-uri.com/r/d/csp/reportOnly", "content-type": "text/html; charset=utf-8", - "date": "Sun, 31 Dec 2023 02:10:34 GMT", - "etag": "W/\"e4e2e240b102e4224b5f832994503dff\"", - "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", + "date": "Sat, 13 Jan 2024 19:31:11 GMT", + "etag": "W/\"0593e2318ff492a612a4a2f8d18924b0\"", + "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", "server": "nginx", - "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklqSkdVR0ZMVVRaeVgwcExWWEZRYms1dWIyRndhbWR2TVVSSFFsVTFkRW8wVnpVdFRUSnVRM2t5VlVFaSIsImV4cCI6IjIwMjQtMTItMzFUMDI6MTA6MzQuNjcwWiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--77e1e08f8d7e2a3db7db15138ac104b2a52ac1c2; path=/; expires=Tue, 31 Dec 2024 02:10:34 GMT; HttpOnly; SameSite=Lax, _DS_session=d13gyFN43wrBK%2BrxmU%2FDOlDJslMsD6mfkuB8n%2BWxHdw8F7MvLwek3JbUaw%2Bf13Vge7ALj9ZPjE9mMpz%2FlxV0vj4dJ%2BrItkgeK1AOuS4kCaaL6aSZ82WiHdflLJH6tYlAN9E6t0V00v07xqRjO8gXxGC9655E35A2mtPQR7XXtykc1KsprCAXw5RMCA9PLndNDUS%2BTDL%2BOiqE27O1NKNWtX762TZSO8fWtwdQC3ZcyxW0bSyzxDKUuRCxmfBJBG3Zth8%2F8dJcBDHu9banMEkj8AD4YA%3D%3D--dbAQnPuW%2ByVkoqS1--GwHLoUuR3goILDNQjQzwaA%3D%3D; path=/; HttpOnly; SameSite=Lax", + "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklsWkNibWRhU0ZWaGJuTlZNMWx6ZFc5WGVtRXdOVEJyVW1KVmFVaEhTWE5KY3pNd1kzZHFORTF3ZFc4aSIsImV4cCI6IjIwMjUtMDEtMTNUMTk6MzE6MTEuODEyWiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--43042e50c2fc3af1796a6e93b92e8d89d013c9d9; path=/; expires=Mon, 13 Jan 2025 19:31:11 GMT; HttpOnly; SameSite=Lax, _DS_session=vPcOM%2FNKxTiJ1Yfyd8mfPWoqjedtkcwbyrGWN3RuSzxr3dBHTskxfB%2FevV4Oj2bP83rF3uCq55%2BKU%2BB0QkKBk%2FZBTUkR4NIRX7dxDzNcHwiU2xiaQP6gU1GdgWqw54CluPSg7vSaDjhAbughYAldK0T%2FDb7RcZwIox7liv%2BNZFqjq8%2FbfFaON%2F8dt1NgxAZLewqmeSyKoiSh12LKD42k6rbZKXslu%2BR9JnvhEfJ2CNr405RqWvHWcGofuw13TI7dv0IIFIeCXWQsdw2eAAJMjs%2FlrQ%3D%3D--WHzKh5ZR3k0dfg4%2F--sXZdq89TxS4lbyWthiiMAw%3D%3D; path=/; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=63072000", "transfer-encoding": "chunked", "vary": "Accept", @@ -342663,13 +338692,13 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "c5d67ce2-8c56-41f3-a4c9-8f0a29b5cfbb", - "x-runtime": "0.060788", + "x-request-id": "ea923221-542e-40c8-a404-90933897cfa4", + "x-runtime": "0.036672", "x-xss-protection": "0" }, - "scan_id": 45998597, + "scan_id": 46430169, "score": 60, - "start_time": "Sun, 31 Dec 2023 02:10:32 GMT", + "start_time": "Sat, 13 Jan 2024 19:31:09 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -342682,76 +338711,76 @@ "output": { "data": { "connect-src": [ - "app.franceconnect.gouv.fr", "sentry.io", - "api-adresse.data.gouv.fr", - "openmaptiles.geo.data.gouv.fr", - "static.demarches-simplifiees.fr", + "geo.api.gouv.fr", "www.demarches-simplifiees.fr", + "'self'", "*.crisp.chat", - "data.education.gouv.fr", + "wxs.ign.fr", + "static.demarches-simplifiees.fr", + "api-adresse.data.gouv.fr", "tiles.geo.api.gouv.fr", - "openmaptiles.github.io", - "geo.api.gouv.fr", "stats.data.gouv.fr", - "'self'", + "data.education.gouv.fr", + "app.franceconnect.gouv.fr", + "openmaptiles.geo.data.gouv.fr", "wss://*.crisp.chat", - "wxs.ign.fr" + "openmaptiles.github.io" ], "default-src": [ - "player.vimeo.com", - "app.franceconnect.gouv.fr", - "*.sibautomation.com", + "in-automate.sendinblue.com", "sentry.io", - "static.demarches-simplifiees.fr", + "'self'", "*.crisp.chat", + "fonts.gstatic.com", "crisp.chat", - "sibautomation.com", - "*.crisp.help", "'report-sample'", - "'self'", - "fonts.gstatic.com", - "in-automate.sendinblue.com", + "static.demarches-simplifiees.fr", + "*.sibautomation.com", + "player.vimeo.com", + "app.franceconnect.gouv.fr", + "*.crisp.help", + "data", "blob:", - "data" + "sibautomation.com" ], "frame-src": [ "stats.data.gouv.fr", "'self'" ], "img-src": [ + "'self'", "*", + "data:", + "blob:", "static.demarches-simplifiees.fr", - "*.openstreetmap.org", "stats.data.gouv.fr", - "blob:", - "'self'", - "data:" + "*.openstreetmap.org" ], "report-uri": [ "https://demarchessimplifieestest.report-uri.com/r/d/csp/reportOnly" ], "script-src": [ - "maxcdn.bootstrapcdn.com", - "unpkg.com", + "cdn.jsdelivr.net", + "'self'", "*.crisp.chat", - "crisp.chat", "'unsafe-eval'", + "'unsafe-inline'", + "crisp.chat", "code.jquery.com", "stats.data.gouv.fr", - "'unsafe-inline'", - "cdn.jsdelivr.net", + "unpkg.com", "blob:", - "'self'" + "maxcdn.bootstrapcdn.com" ], "style-src": [ - "maxcdn.bootstrapcdn.com", - "unpkg.com", + "cdn.jsdelivr.net", + "'self'", "*.crisp.chat", - "crisp.chat", "'unsafe-inline'", - "cdn.jsdelivr.net", - "'self'" + "crisp.chat", + "unpkg.com", + "maxcdn.bootstrapcdn.com" ] }, "http": true, @@ -342804,7 +338833,7 @@ }, "_csrf_token": { "domain": "www.demarches-simplifiees.fr", - "expires": 1735611034, + "expires": 1736796672, "httponly": true, "max-age": null, "path": "/", @@ -343245,7 +339274,7 @@ "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "99679908CC0EE49E8CC9C983812DCC85" + "finding": "BBEED41CCA0A0DA9354F7FF2EBD4682A" }, { "id": "cert_serialNumberLen", @@ -343259,21 +339288,21 @@ "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "185E29B37648BD86FEDD4912D278EDEAF694636C" + "finding": "C49DA1BEA4BA18291E31D2180F40A6DC4980D59E" }, { "id": "cert_fingerprintSHA256", "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "3F980A4EAEB3B19E81953D7E76F29AF095477A54E60F484B28636B0A3275623C" + "finding": "764C34F2DA93DD889D0093BD0FBCB3D45803281953C120C67DA54A812CD0B336" }, { "id": "cert", "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIJ6TCCB9GgAwIBAgIRALvu1BzKCg2pNU9/8uvUaCowDQYJKoZIhvcNAQELBQAwfTELMAkGA1UEBhMCRlIxEjAQBgNVBAoMCURISU1ZT1RJUzEcMBoGA1UECwwTMDAwMiA0ODE0NjMwODEwMDAzNjEdMBsGA1UEYQwUTlRSRlItNDgxNDYzMDgxMDAwMzYxHTAbBgNVBAMMFENlcnRpZ25hIFNlcnZpY2VzIENBMB4XDTI0MDExMDIzMDAwMFoXDTI1MDEwOTIyNTk1OVowfTELMAkGA1UEBhMCRlIxDjAMBgNVBAcMBVBBUklTMSYwJAYDVQQKDB1HT1VWRVJORU1FTlQgUFJFTUlFUiBNSU5JU1RSRTEhMB8GA1UEAwwYZGVtYXJjaGVzLXNpbXBsaWZpZWVzLmZyMRMwEQYDVQQFEwpTMjk2OTIwMjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNo5yi30pCwFfGGoZZ4YZwfsO+GzA5fv6s9KQSc1AMzq2o91loxPaUmWBFglKo6p4g7aQCH6+tKSDodJr7X3TY00NTjTxMj6u4OFIH/FoF9iOxqCRjTABmuTnZQzLoCbxBknllQHMcj5ZxuxGxJd1tUHcSKNiXnlfLepouZd2e/nQq5sdc9CGvRHhyPUgEiOZXL/uROJjsje9hHqlMVaA6rlGz8A+PbailQV9CHRBllBmv4RbUpAH0+4ooKj08zOuf/ThFueZsLaANELt5awDy/h0jqIgASQ6j/XozY1FhZKirO3X0WnlHqpZOD5nPEjpp9+f2PmZrr0WplVtpDRFQIDAQABo4IFYjCCBV4wgeQGCCsGAQUFBwEBBIHXMIHUMDYGCCsGAQUFBzAChipodHRwOi8vYXV0b3JpdGUuY2VydGlnbmEuZnIvc2VydmljZXNjYS5kZXIwOAYIKwYBBQUHMAKGLGh0dHA6Ly9hdXRvcml0ZS5kaGlteW90aXMuY29tL3NlcnZpY2VzY2EuZGVyMC4GCCsGAQUFBzABhiJodHRwOi8vc2VydmljZXNjYS5vY3NwLmNlcnRpZ25hLmZyMDAGCCsGAQUFBzABhiRodHRwOi8vc2VydmljZXNjYS5vY3NwLmRoaW15b3Rpcy5jb20wHwYDVR0jBBgwFoAUrOyGj0s3HLh/FxsZ0K7oTuM0XBIwCQYDVR0TBAIwADBhBgNVHSAEWjBYMAgGBmeBDAECAjBMBgsqgXoBgTECBQEBATA9MDsGCCsGAQUFBwIBFi9odHRwczovL3d3dy5jZXJ0aWduYS5jb20vYXV0b3JpdGUtY2VydGlmaWNhdGlvbjBlBgNVHR8EXjBcMC2gK6AphidodHRwOi8vY3JsLmRoaW15b3Rpcy5jb20vc2VydmljZXNjYS5jcmwwK6ApoCeGJWh0dHA6Ly9jcmwuY2VydGlnbmEuZnIvc2VydmljZXNjYS5jcmwwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDgYDVR0PAQH/BAQDAgWgMIIBuAYDVR0RBIIBrzCCAauCHWRvY3MuZGVtYXJjaGVzLXNpbXBsaWZpZWVzLmZyghtxYS5kZW1hcmNoZXMtc2ltcGxpZmllZXMuZnKCHmFkbWluLmRlbWFyY2hlcy1zaW1wbGlmaWVlcy5mcoIfc3RhdGljLmRlbWFyY2hlcy1zaW1wbGlmaWVlcy5mcoIddGVzdC5kZW1hcmNoZXMtc2ltcGxpZmllZXMuZnKCHnN0YXRzLmRlbWFyY2hlcy1zaW1wbGlmaWVlcy5mcoIYZGVtYXJjaGVzLXNpbXBsaWZpZWVzLmZyghxhcGkuZGVtYXJjaGVzLXNpbXBsaWZpZWVzLmZygh1ibG9nLmRlbWFyY2hlcy1zaW1wbGlmaWVlcy5mcoIcY2RuLmRlbWFyY2hlcy1zaW1wbGlmaWVlcy5mcoIbcHIuZGVtYXJjaGVzLXNpbXBsaWZpZWVzLmZyghx3d3cuZGVtYXJjaGVzLXNpbXBsaWZpZWVzLmZyghxkZXYuZGVtYXJjaGVzLXNpbXBsaWZpZWVzLmZygh9hc3NldHMuZGVtYXJjaGVzLXNpbXBsaWZpZWVzLmZyMB0GA1UdDgQWBBTWfZWSXztJG6ZmNXYiSQGcmQ5ngjCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGM+GEgTgAABAMARzBFAiA2unBUzE098udyO13s2eW1Og2NJQPjFLOau2t1LCzEDgIhAOSvAlCdPNCN2mbwcNNCrNMf9HQ0+iIIpzrCGmCbX6nqAHYAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGM+GEgmgAABAMARzBFAiANABLiCoYvPbdWN3hisL6TE3Zaw934FYBCuyraceUtfwIhALDlFEYaTa2xYmYPN5RR4akmHDA9VgHUT3oYnfei8CvKAHUAouMK5EXvva2bfjjtR2d3U9eCW4SU1yteGyzEuVCkR+cAAAGM+GEl6QAABAMARjBEAiApQ/wWCqXsQxNzd1r54rNPQS+tf+STuzdWhrsM8fnVgwIgC0shsEqhkopcbBf5bg3TgVyvPNWZBzr/XghAb6oz3GMwDQYJKoZIhvcNAQELBQADggIBAAE8oM7dKX67sZxZU4b6UXQRQ72ZwyT/AwzMwiUoGuHLIkwshgGVJesZISzWU4L03Gq8zCKB0HeityJPQqrucVT31KSKaXbx4ZlBPLSg+9VQ0/5jExHWEYVHMZXnOA1WB82+9/6wr0bDKq6N39K42/D2V+DdJ2QiNL6Pj40cllUYp3prZLKsX+xIxBH6CxzDzz8Ny4vfbn5EvzZtOqC7lSFSkwJyNZw/FgpfDbaIIkeo37TyN1vrHma7xP1x6/EvlSRqKaw0PecT/ptlw9UfGZP4tkLhxg04lARuo9BwBn0huP2HF2EGRnHjVY6LCzPPqNMAcBQBWy2ihTPx00BtyrZ5ZWCOlevlM5N1X6OyHuMu8dLeweKuKQA0HPEWTJlAiM/Met3XHtCQwh2ZOSVG1EMXEmmWYFN7HPdrHx5XPe3BbrJuqkf5EvAKsHpuLTaWyKg/VwmA6/P98rlEP36w3+Yrsz91620wrPZ58+bWKq6bHaa7P7FSkSsmsl9irMxy4/zPKQ9wy34a04petPF6t5FI8LcbZxDIVTMwrjDRzIw/OsdqvRfgmvpbUNv3LYTmCk+DlZaM06ggpTt2bw8ojmTacfNs5YpRpeZHSzrwb2DJkcZBqIhS4BGye7k7aPLyVzkOcR6qMLykZQHEJ4UVaTiS3jcK7mbBougOmxpwTiBC\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -343294,7 +339323,7 @@ "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "storage.demarches-simplifiees.fr static.demarches-simplifiees.fr docs.demarches-simplifiees.fr storage.dev.demarches-simplifiees.fr demarches-simplifiees.fr pr.demarches-simplifiees.fr test.demarches-simplifiees.fr www.demarches-simplifiees.fr mail.demarches-simplifiees.fr cdn.demarches-simplifiees.fr assets.demarches-simplifiees.fr admin.demarches-simplifiees.fr qa.demarches-simplifiees.fr api.demarches-simplifiees.fr blog.demarches-simplifiees.fr tartiflette.demarches-simplifiees.fr forum.demarches-simplifiees.fr stats.demarches-simplifiees.fr dev.demarches-simplifiees.fr" + "finding": "docs.demarches-simplifiees.fr qa.demarches-simplifiees.fr admin.demarches-simplifiees.fr static.demarches-simplifiees.fr test.demarches-simplifiees.fr stats.demarches-simplifiees.fr demarches-simplifiees.fr api.demarches-simplifiees.fr blog.demarches-simplifiees.fr cdn.demarches-simplifiees.fr pr.demarches-simplifiees.fr www.demarches-simplifiees.fr dev.demarches-simplifiees.fr assets.demarches-simplifiees.fr" }, { "id": "cert_trust", @@ -343321,22 +339350,22 @@ "id": "cert_expirationStatus", "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", - "severity": "HIGH", - "finding": "expires < 30 days (16)" + "severity": "OK", + "finding": "361 >= 60 days" }, { "id": "cert_notBefore", "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "2023-01-16 23:00" + "finding": "2024-01-10 23:00" }, { "id": "cert_notAfter", "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", - "severity": "HIGH", - "finding": "2024-01-16 22:59" + "severity": "OK", + "finding": "2025-01-09 22:59" }, { "id": "cert_extlifeSpan", @@ -343518,14 +339547,14 @@ "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "1704020233" + "finding": "1705231619" }, { "id": "HSTS_time", @@ -343761,7 +339790,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=3F980A4EAEB3B19E81953D7E76F29AF095477A54E60F484B28636B0A3275623C" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=764C34F2DA93DD889D0093BD0FBCB3D45803281953C120C67DA54A812CD0B336" }, { "id": "LOGJAM", @@ -344144,7 +340173,7 @@ "ip": "www.demarches-simplifiees.fr/176.31.79.200", "port": "443", "severity": "INFO", - "finding": "59" + "finding": "104" } ], "thirdparties": { @@ -344160,7 +340189,7 @@ "value": "1", "domain": ".www.demarches-simplifiees.fr", "path": "/", - "expires": 1704021975, + "expires": 1705233326, "size": 16, "httpOnly": false, "secure": false, @@ -344172,10 +340201,10 @@ }, { "name": "_pk_id.73.dc9f", - "value": "235995943fd9566e.1704020175.", + "value": "7b007ba45390b4e0.1705231526.", "domain": ".www.demarches-simplifiees.fr", "path": "/", - "expires": 1737975375, + "expires": 1739186726, "size": 42, "httpOnly": false, "secure": false, @@ -344187,7 +340216,7 @@ }, { "name": "_DS_session", - "value": "9bGSLnTXtJBcW%2FwT96rBN3qrc8rX%2ByZRnExTtxsG%2BOkpkxW6pYcBghfaPG51qrXmIyi1lwslV3qPgAa57hyTPi9TkS9hHLNu08iCnNXiCRVVok76wIPIK%2FF7VkJrgtcqy75sDCrU1S1dlfzFYhn0TuFMAewchW9M%2BviuwuRwpUY2nWyQniMoOVO6r2mlC%2FJdFKG59YrkhrEdZKTyDQ9YxPlzeBbbeSkAsS6y9S%2BSTEkGSz9mBhZ3RFzw5Pe%2BXsvi0IQOfohyDM5i6m6iYQ2iZjm4oQ%3D%3D--2nCohWVX1ZqQL6As--NEIyFMa7iUJ4IaD76txfmw%3D%3D", + "value": "GhADuvMxiTebRLDplq%2BY2HtK6XJkSs18dKQ1kkmQoK2kEJi%2FPtxhBTrL%2BbiqgR%2B3gxOq28jUS%2B4J9rhJduBXpEsEVd0KX6j9qXEiREajtCLNjZMYa9koPRfMUQOY37lpL2epDhYZ1d6t%2BjY7OkmvX7iuY4fBkZoQtPqUgIt4JbhDQFVkXVn6U8TSPXzNqmlgLIlkf8W3KqzmKTnc6MF2DybM5Ed99NjCZNwtWau4I5w49nHHoZ2AMOnisCgiRAFJlYjqBx35VXIuxhcJhrCaMWZvZg%3D%3D--4AIf0%2BVoUcWVRRJd--rZaJ3%2Fp47h9FggaOKnt8nQ%3D%3D", "domain": "www.demarches-simplifiees.fr", "path": "/", "expires": -1, @@ -344202,10 +340231,10 @@ }, { "name": "_csrf_token", - "value": "eyJfcmFpbHMiOnsibWVzc2FnZSI6IkluWjBObU5JVjA1Vll6TlBUV1JUY0c1SFIzTmZXRmhSZWpkWFJVWldhVXhtUTBWR1JrRkJkRU5HWlRnaSIsImV4cCI6IjIwMjQtMTItMzFUMTA6NTY6MTAuOTk1WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--2a8be28942b98ef54a3f19a56c14138c707b3b66", + "value": "eyJfcmFpbHMiOnsibWVzc2FnZSI6IklrZFVWVUZwWmpOaVFXaE1WMFZhVDNOQ05GZDVkM0ZLTUdKNWFWaGFRVlpFTTBSbVVYZFFkRVpTVkRRaSIsImV4cCI6IjIwMjUtMDEtMTRUMTE6MjU6MjEuNTc3WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--da6da213b0772267ac85fd8e5e91563ddc64ccb2", "domain": "www.demarches-simplifiees.fr", "path": "/", - "expires": 1735642570.050095, + "expires": 1736853921.662801, "size": 253, "httpOnly": true, "secure": false, @@ -344221,19 +340250,19 @@ "content-encoding": "gzip", "content-security-policy": "img-src 'self' data: blob: *.openstreetmap.org *.cloud.ovh.net * static.demarches-simplifiees.fr stats.data.gouv.fr; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com code.jquery.com unpkg.com stats.data.gouv.fr; style-src 'self' 'unsafe-inline' *.crisp.chat crisp.chat cdn.jsdelivr.net maxcdn.bootstrapcdn.com unpkg.com; connect-src 'self' wss://*.crisp.chat *.crisp.chat app.franceconnect.gouv.fr openmaptiles.geo.data.gouv.fr openmaptiles.github.io tiles.geo.api.gouv.fr wxs.ign.fr www.demarches-simplifiees.fr sentry.io static.demarches-simplifiees.fr api-adresse.data.gouv.fr data.education.gouv.fr geo.api.gouv.fr stats.data.gouv.fr; frame-src 'self' stats.data.gouv.fr; default-src 'self' data: blob: 'report-sample' fonts.gstatic.com in-automate.sendinblue.com player.vimeo.com app.franceconnect.gouv.fr *.crisp.chat crisp.chat *.crisp.help *.sibautomation.com sibautomation.com data sentry.io static.demarches-simplifiees.fr; report-uri https://demarchessimplifieestest.report-uri.com/r/d/csp/reportOnly", "content-type": "text/html; charset=utf-8", - "date": "Sun, 31 Dec 2023 10:56:11 GMT", - "etag": "W/\"4973f6715c0473fedefbc153b89db82c\"", - "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", + "date": "Sun, 14 Jan 2024 11:25:21 GMT", + "etag": "W/\"3eba3cfc3440d1ce60e581393de8641b\"", + "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=font; type=font/woff2; crossorigin=anonymous,; rel=preload; as=font; type=font/ttf; crossorigin=anonymous,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", "server": "nginx", - "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IkluWjBObU5JVjA1Vll6TlBUV1JUY0c1SFIzTmZXRmhSZWpkWFJVWldhVXhtUTBWR1JrRkJkRU5HWlRnaSIsImV4cCI6IjIwMjQtMTItMzFUMTA6NTY6MTAuOTk1WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--2a8be28942b98ef54a3f19a56c14138c707b3b66; path=/; expires=Tue, 31 Dec 2024 10:56:10 GMT; HttpOnly; SameSite=Lax\n_DS_session=9bGSLnTXtJBcW%2FwT96rBN3qrc8rX%2ByZRnExTtxsG%2BOkpkxW6pYcBghfaPG51qrXmIyi1lwslV3qPgAa57hyTPi9TkS9hHLNu08iCnNXiCRVVok76wIPIK%2FF7VkJrgtcqy75sDCrU1S1dlfzFYhn0TuFMAewchW9M%2BviuwuRwpUY2nWyQniMoOVO6r2mlC%2FJdFKG59YrkhrEdZKTyDQ9YxPlzeBbbeSkAsS6y9S%2BSTEkGSz9mBhZ3RFzw5Pe%2BXsvi0IQOfohyDM5i6m6iYQ2iZjm4oQ%3D%3D--2nCohWVX1ZqQL6As--NEIyFMa7iUJ4IaD76txfmw%3D%3D; path=/; HttpOnly; SameSite=Lax", + "set-cookie": "_csrf_token=eyJfcmFpbHMiOnsibWVzc2FnZSI6IklrZFVWVUZwWmpOaVFXaE1WMFZhVDNOQ05GZDVkM0ZLTUdKNWFWaGFRVlpFTTBSbVVYZFFkRVpTVkRRaSIsImV4cCI6IjIwMjUtMDEtMTRUMTE6MjU6MjEuNTc3WiIsInB1ciI6ImNvb2tpZS5fY3NyZl90b2tlbiJ9fQ%3D%3D--da6da213b0772267ac85fd8e5e91563ddc64ccb2; path=/; expires=Tue, 14 Jan 2025 11:25:21 GMT; HttpOnly; SameSite=Lax\n_DS_session=GhADuvMxiTebRLDplq%2BY2HtK6XJkSs18dKQ1kkmQoK2kEJi%2FPtxhBTrL%2BbiqgR%2B3gxOq28jUS%2B4J9rhJduBXpEsEVd0KX6j9qXEiREajtCLNjZMYa9koPRfMUQOY37lpL2epDhYZ1d6t%2BjY7OkmvX7iuY4fBkZoQtPqUgIt4JbhDQFVkXVn6U8TSPXzNqmlgLIlkf8W3KqzmKTnc6MF2DybM5Ed99NjCZNwtWau4I5w49nHHoZ2AMOnisCgiRAFJlYjqBx35VXIuxhcJhrCaMWZvZg%3D%3D--4AIf0%2BVoUcWVRRJd--rZaJ3%2Fp47h9FggaOKnt8nQ%3D%3D; path=/; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=63072000", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "c29ceada-1ea7-43cd-ade3-1f3985f8e712", - "x-runtime": "0.039449", + "x-request-id": "1f3a884f-211e-49b2-a900-d6fa19712be0", + "x-runtime": "0.102202", "x-xss-protection": "0" }, "endpoints": [ @@ -344316,7 +340345,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -344366,7 +340397,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -344390,7 +340421,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -344592,24 +340623,6 @@ ], "rootPath": true }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, { "slug": "sendinblue", "name": "Sendinblue", @@ -344633,6 +340646,24 @@ ], "rootPath": true }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, { "slug": "vite", "name": "Vite", @@ -344656,7 +340687,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 31 Dec 2023 10:55:27", + "@generated": "Sun, 14 Jan 2024 11:24:12", "site": [ { "@name": "https://www.demarches-simplifiees.fr", @@ -344852,22 +340883,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -344883,26 +340914,30 @@ "type": "dns", "host": "www.demarches-simplifiees.fr.", "matched-at": "www.demarches-simplifiees.fr", - "timestamp": "2023-12-31T10:58:36.27698838Z", + "extracted-results": [ + "\"l|fr\"", + "\"3|welcome\"" + ], + "timestamp": "2024-01-14T11:28:48.587549055Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -344918,11 +340953,7 @@ "type": "dns", "host": "www.demarches-simplifiees.fr.", "matched-at": "www.demarches-simplifiees.fr", - "extracted-results": [ - "\"l|fr\"", - "\"3|welcome\"" - ], - "timestamp": "2023-12-31T10:58:36.293783829Z", + "timestamp": "2024-01-14T11:28:48.627683588Z", "matcher-status": true }, { @@ -344959,10 +340990,10 @@ "host": "www.demarches-simplifiees.fr.", "matched-at": "www.demarches-simplifiees.fr", "extracted-results": [ - "10 mx3.mail.ovh.net.", - "1 mx4.mail.ovh.net." + "1 mx4.mail.ovh.net.", + "10 mx3.mail.ovh.net." ], - "timestamp": "2023-12-31T10:58:36.295380117Z", + "timestamp": "2024-01-14T11:28:49.584979024Z", "matcher-status": true }, { @@ -345001,7 +341032,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:58:48.483555456Z", + "timestamp": "2024-01-14T11:29:08.866973359Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345032,7 +341063,7 @@ "4248116497b049dea165998d79024565@sentry.io" ], "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:58:48.487082336Z", + "timestamp": "2024-01-14T11:29:08.879298843Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345071,7 +341102,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:58:48.490316749Z", + "timestamp": "2024-01-14T11:29:08.890914893Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345107,7 +341138,7 @@ "https://4248116497b049dea165998d79024565@sentry.io/1429547" ], "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:58:48.513203342Z", + "timestamp": "2024-01-14T11:29:08.925376581Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345134,7 +341165,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:59:13.627719257Z", + "timestamp": "2024-01-14T11:29:49.45044042Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345171,7 +341202,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:59:22.401450136Z", + "timestamp": "2024-01-14T11:30:04.741265746Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345208,7 +341239,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:59:22.401498136Z", + "timestamp": "2024-01-14T11:30:04.741314948Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345245,7 +341276,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:59:22.401517422Z", + "timestamp": "2024-01-14T11:30:04.74133231Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345282,7 +341313,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:59:22.401544232Z", + "timestamp": "2024-01-14T11:30:04.741345254Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345319,7 +341350,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:59:22.401559561Z", + "timestamp": "2024-01-14T11:30:04.74135927Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr'", "matcher-status": true }, @@ -345347,7 +341378,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr/robots.txt", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:59:33.986933576Z", + "timestamp": "2024-01-14T11:30:22.362027701Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr/robots.txt'", "matcher-status": true }, @@ -345375,7 +341406,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr/robots.txt", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:59:34.02171769Z", + "timestamp": "2024-01-14T11:30:22.374011142Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr/robots.txt'", "matcher-status": true }, @@ -345415,7 +341446,7 @@ "host": "https://www.demarches-simplifiees.fr", "matched-at": "https://www.demarches-simplifiees.fr/", "ip": "176.31.79.200", - "timestamp": "2023-12-31T10:59:47.993835735Z", + "timestamp": "2024-01-14T11:30:46.21322766Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.demarches-simplifiees.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.demarches-simplifiees.fr/'", "matcher-status": true }, @@ -345446,7 +341477,7 @@ "DHIMYOTIS" ], "ip": "176.31.79.200", - "timestamp": "2023-12-31T11:01:42.094021715Z", + "timestamp": "2024-01-14T11:32:56.567470815Z", "matcher-status": true }, { @@ -345473,28 +341504,23 @@ "host": "www.demarches-simplifiees.fr", "matched-at": "www.demarches-simplifiees.fr:443", "extracted-results": [ - "cdn.demarches-simplifiees.fr", - "api.demarches-simplifiees.fr", - "tartiflette.demarches-simplifiees.fr", - "forum.demarches-simplifiees.fr", - "stats.demarches-simplifiees.fr", + "docs.demarches-simplifiees.fr", "static.demarches-simplifiees.fr", - "demarches-simplifiees.fr", "test.demarches-simplifiees.fr", - "dev.demarches-simplifiees.fr", - "storage.dev.demarches-simplifiees.fr", - "assets.demarches-simplifiees.fr", - "blog.demarches-simplifiees.fr", - "mail.demarches-simplifiees.fr", - "admin.demarches-simplifiees.fr", + "stats.demarches-simplifiees.fr", + "cdn.demarches-simplifiees.fr", "qa.demarches-simplifiees.fr", - "storage.demarches-simplifiees.fr", + "admin.demarches-simplifiees.fr", "pr.demarches-simplifiees.fr", + "demarches-simplifiees.fr", + "api.demarches-simplifiees.fr", + "blog.demarches-simplifiees.fr", "www.demarches-simplifiees.fr", - "docs.demarches-simplifiees.fr" + "dev.demarches-simplifiees.fr", + "assets.demarches-simplifiees.fr" ], "ip": "176.31.79.200", - "timestamp": "2023-12-31T11:01:42.094156307Z", + "timestamp": "2024-01-14T11:32:56.567600036Z", "matcher-status": true }, { @@ -345525,7 +341551,7 @@ "tls12" ], "ip": "176.31.79.200", - "timestamp": "2023-12-31T11:01:42.330737498Z", + "timestamp": "2024-01-14T11:32:57.213830672Z", "matcher-status": true }, { @@ -345556,7 +341582,7 @@ "tls13" ], "ip": "176.31.79.200", - "timestamp": "2023-12-31T11:01:43.198141695Z", + "timestamp": "2024-01-14T11:32:58.756473147Z", "matcher-status": true } ], @@ -345564,7 +341590,7 @@ { "requestedUrl": "https://www.demarches-simplifiees.fr/", "finalUrl": "https://www.demarches-simplifiees.fr/", - "fetchTime": "2023-12-31T10:55:41.014Z", + "fetchTime": "2024-01-14T11:24:26.299Z", "runWarnings": [], "categories": { "performance": { @@ -345627,53 +341653,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 22057, + "numericValue": 21163, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 11859, - "firstMeaningfulPaint": 11859, - "largestContentfulPaint": 20535, - "interactive": 22057, - "speedIndex": 14618, - "totalBlockingTime": 116, - "maxPotentialFID": 136, + "firstContentfulPaint": 17448, + "firstMeaningfulPaint": 17465, + "largestContentfulPaint": 19565, + "interactive": 21163, + "speedIndex": 17895, + "totalBlockingTime": 100, + "maxPotentialFID": 118, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 258061920, + "observedTimeOriginTs": 296793217, "observedNavigationStart": 0, - "observedNavigationStartTs": 258061920, - "observedFirstPaint": 2603, - "observedFirstPaintTs": 260664640, - "observedFirstContentfulPaint": 2603, - "observedFirstContentfulPaintTs": 260664640, - "observedFirstContentfulPaintAllFrames": 2603, - "observedFirstContentfulPaintAllFramesTs": 260664640, - "observedFirstMeaningfulPaint": 2606, - "observedFirstMeaningfulPaintTs": 260667481, - "observedLargestContentfulPaint": 4051, - "observedLargestContentfulPaintTs": 262112751, - "observedLargestContentfulPaintAllFrames": 4051, - "observedLargestContentfulPaintAllFramesTs": 262112751, - "observedTraceEnd": 6644, - "observedTraceEndTs": 264706180, - "observedLoad": 4210, - "observedLoadTs": 262271848, - "observedDomContentLoaded": 4009, - "observedDomContentLoadedTs": 262071319, + "observedNavigationStartTs": 296793217, + "observedFirstPaint": 4221, + "observedFirstPaintTs": 301014524, + "observedFirstContentfulPaint": 4221, + "observedFirstContentfulPaintTs": 301014524, + "observedFirstContentfulPaintAllFrames": 4221, + "observedFirstContentfulPaintAllFramesTs": 301014524, + "observedFirstMeaningfulPaint": 4268, + "observedFirstMeaningfulPaintTs": 301060726, + "observedLargestContentfulPaint": 4384, + "observedLargestContentfulPaintTs": 301176950, + "observedLargestContentfulPaintAllFrames": 4384, + "observedLargestContentfulPaintAllFramesTs": 301176950, + "observedTraceEnd": 7329, + "observedTraceEndTs": 304122630, + "observedLoad": 5021, + "observedLoadTs": 301814073, + "observedDomContentLoaded": 4244, + "observedDomContentLoadedTs": 301036886, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 2594, - "observedFirstVisualChangeTs": 260655920, - "observedLastVisualChange": 4144, - "observedLastVisualChangeTs": 262205920, - "observedSpeedIndex": 3451, - "observedSpeedIndexTs": 261513372 + "observedFirstVisualChange": 4228, + "observedFirstVisualChangeTs": 301021217, + "observedLastVisualChange": 4561, + "observedLastVisualChangeTs": 301354217, + "observedSpeedIndex": 4348, + "observedSpeedIndexTs": 301141121 }, { "lcpInvalidated": false @@ -345695,19 +341721,19 @@ "numScripts": 10, "numStylesheets": 2, "numFonts": 5, - "numTasks": 980, - "numTasksOver10ms": 8, + "numTasks": 1086, + "numTasksOver10ms": 5, "numTasksOver25ms": 3, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 2.307, - "throughput": 8280188.178404957, - "maxRtt": 83.669, - "maxServerLatency": 1379.4660000000001, - "totalByteWeight": 3940141, - "totalTaskTime": 278.2569999999991, - "mainDocumentTransferSize": 9900 + "rtt": 1.5, + "throughput": 9020700.786410173, + "maxRtt": 151.52100000000002, + "maxServerLatency": 47.283000000000015, + "totalByteWeight": 3940197, + "totalTaskTime": 242.20999999999864, + "mainDocumentTransferSize": 9880 } ] } @@ -345806,8 +341832,8 @@ "nmapGrade": "B", "nmapOpenPortsCount": 3, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-01-16T22:59:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2025-01-09T22:59:00.000Z", "testsslGrade": "T", "cookiesGrade": "C", "cookiesCount": 4, @@ -345839,28 +341865,28 @@ "http": { "url": "https://www.snu.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 12:03:35 GMT", + "end_time": "Sun, 14 Jan 2024 11:37:14 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "841c0ed4f894cf8f-SJC", + "CF-RAY": "845595d3290d15c6-SJC", "Cache-Control": "max-age=0", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 07 Jan 2024 12:03:31 GMT", - "Expires": "Sun, 07 Jan 2024 12:03:31 GMT", - "Last-Modified": "Sun, 07 Jan 2024 10:43:52 GMT", + "Date": "Sun, 14 Jan 2024 11:37:08 GMT", + "Expires": "Sun, 14 Jan 2024 11:37:08 GMT", + "Last-Modified": "Sun, 14 Jan 2024 02:29:22 GMT", "Server": "cloudflare", - "Sozu-Id": "01HKHWX0G13XKZDVCQPVX9M92P", + "Sozu-Id": "01HM3W5R6MKZZ117KSH3DZ9GT3", "Transfer-Encoding": "chunked", "Vary": "X-Forwarded-Proto,Accept-Encoding,User-Agent" }, - "scan_id": 46233549, + "scan_id": 46468081, "score": 0, - "start_time": "Sun, 07 Jan 2024 12:03:28 GMT", + "start_time": "Sun, 14 Jan 2024 11:37:06 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 7, @@ -345900,7 +341926,7 @@ "data": { "handl_ip": { "domain": ".snu.gouv.fr", - "expires": 1707221014, + "expires": 1707824233, "httponly": false, "max-age": null, "path": "/", @@ -345910,7 +341936,7 @@ }, "handl_landing_page": { "domain": ".snu.gouv.fr", - "expires": 1707221014, + "expires": 1707824233, "httponly": false, "max-age": null, "path": "/", @@ -345920,7 +341946,7 @@ }, "handl_url": { "domain": ".snu.gouv.fr", - "expires": 1707221014, + "expires": 1707824233, "httponly": false, "max-age": null, "path": "/", @@ -346321,7 +342347,7 @@ "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -346461,7 +342487,7 @@ "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "MEDIUM", - "finding": "expires < 60 days (48)" + "finding": "expires < 60 days (41)" }, { "id": "cert_notBefore", @@ -346671,7 +342697,7 @@ "ip": "www.snu.gouv.fr/172.67.4.138", "port": "443", "severity": "INFO", - "finding": "1704629096" + "finding": "1705232311" }, { "id": "HSTS", @@ -347224,77 +343250,77 @@ }, { "id": "service", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347302,7 +343328,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347310,7 +343336,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347318,7 +343344,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -347326,7 +343352,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -347334,7 +343360,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -347342,490 +343368,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "97D42003E132552946097F20EF955F5B1CD570AA4372D780033A65EFBE69758D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "2020-08-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "2027-09-30 00:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 <-- GTS Root R1" }, { "id": "intermediate_cert <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", - "finding": "1704629154" + "finding": "1705232369" }, { "id": "HSTS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "max-age=0" }, { "id": "banner_reverseproxy", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -347833,7 +343859,7 @@ }, { "id": "heartbleed", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -347842,7 +343868,7 @@ }, { "id": "CCS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -347851,7 +343877,7 @@ }, { "id": "ticketbleed", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -347860,7 +343886,7 @@ }, { "id": "ROBOT", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -347869,7 +343895,7 @@ }, { "id": "secure_renego", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -347877,7 +343903,7 @@ }, { "id": "secure_client_renego", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -347886,7 +343912,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -347895,7 +343921,7 @@ }, { "id": "BREACH", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -347904,7 +343930,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -347913,14 +343939,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -347929,7 +343955,7 @@ }, { "id": "FREAK", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -347938,7 +343964,7 @@ }, { "id": "DROWN", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -347947,7 +343973,7 @@ }, { "id": "DROWN_hint", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -347956,7 +343982,7 @@ }, { "id": "LOGJAM", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -347965,7 +343991,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -347974,7 +344000,7 @@ }, { "id": "BEAST", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -347983,7 +344009,7 @@ }, { "id": "LUCKY13", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -347992,7 +344018,7 @@ }, { "id": "winshock", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -348001,7 +344027,7 @@ }, { "id": "RC4", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -348010,399 +344036,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "www.snu.gouv.fr/104.22.16.136", + "ip": "www.snu.gouv.fr/104.22.17.136", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -348410,7 +344436,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -348418,7 +344444,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -348426,7 +344452,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -348434,7 +344460,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -348442,7 +344468,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -348450,490 +344476,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "97D42003E132552946097F20EF955F5B1CD570AA4372D780033A65EFBE69758D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "2020-08-13 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "2027-09-30 00:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "GTS CA 1P5 <-- GTS Root R1" }, { "id": "intermediate_cert <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYjCCBEqgAwIBAgIQd70NbNs2+RrqIQ/E8FjTDTANBgkqhkiG9w0BAQsFADBXMQswCQYDVQQGEwJCRTEZMBcGA1UEChMQR2xvYmFsU2lnbiBudi1zYTEQMA4GA1UECxMHUm9vdCBDQTEbMBkGA1UEAxMSR2xvYmFsU2lnbiBSb290IENBMB4XDTIwMDYxOTAwMDA0MloXDTI4MDEyODAwMDA0MlowRzELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMxFDASBgNVBAMTC0dUUyBSb290IFIxMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAthECix7joXebO9y/lD63ladAPKH9gvl9MgaCcfb2jH/76Nu8ai6Xl6OMS/kr9rH5zoQdsfnFl97vufKj6bwSiV6nqlKr+CMny6SxnGPb15l+8Ape62im9MZaRw1NEDPjTrETo8gYbEvs/AmQ351kKSUjB6G00j0uYODP0gmHu81I8E3CwnqIiru6z1kZ1q+PsAewnjHxgsHA3y6mbWwZDrXYfiYaRQM9sHmklCitD38m5agI/pboPGiUU+6DOogrFZYJsuB6jC511pzrp1Zkj5ZPaK49l8KEj8C8QMALXL32h7M1bKwYUH+E4EzNktMg6TO8UpmvMrUpsyUqtEj5cuHKZPfmghCN6J3Cioj6OGaK/GP5Afl4/Xtcd/p2h/rs37EOeZVXtL0m79YB0esWCruOC7XFxYpVq9Os6pFLKcwZpDIlTirxZUTQAs6qzkm06p98g7BAe+dDq6dso499iYH6TKX/1Y7DzkvgtdizjkXPdsDtQCv9Uw+wp9U7DbGKogPeMa3Md+pvez7W35EiEua++tgy/BBjFFFy3l3WFpO9KWgz7zpm7AeKJt8T11dleCfeXkkUAKIAf5qoIbapsZWwpbkNFhHax2xIPEDgfg1azVY80ZcFuctL7TlLnMQ/0lUTbiSw1nH69MG6zO0b9f6BQdgAmD06yK56mDcYBZUCAwEAAaOCATgwggE0MA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTkrysmcRorSCeFL1JmLO/wiRNxPjAfBgNVHSMEGDAWgBRge2YaRQ2XyolQL30EzTSo//z9SzBgBggrBgEFBQcBAQRUMFIwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnBraS5nb29nL2dzcjEwKQYIKwYBBQUHMAKGHWh0dHA6Ly9wa2kuZ29vZy9nc3IxL2dzcjEuY3J0MDIGA1UdHwQrMCkwJ6AloCOGIWh0dHA6Ly9jcmwucGtpLmdvb2cvZ3NyMS9nc3IxLmNybDA7BgNVHSAENDAyMAgGBmeBDAECATAIBgZngQwBAgIwDQYLKwYBBAHWeQIFAwIwDQYLKwYBBAHWeQIFAwMwDQYJKoZIhvcNAQELBQADggEBADSkHrEoo9C0dhemMXoh6dFSPsjbdBZBiLg9NR3t5P+T4Vxfq7vqfM/b5A3Ri1fyJm9bvhdGaJQ3b2t6yMAYN/olUazsaL+yyEn9WprKASOshIArAoyZl+tJaox118fessmXn1hIVw41oeQa1v1vg4Fv74zPl6/AhSrw9U5pCZEt4Wi4wStz6dTZ/CLANx8LZh1J7QJVj2fhMtfTJr9w4z30Z209fOU0iOMy+qduBmpvvYuR7hZL6Dupszfnw0Skfths18dG9ZKb59UhvmaSGZRVbNQpsg3BZlvid0lIKO2d1xozclOzgjXPYovJJIultzkMu34qQb9Sz/yilrbCgj8=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "3EE0278DF71FA3C125C4CD487F01D774694E6FC57E0CD94C24EFD769133918E5" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "2020-06-19 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "2028-01-28 00:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "GTS Root R1 <-- GlobalSign Root CA" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "1704629213" + "finding": "1705232426" }, { "id": "HSTS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "max-age=0" }, { "id": "banner_reverseproxy", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -348941,7 +344967,7 @@ }, { "id": "heartbleed", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -348950,7 +344976,7 @@ }, { "id": "CCS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -348959,7 +344985,7 @@ }, { "id": "ticketbleed", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -348968,7 +344994,7 @@ }, { "id": "ROBOT", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -348977,7 +345003,7 @@ }, { "id": "secure_renego", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -348985,7 +345011,7 @@ }, { "id": "secure_client_renego", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -348994,7 +345020,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -349003,7 +345029,7 @@ }, { "id": "BREACH", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -349012,7 +345038,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -349021,14 +345047,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -349037,7 +345063,7 @@ }, { "id": "FREAK", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -349046,7 +345072,7 @@ }, { "id": "DROWN", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -349055,7 +345081,7 @@ }, { "id": "DROWN_hint", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -349064,7 +345090,7 @@ }, { "id": "LOGJAM", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -349073,7 +345099,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -349082,7 +345108,7 @@ }, { "id": "BEAST", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -349091,7 +345117,7 @@ }, { "id": "LUCKY13", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -349100,7 +345126,7 @@ }, { "id": "winshock", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -349109,7 +345135,7 @@ }, { "id": "RC4", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -349118,332 +345144,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "www.snu.gouv.fr/104.22.17.136", + "ip": "www.snu.gouv.fr/104.22.16.136", "port": "443", "severity": "INFO", - "finding": "177" + "finding": "173" } ], "thirdparties": { @@ -349474,33 +345500,67 @@ }, { "type": "unknown", - "url": "https://tarteaucitron.io/log/?account=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a&domain=www.snu.gouv.fr&status=!adformsnu%3Dfalse!facebookpixel%3Dfalse!snapchat%3Dfalse!googletagmanager%3Dfalse&_time=1704629046276" + "url": "https://tarteaucitron.io/log/?account=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a&domain=www.snu.gouv.fr&status=!adformsnu%3Dfalse!facebookpixel%3Dfalse!snapchat%3Dfalse!googletagmanager%3Dfalse&_time=1705232262942" } ], "cookies": [], "headers": { "cache-control": "max-age=0", "cf-cache-status": "DYNAMIC", - "cf-ray": "841c0fa308f8828c-IAD", + "cf-ray": "84559699c99e05c6-IAD", "content-encoding": "br", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 12:04:03 GMT", - "expires": "Sun, 07 Jan 2024 12:04:03 GMT", - "last-modified": "Sun, 07 Jan 2024 09:40:18 GMT", + "date": "Sun, 14 Jan 2024 11:37:40 GMT", + "expires": "Sun, 14 Jan 2024 11:37:40 GMT", + "last-modified": "Sun, 14 Jan 2024 03:41:00 GMT", "server": "cloudflare", - "sozu-id": "01HKHWVTS90KEF23ME8TP909S5", + "sozu-id": "01HM3W3Q9W968VTEMRTRSP22NF", "vary": "X-Forwarded-Proto,Accept,Accept-Encoding,User-Agent" }, "endpoints": [ { "hostname": "www.snu.gouv.fr", - "ip": "104.22.17.136", + "ip": "172.67.4.138", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -349546,7 +345606,7 @@ } }, "location": { - "accuracy_radius": 1000, + "accuracy_radius": 500, "latitude": 48.8582, "longitude": 2.3387, "time_zone": "Europe/Paris" @@ -349570,19 +345630,13 @@ }, { "hostname": "plausible.io", - "ip": "38.104.169.186", + "ip": "37.19.207.34", "geoip": { "city": { - "geoname_id": 4460243, + "geoname_id": 4744870, "names": { - "de": "Charlotte", - "en": "Charlotte", - "es": "Charlotte", - "fr": "Charlotte", - "ja": "シャーロット", - "pt-BR": "Charlotte", - "ru": "Шарлотт", - "zh-CN": "夏洛特" + "en": "Ashburn", + "ru": "Ашберн" } }, "continent": { @@ -349603,7 +345657,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -349615,40 +345669,39 @@ }, "location": { "accuracy_radius": 20, - "latitude": 35.2316, - "longitude": -80.8428, - "metro_code": 517, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, "time_zone": "America/New_York" }, "postal": { - "code": "28202" + "code": "20149" }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 2635167, + "iso_code": "GB", "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" } }, "subdivisions": [ { - "geoname_id": 4482348, - "iso_code": "NC", + "geoname_id": 6254928, + "iso_code": "VA", "names": { - "en": "North Carolina", - "es": "Carolina del Norte", - "fr": "Caroline du Nord", - "ja": "ノースカロライナ州", - "pt-BR": "Carolina do Norte", - "ru": "Северная Каролина", - "zh-CN": "北卡罗来纳州" + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" } } ] @@ -349662,7 +345715,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -349708,7 +345761,7 @@ } }, "location": { - "accuracy_radius": 1000, + "accuracy_radius": 500, "latitude": 48.8582, "longitude": 2.3387, "time_zone": "Europe/Paris" @@ -350184,7 +346237,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 12:03:03", + "@generated": "Sun, 14 Jan 2024 11:36:41", "site": [ { "@name": "https://www.snu.gouv.fr", @@ -350415,74 +346468,74 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, + "matcher-name": "cloudflare-cdn", "type": "dns", "host": "www.snu.gouv.fr.", "matched-at": "www.snu.gouv.fr", - "timestamp": "2024-01-07T12:08:16.381531296Z", + "extracted-results": [ + "www.snu.gouv.fr.cdn.cloudflare.net." + ], + "timestamp": "2024-01-14T11:41:42.206878302Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, - "matcher-name": "cloudflare-cdn", "type": "dns", "host": "www.snu.gouv.fr.", "matched-at": "www.snu.gouv.fr", - "extracted-results": [ - "www.snu.gouv.fr.cdn.cloudflare.net." - ], - "timestamp": "2024-01-07T12:08:17.375905808Z", + "timestamp": "2024-01-14T11:41:43.329194769Z", "matcher-status": true }, { @@ -350517,10 +346570,10 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/wp-content/plugins/contact-form-7/readme.txt", "extracted-results": [ - "5.8.5" + "5.8.6" ], "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:29.606713622Z", + "timestamp": "2024-01-14T11:41:54.306050981Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/contact-form-7/readme.txt'", "matcher-status": true }, @@ -350560,7 +346613,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:30.294944185Z", + "timestamp": "2024-01-14T11:41:54.999637724Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350592,12 +346645,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652152254Z", + "timestamp": "2024-01-14T11:42:22.84635212Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350629,12 +346682,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652202748Z", + "timestamp": "2024-01-14T11:42:22.846401673Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350666,12 +346719,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "content-security-policy", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652218297Z", + "timestamp": "2024-01-14T11:42:22.846417362Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350703,12 +346756,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.65223065Z", + "timestamp": "2024-01-14T11:42:22.846430797Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350740,12 +346793,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652258763Z", + "timestamp": "2024-01-14T11:42:22.84644329Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350777,12 +346830,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "clear-site-data", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652274823Z", + "timestamp": "2024-01-14T11:42:22.846460603Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350814,12 +346867,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652291724Z", + "timestamp": "2024-01-14T11:42:22.846495067Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350851,12 +346904,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652306973Z", + "timestamp": "2024-01-14T11:42:22.846523309Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350888,12 +346941,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652323293Z", + "timestamp": "2024-01-14T11:42:22.8465507Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350925,12 +346978,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-frame-options", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652340886Z", + "timestamp": "2024-01-14T11:42:22.846578643Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350962,12 +347015,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:08:58.652355984Z", + "timestamp": "2024-01-14T11:42:22.846606404Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -350999,60 +347052,10 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/readme.html", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:06.053592016Z", + "timestamp": "2024-01-14T11:42:29.350912219Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/readme.html'", "matcher-status": true }, - { - "template": "http/misconfiguration/missing-sri.yaml", - "template-url": "https://templates.nuclei.sh/public/missing-sri", - "template-id": "missing-sri", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", - "info": { - "name": "Missing Subresource Integrity", - "author": [ - "lucky0x0d", - "pulsesecurity.co.nz" - ], - "tags": [ - "compliance", - "js", - "sri", - "misconfig" - ], - "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr/", - "extracted-results": [ - "https://tarteaucitron.io/load.js?locale=fr&iswordpress=true&domain=www.snu.gouv.fr&uuid=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a", - "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/app.min.js", - "https://www.snu.gouv.fr/wp-content/cache/min/1/wp-content/plugins/handl-utm-grabber/js/handl-utm-grabber.js?ver=1701768835", - "https://plausible.io/js/script.js", - "https://www.snu.gouv.fr/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.4.2", - "https://www.snu.gouv.fr/wp-includes/js/jquery/jquery.min.js?ver=3.7.1", - "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/init.min.js", - "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/plugins.min.js", - "https://www.snu.gouv.fr/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js", - "https://www.snu.gouv.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1", - "https://www.snu.gouv.fr/wp-content/cache/min/1/wp-content/plugins/handl-utm-grabber/js/js.cookie.js?ver=1701768835", - "https://www.snu.gouv.fr/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17", - "https://www.snu.gouv.fr/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.4.2", - "https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317" - ], - "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:12.921117909Z", - "curl-command": "curl -X 'GET' -d '' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/'", - "matcher-status": true - }, { "template": "http/misconfiguration/cloudflare-image-ssrf.yaml", "template-url": "https://templates.nuclei.sh/public/cloudflare-external-image-resize", @@ -351079,19 +347082,19 @@ }, "type": "http", "host": "https://www.snu.gouv.fr", - "matched-at": "https://www.snu.gouv.fr/cdn-cgi/image/width/https://cmd98cec4pgn883suabgox7ms6ykqh5qa.oast.live", + "matched-at": "https://www.snu.gouv.fr/cdn-cgi/image/width/https://cmhsgtum7tin88tvv620wswgb3orouyyq.oast.pro", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:13.632104952Z", + "timestamp": "2024-01-14T11:42:34.779723874Z", "interaction": { "protocol": "http", - "unique-id": "cmd98cec4pgn883suabgox7ms6ykqh5qa", - "full-id": "cmd98cec4pgn883suabgox7ms6ykqh5qa", - "raw-request": "GET / HTTP/2.0\r\nHost: cmd98cec4pgn883suabgox7ms6ykqh5qa.oast.live\r\nAccept: image/jpeg,image/png,image/gif;q=0.1,image/*;q=0.1\r\nAccept-Encoding: gzip\r\nCf-Connecting-Ip: 2a06:98c0:3600::103\r\nCf-Ew-Via: 15\r\nCf-Ray: 841c171cf46f87a0-SIN\r\nCf-Visitor: {\"scheme\":\"https\"}\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nVia: 1.1 image-resizing-proxy\r\nX-Forwarded-For: 2a06:98c0:3600::103,2a06:98c0:3600::103\r\nX-Forwarded-Proto: https\r\n\r\n", - "raw-response": "HTTP/1.1 200 OK\r\nConnection: close\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Headers: Content-Type, Authorization\r\nAccess-Control-Allow-Origin: *\r\nContent-Type: text/html; charset=utf-8\r\nServer: oast.live\r\nX-Interactsh-Version: 1.1.8\r\n\r\naq5hqky6sm7xogbaus388ngp4cec89dmc", - "remote-address": "172.70.189.31", - "timestamp": "2024-01-07T12:09:09.93526664Z" + "unique-id": "cmhsgtum7tin88tvv620wswgb3orouyyq", + "full-id": "cmhsgtum7tin88tvv620wswgb3orouyyq", + "raw-request": "GET / HTTP/2.0\r\nHost: cmhsgtum7tin88tvv620wswgb3orouyyq.oast.pro\r\nAccept: image/jpeg,image/png,image/gif;q=0.1,image/*;q=0.1\r\nAccept-Encoding: gzip\r\nCf-Connecting-Ip: 2a06:98c0:3600::103\r\nCf-Ew-Via: 15\r\nCf-Ray: 84559dc713203f65-SIN\r\nCf-Visitor: {\"scheme\":\"https\"}\r\nUser-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)\r\nVia: 1.1 image-resizing-proxy\r\nX-Forwarded-For: 2a06:98c0:3600::103,2a06:98c0:3600::103\r\nX-Forwarded-Proto: https\r\n\r\n", + "raw-response": "HTTP/1.1 200 OK\r\nConnection: close\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Headers: Content-Type, Authorization\r\nAccess-Control-Allow-Origin: *\r\nContent-Type: text/html; charset=utf-8\r\nServer: oast.pro\r\nX-Interactsh-Version: 1.1.8\r\n\r\nqyyuoro3bgwsw026vvt88nit7mutgshmc", + "remote-address": "162.158.189.50", + "timestamp": "2024-01-14T11:42:34.114929832Z" }, - "curl-command": "curl -X 'GET' -d '' -H 'Accept: */*' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/cdn-cgi/image/width/https://cmd98cec4pgn883suabgox7ms6ykqh5qa.oast.live'", + "curl-command": "curl -X 'GET' -d '' -H 'Accept: */*' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/cdn-cgi/image/width/https://cmhsgtum7tin88tvv620wswgb3orouyyq.oast.pro'", "matcher-status": true }, { @@ -351124,10 +347127,60 @@ "WordPress 6.4.2" ], "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:13.804420564Z", + "timestamp": "2024-01-14T11:42:36.750424339Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, + { + "template": "http/misconfiguration/missing-sri.yaml", + "template-url": "https://templates.nuclei.sh/public/missing-sri", + "template-id": "missing-sri", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/missing-sri.yaml", + "info": { + "name": "Missing Subresource Integrity", + "author": [ + "lucky0x0d", + "pulsesecurity.co.nz" + ], + "tags": [ + "compliance", + "js", + "sri", + "misconfig" + ], + "description": "Checks if script tags within the HTML response have Subresource Integrity implemented via the integrity attribute\n", + "reference": [ + "https://cheatsheetseries.owasp.org/cheatsheets/third_party_javascript_management_cheat_sheet.html#subresource-integrity" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://www.snu.gouv.fr", + "matched-at": "https://www.snu.gouv.fr/", + "extracted-results": [ + "https://tarteaucitron.io/load.js?locale=fr&iswordpress=true&domain=www.snu.gouv.fr&uuid=116fc2aaf9a8e635ee3bd10f2d6999d8b768651a", + "https://www.snu.gouv.fr/wp-includes/js/jquery/jquery.min.js?ver=3.7.1", + "https://www.snu.gouv.fr/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17", + "https://www.snu.gouv.fr/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.4.2", + "https://www.snu.gouv.fr/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js", + "https://www.snu.gouv.fr/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1", + "https://plausible.io/js/script.js", + "https://www.snu.gouv.fr/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.4.2", + "https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317", + "https://www.snu.gouv.fr/wp-content/cache/min/1/wp-content/plugins/handl-utm-grabber/js/js.cookie.js?ver=1704792035", + "https://www.snu.gouv.fr/wp-content/cache/min/1/wp-content/plugins/handl-utm-grabber/js/handl-utm-grabber.js?ver=1704792035", + "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/init.min.js", + "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/plugins.min.js", + "https://www.snu.gouv.fr/wp-content/themes/uncode/library/js/app.min.js" + ], + "ip": "104.22.16.136", + "timestamp": "2024-01-14T11:42:37.046845717Z", + "curl-command": "curl -X 'GET' -d '' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/'", + "matcher-status": true + }, { "template": "http/technologies/tech-detect.yaml", "template-url": "https://templates.nuclei.sh/public/tech-detect", @@ -351151,7 +347204,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:14.998089191Z", + "timestamp": "2024-01-14T11:42:38.001366151Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -351178,7 +347231,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:14.998124196Z", + "timestamp": "2024-01-14T11:42:38.001404473Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -351205,7 +347258,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:14.998134625Z", + "timestamp": "2024-01-14T11:42:38.001422997Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -351246,7 +347299,7 @@ "last_version": "1.11.9" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:19.17157324Z", + "timestamp": "2024-01-14T11:42:42.761453847Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/adminimize/readme.txt'", "matcher-status": true }, @@ -351281,12 +347334,12 @@ ] } }, - "matcher-name": "cloudflare", + "matcher-name": "apachegeneric", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:19.252389201Z", + "timestamp": "2024-01-14T11:42:42.780538999Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/'", "matcher-status": true }, @@ -351321,12 +347374,12 @@ ] } }, - "matcher-name": "apachegeneric", + "matcher-name": "wordfence", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:19.252426751Z", + "timestamp": "2024-01-14T11:42:42.780570618Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/'", "matcher-status": true }, @@ -351361,12 +347414,12 @@ ] } }, - "matcher-name": "wordfence", + "matcher-name": "cloudflare", "type": "http", "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:19.252444514Z", + "timestamp": "2024-01-14T11:42:42.780588501Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.snu.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/'", "matcher-status": true }, @@ -351404,7 +347457,7 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr", "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:19.260014396Z", + "timestamp": "2024-01-14T11:42:42.859183032Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr'", "matcher-status": true }, @@ -351445,7 +347498,7 @@ "last_version": "4.12.2" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:19.576426201Z", + "timestamp": "2024-01-14T11:42:43.108298012Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/cloudflare/readme.txt'", "matcher-status": true }, @@ -351486,7 +347539,7 @@ "last_version": "1.2.6.7" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:19.695835724Z", + "timestamp": "2024-01-14T11:42:43.206848671Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/contact-form-cfdb7/readme.txt'", "matcher-status": true }, @@ -351527,7 +347580,7 @@ "last_version": "1.1.36" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:20.319551579Z", + "timestamp": "2024-01-14T11:42:43.927736485Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/header-footer-code-manager/readme.txt'", "matcher-status": true }, @@ -351569,7 +347622,7 @@ "last_version": "2.1.3" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:20.505336583Z", + "timestamp": "2024-01-14T11:42:43.96282599Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/imagify/readme.txt'", "matcher-status": true }, @@ -351611,7 +347664,7 @@ "last_version": "5.3.10" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:21.165610111Z", + "timestamp": "2024-01-14T11:42:44.570508411Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/redirection/readme.txt'", "matcher-status": true }, @@ -351652,7 +347705,7 @@ "last_version": "1.7.9" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:21.419804095Z", + "timestamp": "2024-01-14T11:42:44.780460705Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/taxonomy-terms-order/readme.txt'", "matcher-status": true }, @@ -351688,13 +347741,13 @@ "host": "https://www.snu.gouv.fr", "matched-at": "https://www.snu.gouv.fr/wp-content/plugins/wordpress-seo/readme.txt", "extracted-results": [ - "21.7" + "21.8" ], "meta": { "last_version": "21.5" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:21.777039182Z", + "timestamp": "2024-01-14T11:42:45.093192387Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/wordpress-seo/readme.txt'", "matcher-status": true }, @@ -351736,7 +347789,7 @@ "last_version": "7.10.7" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:21.84997774Z", + "timestamp": "2024-01-14T11:42:45.16744846Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/wordfence/readme.txt'", "matcher-status": true }, @@ -351778,7 +347831,7 @@ "last_version": "3.10.0" }, "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:09:21.952901152Z", + "timestamp": "2024-01-14T11:42:45.228975243Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.snu.gouv.fr/wp-content/plugins/wp-mail-smtp/readme.txt'", "matcher-status": true }, @@ -351809,7 +347862,7 @@ "Google Trust Services LLC" ], "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:15:19.393514927Z", + "timestamp": "2024-01-14T11:48:35.536731092Z", "matcher-status": true }, { @@ -351839,7 +347892,7 @@ "www.snu.gouv.fr" ], "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:15:19.39365082Z", + "timestamp": "2024-01-14T11:48:35.53695542Z", "matcher-status": true }, { @@ -351870,7 +347923,7 @@ "tls12" ], "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:15:19.895605227Z", + "timestamp": "2024-01-14T11:48:35.763914423Z", "matcher-status": true }, { @@ -351901,7 +347954,7 @@ "tls13" ], "ip": "104.22.16.136", - "timestamp": "2024-01-07T12:15:19.952067267Z", + "timestamp": "2024-01-14T11:48:35.792646547Z", "matcher-status": true } ], @@ -351909,7 +347962,7 @@ { "requestedUrl": "https://www.snu.gouv.fr/", "finalUrl": "https://www.snu.gouv.fr/", - "fetchTime": "2024-01-07T12:03:16.994Z", + "fetchTime": "2024-01-14T11:36:55.528Z", "runWarnings": [], "categories": { "performance": { @@ -351920,7 +347973,7 @@ "snapshot" ], "id": "performance", - "score": 0.6481098175048828 + "score": 0.6480928421020508 }, "accessibility": { "title": "Accessibility", @@ -351972,53 +348025,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7373, + "numericValue": 7333, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2427, - "firstMeaningfulPaint": 2427, - "largestContentfulPaint": 4137, - "interactive": 7373, - "speedIndex": 5351, - "totalBlockingTime": 318, - "maxPotentialFID": 234, + "firstContentfulPaint": 2445, + "firstMeaningfulPaint": 2445, + "largestContentfulPaint": 16332, + "interactive": 7333, + "speedIndex": 4883, + "totalBlockingTime": 296, + "maxPotentialFID": 255, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 379358679, + "observedTimeOriginTs": 254614174, "observedNavigationStart": 0, - "observedNavigationStartTs": 379358679, - "observedFirstPaint": 635, - "observedFirstPaintTs": 379993908, - "observedFirstContentfulPaint": 635, - "observedFirstContentfulPaintTs": 379993908, - "observedFirstContentfulPaintAllFrames": 635, - "observedFirstContentfulPaintAllFramesTs": 379993908, - "observedFirstMeaningfulPaint": 635, - "observedFirstMeaningfulPaintTs": 379993908, - "observedLargestContentfulPaint": 1018, - "observedLargestContentfulPaintTs": 380377177, - "observedLargestContentfulPaintAllFrames": 1018, - "observedLargestContentfulPaintAllFramesTs": 380377177, - "observedTraceEnd": 3965, - "observedTraceEndTs": 383324066, - "observedLoad": 1404, - "observedLoadTs": 380762588, - "observedDomContentLoaded": 1370, - "observedDomContentLoadedTs": 380728339, + "observedNavigationStartTs": 254614174, + "observedFirstPaint": 602, + "observedFirstPaintTs": 255216252, + "observedFirstContentfulPaint": 618, + "observedFirstContentfulPaintTs": 255232200, + "observedFirstContentfulPaintAllFrames": 618, + "observedFirstContentfulPaintAllFramesTs": 255232200, + "observedFirstMeaningfulPaint": 618, + "observedFirstMeaningfulPaintTs": 255232200, + "observedLargestContentfulPaint": 953, + "observedLargestContentfulPaintTs": 255567405, + "observedLargestContentfulPaintAllFrames": 953, + "observedLargestContentfulPaintAllFramesTs": 255567405, + "observedTraceEnd": 3446, + "observedTraceEndTs": 258060042, + "observedLoad": 882, + "observedLoadTs": 255495942, + "observedDomContentLoaded": 819, + "observedDomContentLoadedTs": 255433132, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 642, - "observedFirstVisualChangeTs": 380000679, - "observedLastVisualChange": 1976, - "observedLastVisualChangeTs": 381334679, - "observedSpeedIndex": 1509, - "observedSpeedIndexTs": 380867265 + "observedFirstVisualChange": 625, + "observedFirstVisualChangeTs": 255239174, + "observedLastVisualChange": 1392, + "observedLastVisualChangeTs": 256006174, + "observedSpeedIndex": 1151, + "observedSpeedIndexTs": 255764936 }, { "lcpInvalidated": false @@ -352040,19 +348093,19 @@ "numScripts": 17, "numStylesheets": 1, "numFonts": 4, - "numTasks": 1166, - "numTasksOver10ms": 13, - "numTasksOver25ms": 5, - "numTasksOver50ms": 2, + "numTasks": 1112, + "numTasksOver10ms": 11, + "numTasksOver25ms": 4, + "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 5.332999999999999, - "throughput": 78587246.3512379, - "maxRtt": 83.579, - "maxServerLatency": 37.303999999999995, - "totalByteWeight": 2893494, - "totalTaskTime": 547.3999999999978, - "mainDocumentTransferSize": 90654 + "rtt": 1.5789999999999997, + "throughput": 79355874.21623513, + "maxRtt": 84.34299999999999, + "maxServerLatency": 32.187, + "totalByteWeight": 2893583, + "totalTaskTime": 464.7189999999982, + "mainDocumentTransferSize": 90476 } ] } @@ -352156,7 +348209,7 @@ "cookiesCount": 0, "trackersGrade": "C", "trackersCount": 7, - "lighthouse_performance": 0.6481098175048828, + "lighthouse_performance": 0.6480928421020508, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", @@ -352182,7 +348235,7 @@ "http": { "url": "https://moncompte.snu.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 12:17:01 GMT", + "end_time": "Sun, 14 Jan 2024 11:50:29 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -352191,7 +348244,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 12:17:00 GMT", + "Date": "Sun, 14 Jan 2024 11:50:28 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -352199,9 +348252,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46233753, + "scan_id": 46468350, "score": 75, - "start_time": "Sun, 07 Jan 2024 12:16:57 GMT", + "start_time": "Sun, 14 Jan 2024 11:50:26 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -352395,77 +348448,77 @@ "testssl": [ { "id": "service", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -352473,7 +348526,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -352481,7 +348534,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -352489,7 +348542,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -352497,7 +348550,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -352505,7 +348558,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -352513,490 +348566,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "04B8401E1435CEBA2DFCC8E5182754818D4C" }, { "id": "cert_serialNumberLen", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "574D53DAE8283D75760CA35CD627BC07076A64BA" }, { "id": "cert_fingerprintSHA256", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "E74BBD4A5EB8CF523420D1C43D79C3C0E27AB4A35C54BEC2B77A2EFB7FE952B0" }, { "id": "cert", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "moncompte.snu.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "moncompte.snu.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "inscription.snu.gouv.fr moncompte.snu.gouv.fr" }, { "id": "cert_trust", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "2023-12-15 05:06" }, { "id": "cert_notAfter", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "2024-03-14 05:06" }, { "id": "cert_extlifeSpan", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", - "finding": "1704629896" + "finding": "1705233142" }, { "id": "HSTS_time", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -353004,7 +349057,7 @@ }, { "id": "heartbleed", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -353013,7 +349066,7 @@ }, { "id": "CCS", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -353022,7 +349075,7 @@ }, { "id": "ticketbleed", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -353031,7 +349084,7 @@ }, { "id": "ROBOT", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -353040,7 +349093,7 @@ }, { "id": "secure_renego", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -353048,7 +349101,7 @@ }, { "id": "secure_client_renego", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -353057,7 +349110,7 @@ }, { "id": "CRIME_TLS", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -353066,7 +349119,7 @@ }, { "id": "BREACH", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -353075,7 +349128,7 @@ }, { "id": "POODLE_SSL", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -353084,14 +349137,14 @@ }, { "id": "fallback_SCSV", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -353100,7 +349153,7 @@ }, { "id": "FREAK", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -353109,7 +349162,7 @@ }, { "id": "DROWN", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -353118,7 +349171,7 @@ }, { "id": "DROWN_hint", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -353127,7 +349180,7 @@ }, { "id": "LOGJAM", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -353136,7 +349189,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -353145,7 +349198,7 @@ }, { "id": "BEAST", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -353154,7 +349207,7 @@ }, { "id": "LUCKY13", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -353163,7 +349216,7 @@ }, { "id": "winshock", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -353172,7 +349225,7 @@ }, { "id": "RC4", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -353181,325 +349234,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "moncompte.snu.gouv.fr/185.179.149.148", + "ip": "moncompte.snu.gouv.fr/185.179.148.148", "port": "443", "severity": "INFO", - "finding": "56" + "finding": "101" } ], "thirdparties": { @@ -353540,10 +349593,10 @@ "cookies": [ { "name": "bln_challengejs", - "value": "IEkhQYSoPEgPFLLbiPcNDvVzA_s2Q2iJtOSjCHi_ADQNT-fhBOBnO5grtdsI0BHnELAEYTvPhWAPpiXUTE8rL-wtZ2TkHylCHxG-FIxUMQo0qQbq_Hdib5wQHy3L_nGrYxu-1DUpNH2gPT9qvSYqJtZfZv-SitTBf_XBWTmonkhqDpP3sNf8VkbdTrwmII_RovdUGvXjtsLlp4D0ietBJOkP7aS48rEmx6nzFcfZ7WdTtkkyB3Anux3kDg5HdHjh", + "value": "wuwWaOUI_laBrCN4kI62gKqWU2BnkBxZoXzVEHrvCAPcPGuE7I2fjpV0YHWHzs6dtdSWjp2XeX2MH4BSqEwuCYRikmfczqt9KOadzmZgfi3a2pVHZRx2VzR75iTD57_ESPr8EkNfsW3PnCJPOKJbHluxlOgx0SY-aMWy9Aj1-CEXp46eF8Usmgl2kzP0ifHd77IH2Mz9GIN8BDTDsX_XGuDBJ9XMPoA-jEEgVnUQ5QgGE5uCF1m32eqPEZm9jE19", "domain": ".snu.gouv.fr", "path": "/", - "expires": 1704630752.579182, + "expires": 1705233961.011709, "size": 271, "httpOnly": false, "secure": false, @@ -353557,12 +349610,12 @@ "cache-control": "public, max-age=0", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 12:17:32 GMT", - "etag": "W/\"11a9-18cda944b7a\"", + "date": "Sun, 14 Jan 2024 11:51:01 GMT", + "etag": "W/\"11a9-18cf8654128\"", "expect-ct": "max-age=0", - "last-modified": "Fri, 05 Jan 2024 17:03:20 GMT", + "last-modified": "Thu, 11 Jan 2024 12:00:34 GMT", "referrer-policy": "no-referrer", - "sozu-id": "01HKHXNA8D34PF309W1AWCV5VN", + "sozu-id": "01HM3WZ590X3XHV680K3V6Q91D", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-dns-prefetch-control": "off", @@ -353574,7 +349627,7 @@ "endpoints": [ { "hostname": "moncompte.snu.gouv.fr", - "ip": "185.179.149.148", + "ip": "185.179.148.148", "geoip": { "continent": { "code": "EU", @@ -353630,7 +349683,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "172.253.115.95", + "ip": "142.250.68.74", "geoip": { "continent": { "code": "NA", @@ -353650,7 +349703,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -353670,7 +349723,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -353684,13 +349737,19 @@ }, { "hostname": "plausible.io", - "ip": "37.19.207.34", + "ip": "143.244.50.89", "geoip": { "city": { - "geoname_id": 4744870, + "geoname_id": 5368361, "names": { - "en": "Ashburn", - "ru": "Ашберн" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -353711,7 +349770,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -353723,22 +349782,22 @@ }, "location": { "accuracy_radius": 20, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 34.0544, + "longitude": -118.2441, + "metro_code": 803, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "20149" + "code": "90060" }, "registered_country": { "geoname_id": 2635167, "iso_code": "GB", "names": { - "de": "Vereinigtes Königreich", + "de": "UK", "en": "United Kingdom", "es": "Reino Unido", - "fr": "Royaume Uni", + "fr": "Royaume-Uni", "ja": "英国", "pt-BR": "Reino Unido", "ru": "Британия", @@ -353747,15 +349806,17 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -353884,7 +349945,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 12:15:06", + "@generated": "Sun, 14 Jan 2024 11:48:44", "site": [ { "@name": "https://moncompte.snu.gouv.fr", @@ -354013,7 +350074,7 @@ "type": "dns", "host": "moncompte.snu.gouv.fr.", "matched-at": "moncompte.snu.gouv.fr", - "timestamp": "2024-01-07T12:19:36.522731042Z", + "timestamp": "2024-01-14T11:54:10.616790582Z", "matcher-status": true }, { @@ -354048,7 +350109,7 @@ "extracted-results": [ "mmlalmlj-snu-app.baleen.cshield.net." ], - "timestamp": "2024-01-07T12:19:36.695889497Z", + "timestamp": "2024-01-14T11:54:11.89706207Z", "matcher-status": true }, { @@ -354087,8 +350148,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:19:48.284790882Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:54:28.568253133Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -354114,8 +350175,8 @@ "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:20:11.635891899Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:55:04.955549708Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -354147,12 +350208,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:20:20.341258799Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:55:19.597781169Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -354184,12 +350245,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:20:20.341346092Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:55:19.597842432Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -354221,12 +350282,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:20:20.341370587Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:55:19.597858542Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -354258,12 +350319,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:20:20.341390455Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:55:19.597871437Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -354295,12 +350356,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:20:20.341408469Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:55:19.597886204Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -354332,12 +350393,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:20:20.341427745Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:55:19.597902795Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -354369,12 +350430,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://moncompte.snu.gouv.fr", "matched-at": "https://moncompte.snu.gouv.fr", - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:20:20.341447993Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:55:19.597917743Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moncompte.snu.gouv.fr'", "matcher-status": true }, @@ -354404,8 +350465,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:22:22.425697978Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:57:48.626456035Z", "matcher-status": true }, { @@ -354435,8 +350496,8 @@ "inscription.snu.gouv.fr", "moncompte.snu.gouv.fr" ], - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:22:22.425820047Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:57:48.626581909Z", "matcher-status": true }, { @@ -354466,8 +350527,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:22:23.874467005Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:57:51.225003251Z", "matcher-status": true }, { @@ -354497,8 +350558,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.231.167.148", - "timestamp": "2024-01-07T12:22:24.052670151Z", + "ip": "185.179.149.148", + "timestamp": "2024-01-14T11:57:51.604817364Z", "matcher-status": true } ], @@ -354506,7 +350567,7 @@ { "requestedUrl": "https://moncompte.snu.gouv.fr/", "finalUrl": "https://moncompte.snu.gouv.fr/auth?disconnected=1", - "fetchTime": "2024-01-07T12:15:20.534Z", + "fetchTime": "2024-01-14T11:49:31.889Z", "runWarnings": [ "The page loaded too slowly to finish within the time limit. Results may be incomplete.", "The page may not be loading as expected because your test URL (https://moncompte.snu.gouv.fr/) was redirected to https://moncompte.snu.gouv.fr/auth?disconnected=1. Try testing the second URL directly." @@ -354520,7 +350581,7 @@ "snapshot" ], "id": "performance", - "score": 0.964457893371582 + "score": 0.9640460968017578 }, "accessibility": { "title": "Accessibility", @@ -354572,53 +350633,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8593, + "numericValue": 8996, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7173, - "firstMeaningfulPaint": 7859, - "largestContentfulPaint": 9630, - "interactive": 8593, - "speedIndex": 7173, - "totalBlockingTime": 863, - "maxPotentialFID": 859, + "firstContentfulPaint": 7198, + "firstMeaningfulPaint": 7629, + "largestContentfulPaint": 10527, + "interactive": 8996, + "speedIndex": 7498, + "totalBlockingTime": 806, + "maxPotentialFID": 887, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 236832751, + "observedTimeOriginTs": 212198463, "observedNavigationStart": 0, - "observedNavigationStartTs": 236832751, - "observedFirstPaint": 301, - "observedFirstPaintTs": 237134199, - "observedFirstContentfulPaint": 592, - "observedFirstContentfulPaintTs": 237424735, - "observedFirstContentfulPaintAllFrames": 592, - "observedFirstContentfulPaintAllFramesTs": 237424735, - "observedFirstMeaningfulPaint": 1047, - "observedFirstMeaningfulPaintTs": 237880086, - "observedLargestContentfulPaint": 1032, - "observedLargestContentfulPaintTs": 237864736, - "observedLargestContentfulPaintAllFrames": 1032, - "observedLargestContentfulPaintAllFramesTs": 237864736, - "observedTraceEnd": 42801, - "observedTraceEndTs": 279633865, - "observedLoad": 514, - "observedLoadTs": 237346794, - "observedDomContentLoaded": 514, - "observedDomContentLoadedTs": 237346409, + "observedNavigationStartTs": 212198463, + "observedFirstPaint": 429, + "observedFirstPaintTs": 212627190, + "observedFirstContentfulPaint": 731, + "observedFirstContentfulPaintTs": 212929239, + "observedFirstContentfulPaintAllFrames": 731, + "observedFirstContentfulPaintAllFramesTs": 212929239, + "observedFirstMeaningfulPaint": 1452, + "observedFirstMeaningfulPaintTs": 213650803, + "observedLargestContentfulPaint": 1598, + "observedLargestContentfulPaintTs": 213796871, + "observedLargestContentfulPaintAllFrames": 1598, + "observedLargestContentfulPaintAllFramesTs": 213796871, + "observedTraceEnd": 41004, + "observedTraceEndTs": 253202881, + "observedLoad": 648, + "observedLoadTs": 212846707, + "observedDomContentLoaded": 648, + "observedDomContentLoadedTs": 212846324, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 7, - "observedFirstVisualChangeTs": 236839751, - "observedLastVisualChange": 11073, - "observedLastVisualChangeTs": 247905751, - "observedSpeedIndex": 1314, - "observedSpeedIndexTs": 238146474 + "observedFirstVisualChange": 9, + "observedFirstVisualChangeTs": 212207463, + "observedLastVisualChange": 11292, + "observedLastVisualChangeTs": 223490463, + "observedSpeedIndex": 1557, + "observedSpeedIndexTs": 213755116 }, { "lcpInvalidated": false @@ -354640,18 +350701,18 @@ "numScripts": 4, "numStylesheets": 6, "numFonts": 2, - "numTasks": 3735, - "numTasksOver10ms": 13, - "numTasksOver25ms": 7, + "numTasks": 3737, + "numTasksOver10ms": 12, + "numTasksOver25ms": 9, "numTasksOver50ms": 3, "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 1.7839999999999998, - "throughput": 13681839.446820464, - "maxRtt": 84.103, - "maxServerLatency": 65.08600000000003, - "totalByteWeight": 1234919, - "totalTaskTime": 1366.334999999998, + "rtt": 8.673, + "throughput": 7504957.720269581, + "maxRtt": 150.97400000000002, + "maxServerLatency": 69.52199999999996, + "totalByteWeight": 1237078, + "totalTaskTime": 1475.0479999999877, "mainDocumentTransferSize": 2072 } ] @@ -354749,7 +350810,7 @@ "cookiesCount": 1, "trackersGrade": "C", "trackersCount": 6, - "lighthouse_performance": 0.964457893371582, + "lighthouse_performance": 0.9640460968017578, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.87, "lighthouse_accessibilityGrade": "A", @@ -354775,7 +350836,7 @@ "http": { "url": "https://admin.snu.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 12:15:59 GMT", + "end_time": "Sun, 14 Jan 2024 11:51:42 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -354784,7 +350845,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 12:15:58 GMT", + "Date": "Sun, 14 Jan 2024 11:51:41 GMT", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", @@ -354792,9 +350853,9 @@ "X-Frame-Options": "DENY", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46233724, + "scan_id": 46468387, "score": 75, - "start_time": "Sun, 07 Jan 2024 12:15:55 GMT", + "start_time": "Sun, 14 Jan 2024 11:51:38 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -354988,77 +351049,77 @@ "testssl": [ { "id": "service", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -355066,7 +351127,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -355074,7 +351135,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -355082,7 +351143,7 @@ }, { "id": "cipherlist_LOW", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -355090,7 +351151,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -355098,7 +351159,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -355106,490 +351167,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'status request/#5' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "0344A2296ACC130D099A77BC0385B5BA5B70" }, { "id": "cert_serialNumberLen", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "3E796ADFF43D1EF64C4FB51C091F4F098890D3BF" }, { "id": "cert_fingerprintSHA256", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "64B9F786C46AB5707FCD08CB6E2800A08B10A62D949E08FF744873229E3DB6A7" }, { "id": "cert", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "admin.snu.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "admin.snu.gouv.fr" }, { "id": "cert_subjectAltName", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "admin.snu.gouv.fr" }, { "id": "cert_trust", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (same w/o SNI)" }, { "id": "cert_chain_of_trust", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "2023-12-15 05:17" }, { "id": "cert_notAfter", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "2024-03-14 05:17" }, { "id": "cert_extlifeSpan", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert_badOCSP", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", - "finding": "1704629844" + "finding": "1705233214" }, { "id": "HSTS_time", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -355597,7 +351658,7 @@ }, { "id": "heartbleed", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -355606,7 +351667,7 @@ }, { "id": "CCS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -355615,7 +351676,7 @@ }, { "id": "ticketbleed", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -355624,7 +351685,7 @@ }, { "id": "ROBOT", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -355633,7 +351694,7 @@ }, { "id": "secure_renego", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -355641,7 +351702,7 @@ }, { "id": "secure_client_renego", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -355650,7 +351711,7 @@ }, { "id": "CRIME_TLS", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -355659,7 +351720,7 @@ }, { "id": "BREACH", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -355668,7 +351729,7 @@ }, { "id": "POODLE_SSL", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -355677,14 +351738,14 @@ }, { "id": "fallback_SCSV", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -355693,7 +351754,7 @@ }, { "id": "FREAK", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -355702,7 +351763,7 @@ }, { "id": "DROWN", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -355711,7 +351772,7 @@ }, { "id": "DROWN_hint", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -355720,7 +351781,7 @@ }, { "id": "LOGJAM", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -355729,7 +351790,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -355738,7 +351799,7 @@ }, { "id": "BEAST", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -355747,7 +351808,7 @@ }, { "id": "LUCKY13", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -355756,7 +351817,7 @@ }, { "id": "winshock", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -355765,7 +351826,7 @@ }, { "id": "RC4", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -355774,325 +351835,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "admin.snu.gouv.fr/185.231.167.165", + "ip": "admin.snu.gouv.fr/185.179.149.149", "port": "443", "severity": "INFO", - "finding": "63" + "finding": "100" } ], "thirdparties": { @@ -356117,11 +352178,11 @@ "cookies": [ { "name": "bln_challengejs", - "value": "xFlD3qOtJCbKh2DJsu8cJxuzjAQZXwvLzQxEcfIAXewgHKSUxpvDpta7By1eSTsNq9XveyfBHfTxDHkyVHMWFh_YaLhFGR7bKTyMlzA1SPHrE-Gp3ep4BsvFK6fsOPdfS7zd55uDsisLSwt0CJgU528XDUqpJzbWsisL17s5Szy2v1YdFEqXSXuqLilwTrqEZKThGErl0UT8WE04asyVtY_aTEiUkOVxnwtWYQaycdut0FzaVUfo-bk2jnIxEoBuL1S6WRORUEDaxCiUCvyi1A", + "value": "xFlD3qOtJCbKh2DJsu8cJ-l5yYGjHSEY5N3rYKtfbeb1DwAG12QhCfXr53bwD8drqjrgPkv5llI4d_Sjj2X02NnreRSSNOqpBwdlkGznrDfwd2Um6k2Wsb4cWw8_S5SgtSk8qlG_LWD-rB1-XUl8K-eDLGpLGRO1Y4ThL-BI2VbuRqE6MrkHLEWPk46uI9jyz0OhYU_0NOmK9Cd_Z34pww8pdICdhnwclKZ_-qHVhzWr11ZH_8Vqn95L5aSnlsck", "domain": ".snu.gouv.fr", "path": "/", - "expires": 1704630693.115798, - "size": 293, + "expires": 1705234033.66322, + "size": 271, "httpOnly": false, "secure": false, "session": false, @@ -356134,12 +352195,12 @@ "cache-control": "public, max-age=0", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 12:16:33 GMT", - "etag": "W/\"63a-18cdab28d31\"", + "date": "Sun, 14 Jan 2024 11:52:13 GMT", + "etag": "W/\"63a-18cf924afd2\"", "expect-ct": "max-age=0", - "last-modified": "Fri, 05 Jan 2024 17:36:23 GMT", + "last-modified": "Thu, 11 Jan 2024 15:29:40 GMT", "referrer-policy": "no-referrer", - "sozu-id": "01HKHXMWDF5MTF16Q224ZDJV3N", + "sozu-id": "01HM3X1C5RQS2M546X52068EG4", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-dns-prefetch-control": "off", @@ -356151,7 +352212,7 @@ "endpoints": [ { "hostname": "admin.snu.gouv.fr", - "ip": "185.231.167.165", + "ip": "185.179.149.149", "geoip": { "continent": { "code": "EU", @@ -356207,7 +352268,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.191.234", + "ip": "172.217.12.138", "geoip": { "continent": { "code": "NA", @@ -356227,7 +352288,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -356247,7 +352308,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -356261,19 +352322,19 @@ }, { "hostname": "plausible.io", - "ip": "169.150.236.98", + "ip": "143.244.50.209", "geoip": { "city": { - "geoname_id": 4887398, + "geoname_id": 5368361, "names": { - "de": "Chicago", - "en": "Chicago", - "es": "Chicago", - "fr": "Chicago", - "ja": "シカゴ", - "pt-BR": "Chicago", - "ru": "Чикаго", - "zh-CN": "芝加哥" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -356294,7 +352355,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -356306,22 +352367,22 @@ }, "location": { "accuracy_radius": 20, - "latitude": 41.8874, - "longitude": -87.6318, - "metro_code": 602, - "time_zone": "America/Chicago" + "latitude": 34.0544, + "longitude": -118.2441, + "metro_code": 803, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "60602" + "code": "90060" }, "registered_country": { "geoname_id": 2635167, "iso_code": "GB", "names": { - "de": "Vereinigtes Königreich", + "de": "UK", "en": "United Kingdom", "es": "Reino Unido", - "fr": "Royaume Uni", + "fr": "Royaume-Uni", "ja": "英国", "pt-BR": "Reino Unido", "ru": "Британия", @@ -356330,16 +352391,17 @@ }, "subdivisions": [ { - "geoname_id": 4896861, - "iso_code": "IL", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Illinois", - "es": "Illinois", - "fr": "Illinois", - "ja": "イリノイ州", - "pt-BR": "Ilinóis", - "ru": "Иллинойс", - "zh-CN": "伊利诺伊州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -356468,7 +352530,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 12:15:28", + "@generated": "Sun, 14 Jan 2024 11:51:10", "site": [ { "@name": "https://admin.snu.gouv.fr", @@ -356597,7 +352659,7 @@ "extracted-results": [ "ttrbatwx-snu-admin.baleen.cshield.net." ], - "timestamp": "2024-01-07T12:18:54.436101752Z", + "timestamp": "2024-01-14T11:55:21.502605381Z", "matcher-status": true }, { @@ -356632,7 +352694,7 @@ "type": "dns", "host": "admin.snu.gouv.fr.", "matched-at": "admin.snu.gouv.fr", - "timestamp": "2024-01-07T12:18:54.471233052Z", + "timestamp": "2024-01-14T11:55:21.644622874Z", "matcher-status": true }, { @@ -356672,7 +352734,7 @@ "1; mode=block" ], "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:19:07.524691482Z", + "timestamp": "2024-01-14T11:55:41.125935491Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356699,7 +352761,7 @@ "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:19:33.555771468Z", + "timestamp": "2024-01-14T11:56:17.772816234Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356731,12 +352793,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:19:43.759938979Z", + "timestamp": "2024-01-14T11:56:32.512686563Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356768,12 +352830,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:19:43.759996086Z", + "timestamp": "2024-01-14T11:56:32.512732599Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356805,12 +352867,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:19:43.760017235Z", + "timestamp": "2024-01-14T11:56:32.512745182Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356842,12 +352904,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:19:43.760034137Z", + "timestamp": "2024-01-14T11:56:32.512753678Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356879,12 +352941,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:19:43.760060917Z", + "timestamp": "2024-01-14T11:56:32.512763226Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356916,12 +352978,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:19:43.760084521Z", + "timestamp": "2024-01-14T11:56:32.512773265Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356953,12 +353015,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://admin.snu.gouv.fr", "matched-at": "https://admin.snu.gouv.fr", "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:19:43.760110078Z", + "timestamp": "2024-01-14T11:56:32.512784736Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://admin.snu.gouv.fr'", "matcher-status": true }, @@ -356989,7 +353051,7 @@ "Let's Encrypt" ], "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:21:51.179990072Z", + "timestamp": "2024-01-14T11:59:01.442091848Z", "matcher-status": true }, { @@ -357019,7 +353081,7 @@ "admin.snu.gouv.fr" ], "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:21:51.180120706Z", + "timestamp": "2024-01-14T11:59:01.442207885Z", "matcher-status": true }, { @@ -357050,7 +353112,7 @@ "tls12" ], "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:21:54.725681448Z", + "timestamp": "2024-01-14T11:59:03.875260654Z", "matcher-status": true }, { @@ -357081,7 +353143,7 @@ "tls13" ], "ip": "185.179.149.149", - "timestamp": "2024-01-07T12:21:54.962587848Z", + "timestamp": "2024-01-14T11:59:04.287077671Z", "matcher-status": true } ], @@ -357089,7 +353151,7 @@ { "requestedUrl": "https://admin.snu.gouv.fr/", "finalUrl": "https://admin.snu.gouv.fr/", - "fetchTime": "2024-01-07T12:15:42.787Z", + "fetchTime": "2024-01-14T11:51:24.363Z", "runWarnings": [], "categories": { "performance": { @@ -357100,7 +353162,7 @@ "snapshot" ], "id": "performance", - "score": 0.8321556091308594 + "score": 0.8316658020019532 }, "accessibility": { "title": "Accessibility", @@ -357152,53 +353214,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 13134, + "numericValue": 13117, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 10162, - "firstMeaningfulPaint": 10176, - "largestContentfulPaint": 13030, - "interactive": 13134, - "speedIndex": 11367, - "totalBlockingTime": 2072, - "maxPotentialFID": 1875, + "firstContentfulPaint": 10057, + "firstMeaningfulPaint": 10072, + "largestContentfulPaint": 13043, + "interactive": 13117, + "speedIndex": 12366, + "totalBlockingTime": 1862, + "maxPotentialFID": 1833, "cumulativeLayoutShift": 0.00027449544270833335, "cumulativeLayoutShiftMainFrame": 0.00027449544270833335, "totalCumulativeLayoutShift": 0.00027449544270833335, "observedTimeOrigin": 0, - "observedTimeOriginTs": 222064515, + "observedTimeOriginTs": 174527547, "observedNavigationStart": 0, - "observedNavigationStartTs": 222064515, - "observedFirstPaint": 548, - "observedFirstPaintTs": 222612981, - "observedFirstContentfulPaint": 1492, - "observedFirstContentfulPaintTs": 223556560, - "observedFirstContentfulPaintAllFrames": 1492, - "observedFirstContentfulPaintAllFramesTs": 223556560, - "observedFirstMeaningfulPaint": 1492, - "observedFirstMeaningfulPaintTs": 223556560, - "observedLargestContentfulPaint": 2464, - "observedLargestContentfulPaintTs": 224528960, - "observedLargestContentfulPaintAllFrames": 2464, - "observedLargestContentfulPaintAllFramesTs": 224528960, - "observedTraceEnd": 5063, - "observedTraceEndTs": 227127842, - "observedLoad": 1434, - "observedLoadTs": 223498083, - "observedDomContentLoaded": 1430, - "observedDomContentLoadedTs": 223494407, + "observedNavigationStartTs": 174527547, + "observedFirstPaint": 654, + "observedFirstPaintTs": 175181633, + "observedFirstContentfulPaint": 1857, + "observedFirstContentfulPaintTs": 176384304, + "observedFirstContentfulPaintAllFrames": 1857, + "observedFirstContentfulPaintAllFramesTs": 176384304, + "observedFirstMeaningfulPaint": 1857, + "observedFirstMeaningfulPaintTs": 176384304, + "observedLargestContentfulPaint": 3135, + "observedLargestContentfulPaintTs": 177662507, + "observedLargestContentfulPaintAllFrames": 3135, + "observedLargestContentfulPaintAllFramesTs": 177662507, + "observedTraceEnd": 5883, + "observedTraceEndTs": 180410271, + "observedLoad": 1799, + "observedLoadTs": 176326738, + "observedDomContentLoaded": 1798, + "observedDomContentLoadedTs": 176325938, "observedCumulativeLayoutShift": 0.00027449544270833335, "observedCumulativeLayoutShiftMainFrame": 0.00027449544270833335, "observedTotalCumulativeLayoutShift": 0.00027449544270833335, - "observedFirstVisualChange": 1676, - "observedFirstVisualChangeTs": 223740515, - "observedLastVisualChange": 2776, - "observedLastVisualChangeTs": 224840515, - "observedSpeedIndex": 2456, - "observedSpeedIndexTs": 224520186 + "observedFirstVisualChange": 665, + "observedFirstVisualChangeTs": 175192547, + "observedLastVisualChange": 3598, + "observedLastVisualChangeTs": 178125547, + "observedSpeedIndex": 3108, + "observedSpeedIndexTs": 177635728 }, { "lcpInvalidated": false @@ -357220,19 +353282,19 @@ "numScripts": 3, "numStylesheets": 3, "numFonts": 3, - "numTasks": 793, - "numTasksOver10ms": 8, - "numTasksOver25ms": 5, - "numTasksOver50ms": 3, - "numTasksOver100ms": 2, + "numTasks": 879, + "numTasksOver10ms": 5, + "numTasksOver25ms": 4, + "numTasksOver50ms": 2, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.5370000000000346, - "throughput": 18925080.225133445, - "maxRtt": 102.376, - "maxServerLatency": 22.03, - "totalByteWeight": 1928564, - "totalTaskTime": 928.0699999999989, - "mainDocumentTransferSize": 2075 + "rtt": 8.901, + "throughput": 12944852.244148253, + "maxRtt": 151.68099999999998, + "maxServerLatency": 64.601, + "totalByteWeight": 1931132, + "totalTaskTime": 764.3019999999975, + "mainDocumentTransferSize": 2078 } ] } @@ -357329,7 +353391,7 @@ "cookiesCount": 1, "trackersGrade": "C", "trackersCount": 3, - "lighthouse_performance": 0.8321556091308594, + "lighthouse_performance": 0.8316658020019532, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.86, "lighthouse_accessibilityGrade": "A", @@ -357355,29 +353417,29 @@ "http": { "url": "https://www.jeveuxaider.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 12:28:36 GMT", + "end_time": "Sun, 14 Jan 2024 12:01:20 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "841c3382afae67a5-SJC", + "CF-RAY": "8455b934499e9447-SJC", "Cache-Control": "max-age=300, public, no-transform", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html;charset=utf-8", - "Date": "Sun, 07 Jan 2024 12:28:33 GMT", + "Date": "Sun, 14 Jan 2024 12:01:18 GMT", "Server": "cloudflare", "Transfer-Encoding": "chunked", - "expires": "Sun, 07 Jan 2024 12:33:33 GMT", + "expires": "Sun, 14 Jan 2024 12:06:17 GMT", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-powered-by": "Nuxt", - "x-request-id": "f83de1d0-409d-413c-96d2-e7620213e490, f83de1d0-409d-413c-96d2-e7620213e490" + "x-request-id": "5f5db243-7c5a-49db-a806-835e5849002b, 5f5db243-7c5a-49db-a806-835e5849002b" }, - "scan_id": 46233857, + "scan_id": 46468561, "score": 40, - "start_time": "Sun, 07 Jan 2024 12:28:31 GMT", + "start_time": "Sun, 14 Jan 2024 12:01:13 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -357589,77 +353651,77 @@ "testssl": [ { "id": "service", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -357667,7 +353729,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -357675,7 +353737,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -357683,7 +353745,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -357691,7 +353753,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -357699,7 +353761,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -357707,756 +353769,882 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "08E8505CD23A31E7140592B0B0CA54CA" + "finding": "04FAABEFB9C33634E65E6C6C51BA33B7C38C" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "4D98D55D7CCFAD7D435C85E515806455676BF43C" + "finding": "50B530CB4D9624CCA0AF5B24CAEDE71A5133B30B" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "5557276ABA19AFCA4CCA3ACC841330C16016908EB16867841607041BA4C73FF4" + "finding": "B9E1CCB3B4E73AAFAE5F7878B2A991B5C3D6DD9A413650587BC4E16284ADCAC3" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIE+zCCA+OgAwIBAgISBPqr77nDNjTmXmxsUbozt8OMMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yNDAxMTIyMzI0MzdaFw0yNDA0MTEyMzI0MzZaMCIxIDAeBgNVBAMTF3d3dy5qZXZldXhhaWRlci5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1G9XR7sstpOQarmvASkFka3+M87wjt6KNuYygTK0Jzgs1+vrC1R8gHVYGwmjtUEfx23qO2A/3YmxpanLfJ4uyuPOIwyPmkpC8eAucbyBN8suHVdgxtmNWUFOGDuau9vOdeWbut0LDEfV02ZJM0CRZL+JzA1z2dvv/yHfJkKFu/3nHMfwLMBr8HpKiA3g4iC79/H4SEfzfrG3XBhf/CXduDRxx/0d8plcQdyMa4qTflyQuCiyUmz3V53PD0olLMXv4dcbEPl4IMIy5m8YsSAlzdSeb5wMHn3kDAagvpUYyGGo+1sfFTMqHu3ptp2Euu/4KDIZtYt7998nTk6i3EhG7QIDAQABo4ICGTCCAhUwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTaWTQuRC7kV27glLCga5cR6M52VzAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAiBgNVHREEGzAZghd3d3cuamV2ZXV4YWlkZXIuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjQA00UAAAAQDAEYwRAIgJl/Rh81+dlaQKniLlHwwZvMXHzOCJZ9QLkjQNMK1qU0CIHs2itm0E6UkScNCXyf92xm4/RbRFLEoYjSGm4SWjknlAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGNADTR4QAABAMASDBGAiEAoglT8Q8w8oM7dR2zVjw6X7HZlwfbmc6/HrqNV3V2EDICIQCggjv8OrNBLIKjSxhMsy8qbZcgpTJF11Ggb1lfeWnDjTANBgkqhkiG9w0BAQsFAAOCAQEAIHgLSt/1v+CZm+nUoe3KZrs5FnjYnUCg/869LOuZOSZ94fppq0df/6OLUO0sPtwK6rhZWCJS1q0XSDxSg6P3jCpaLoUM+j9zBW6900LyW2uY72Jlok1kxabV01kKtRs5pTxH/DwSxZI5d+JuCwCmZXRaMohygKuS9iVSXWJNl1G8huGSYoANkQmPBTiNuf7I6ckK3XaeRPqGd2DMnYFyIg9pj1TiZh7hzlb7eJxX25zst81c1ZtCydNnnL3Gaq8iPFcTlZ1F24OebuBeom3mFbgFB+aTWYgsrUZYqct+gNsts0iceHZrn1sa+Rzi7XejuJdOgK89ROR5N7ERNWsFIw==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "Ok via SAN (SNI mandatory)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (36)" + "severity": "OK", + "finding": "88 >= 30 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "2023-02-12 00:00" + "finding": "2024-01-12 23:24" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-12 23:59" + "severity": "OK", + "finding": "2024-04-11 23:24" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" + "finding": "--" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "http://ocsp.digicert.com" + "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" + "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "2020-01-27 12:46" + "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "2024-12-31 23:59" + "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "ECDSA with SHA256" + "finding": "ECDSA with SHA384" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Digital Signature" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "0303C655D707D57E86C3EEB42143CF18" + "finding": "04D98D42D145D09F3CEF4A3EF799B3E60F99" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "7DDF74261D5694569AB5F19527580289146D4F41" + "finding": "695BF14FEDA877D50D8E51FF6890426AD3379609" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "F268D5D994296BEA5E6FD7AF39A8B57F9366D83456FEE6F381AB38F301B9D8B7" + "finding": "9F317E9E1E139B02FD9812077DC69848EAC34949D6602773B2AEAE1AD83185C1" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "Ok via SAN (SNI mandatory)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (36)" + "severity": "OK", + "finding": "88 >= 30 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "2023-02-12 00:00" + "finding": "2024-01-12 23:24" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-12 23:59" + "severity": "OK", + "finding": "2024-04-11 23:24" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" + "finding": "--" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "http://ocsp.digicert.com" + "finding": "http://e1.o.lencr.org" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "WARN", + "finding": "unable to verify response" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "4" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" + "finding": "E1 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" + "finding": "46494E30379059DF18BE52124305E606FC59070E5B21076CE113954B60517CDA" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "2020-01-27 12:48" + "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", - "finding": "2024-12-31 23:59" + "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" + "finding": "E1 <-- ISRG Root X2" + }, + { + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "8B05B68CC659E5ED0FCB38F2C942FBFD200E6F2FF9F85D63C6994EF5E0B02701" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X2 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", - "finding": "1704630608" + "finding": "1705233772" }, { "id": "HSTS_time", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "x-powered-by: Nuxt" }, { "id": "cookie_count", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control_multiple", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "finding": "Multiple Cache-Control headers. Using first header: max-age=300" }, { "id": "Cache-Control", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "max-age=300" }, { "id": "banner_reverseproxy", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -358464,7 +354652,7 @@ }, { "id": "heartbleed", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -358473,7 +354661,7 @@ }, { "id": "CCS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -358482,7 +354670,7 @@ }, { "id": "ticketbleed", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -358491,7 +354679,7 @@ }, { "id": "ROBOT", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -358500,7 +354688,7 @@ }, { "id": "secure_renego", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -358508,7 +354696,7 @@ }, { "id": "secure_client_renego", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -358517,7 +354705,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -358526,7 +354714,7 @@ }, { "id": "BREACH", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -358535,7 +354723,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -358544,14 +354732,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -358560,7 +354748,7 @@ }, { "id": "FREAK", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -358569,7 +354757,7 @@ }, { "id": "DROWN", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -358578,16 +354766,16 @@ }, { "id": "DROWN_hint", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=5557276ABA19AFCA4CCA3ACC841330C16016908EB16867841607041BA4C73FF4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B9E1CCB3B4E73AAFAE5F7878B2A991B5C3D6DD9A413650587BC4E16284ADCAC3" }, { "id": "LOGJAM", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -358596,7 +354784,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -358605,7 +354793,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -358614,7 +354802,7 @@ }, { "id": "BEAST", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -358623,7 +354811,7 @@ }, { "id": "LUCKY13", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -358632,7 +354820,7 @@ }, { "id": "winshock", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -358641,7 +354829,7 @@ }, { "id": "RC4", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -358650,406 +354838,406 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "79" }, { "id": "overall_grade", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "service", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -359057,7 +355245,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -359065,7 +355253,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -359073,7 +355261,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -359081,7 +355269,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -359089,7 +355277,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -359097,756 +355285,882 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "08E8505CD23A31E7140592B0B0CA54CA" + "finding": "04FAABEFB9C33634E65E6C6C51BA33B7C38C" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "4D98D55D7CCFAD7D435C85E515806455676BF43C" + "finding": "50B530CB4D9624CCA0AF5B24CAEDE71A5133B30B" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "5557276ABA19AFCA4CCA3ACC841330C16016908EB16867841607041BA4C73FF4" + "finding": "B9E1CCB3B4E73AAFAE5F7878B2A991B5C3D6DD9A413650587BC4E16284ADCAC3" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIGvDCCBaSgAwIBAgIQCOhQXNI6MecUBZKwsMpUyjANBgkqhkiG9w0BAQsFADBKMQswCQYDVQQGEwJVUzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEgMB4GA1UEAxMXQ2xvdWRmbGFyZSBJbmMgUlNBIENBLTIwHhcNMjMwMjEyMDAwMDAwWhcNMjQwMjEyMjM1OTU5WjB1MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEWMBQGA1UEBxMNU2FuIEZyYW5jaXNjbzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEeMBwGA1UEAxMVc25pLmNsb3VkZmxhcmVzc2wuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCw0jIaWxXd6zquKCCL4x8xrjG2F1eXNWifpbKWiXgLmhV4HAzJVGqFyB1IZ+TB0sQ6OAX/ynDSBzfIUD3RPzyCjcmHVkpWFNzz+uKXuGkwohkBYv8HpDAy/JyYw+QoUeNvSad52w/MU6Ze9YcA3Bh7YriNKAlrYGuQ/KIjxOqAII2dkdTIXCr4JZinzwV0qofNDAqfBkjdU83fiS7uQ2zx2xLFrG6t+Je01ECTtGMwAgWG+9kvqdJ2ecCrHeTOYViEs5fBX/DQotiP1V3R5VCmSZgtcpepiFTb01LqQyMMTaP4CkZptSP0DeEIekoSq9oDGBIrDVp+T473npuukOQIDAQABo4IDcTCCA20wHwYDVR0jBBgwFoAUGKka/LJFScFvMDQIK9mHnLAlV3owHQYDVR0OBBYEFLjsPOp+ls3dSE12vnArcGUrCG+xMDkGA1UdEQQyMDCCF3d3dy5qZXZldXhhaWRlci5nb3V2LmZyghVzbmkuY2xvdWRmbGFyZXNzbC5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjB7BgNVHR8EdDByMDegNaAzhjFodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vQ2xvdWRmbGFyZUluY1JTQUNBLTIuY3JsMDegNaAzhjFodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vQ2xvdWRmbGFyZUluY1JTQUNBLTIuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQICMCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzB2BggrBgEFBQcBAQRqMGgwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBABggrBgEFBQcwAoY0aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0Nsb3VkZmxhcmVJbmNSU0FDQS0yLmNydDAMBgNVHRMBAf8EAjAAMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYZDn/IAAAAEAwBGMEQCIHg3HNX+r3MkLX+JPXK9rH1GhodAuknnUPvwhOp7R5QtAiAFuxKNFaSE2B+pRwp9nlSHtilDQS3sMBIzx8V0dsJRAwB1AHPZnokbTJZ4oCB9R53mssYc0FFecRkqjGuAEHrBd3K1AAABhkOf8ncAAAQDAEYwRAIgWwjiOaDDe4oh3zHcGg5Kr4K/ppwJFeUmXzEsDCRfqO4CIDbMvNX/t3MOIw5Jr00ranf7ecPhOzgaxAFZNIPbAurnAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGGQ5/yPQAABAMARzBFAiEA6WSVPTzaoBkpkWMVec3rLzcbu/YbTlGIJMXiDJsAk7ACIDpAWhEvKq4x5gOAs4BYQpwcaLVenIxILFOuP2zs4Vx4MA0GCSqGSIb3DQEBCwUAA4IBAQCSvJadSj8s2ABBVPDak43kbIoMrN4UbGfkC2YojKzOEFaxa2ol/YrBIQIjSesmaizbACiBVddAYiRLMsoaFWkmnTNh5PsOLibogjKZ1aM4KpY2HSnBLLag5oGCmmLKAynd5Xvgv6YRWOqNy0kaiUEx7URaqQXjZ6MpfhF+TW9nZRVANDorTtPI+rczxaQ7fKW1g3ew9Kgg4SMRsADPHnX3arNKMAyy8TDDqQIN6eHECUCgkzB0vopB4JoYktb9HAapVZnDWJyD4Ae0u7UmxQt5+jLdrLRrPMtJEFcLiDW9OXnjL2x26HUaGTsjc8Tb1jlqQ3CzOpJiKyRfyTfuX6wi\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "Ok via SAN (SNI mandatory)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (36)" + "severity": "OK", + "finding": "88 >= 30 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "2023-02-12 00:00" + "finding": "2024-01-12 23:24" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-12 23:59" + "severity": "OK", + "finding": "2024-04-11 23:24" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" + "finding": "--" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "http://ocsp.digicert.com" + "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" + "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "2020-01-27 12:46" + "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "2024-12-31 23:59" + "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "ECDSA with SHA256" + "finding": "ECDSA with SHA384" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Digital Signature" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "0303C655D707D57E86C3EEB42143CF18" + "finding": "04D98D42D145D09F3CEF4A3EF799B3E60F99" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "7DDF74261D5694569AB5F19527580289146D4F41" + "finding": "695BF14FEDA877D50D8E51FF6890426AD3379609" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "F268D5D994296BEA5E6FD7AF39A8B57F9366D83456FEE6F381AB38F301B9D8B7" + "finding": "9F317E9E1E139B02FD9812077DC69848EAC34949D6602773B2AEAE1AD83185C1" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFMjCCBNegAwIBAgIQAwPGVdcH1X6Gw+60IUPPGDAKBggqhkjOPQQDAjBKMQswCQYDVQQGEwJVUzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEgMB4GA1UEAxMXQ2xvdWRmbGFyZSBJbmMgRUNDIENBLTMwHhcNMjMwMjEyMDAwMDAwWhcNMjQwMjEyMjM1OTU5WjB1MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEWMBQGA1UEBxMNU2FuIEZyYW5jaXNjbzEZMBcGA1UEChMQQ2xvdWRmbGFyZSwgSW5jLjEeMBwGA1UEAxMVc25pLmNsb3VkZmxhcmVzc2wuY29tMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEIZUsrUu/IivcE7I9hJ2N1QUShUiBNmsmk4e21Mv8RyGXTJ3EjL7KmiPRvlBUU/Wfh/ghcHAr9GI8sijzlgT2t6OCA3IwggNuMB8GA1UdIwQYMBaAFKXON+rrsHUOlGeItEX62SQQh5YfMB0GA1UdDgQWBBTjG3PwkjLAGIqMhAV3hUNS/2ENtjA5BgNVHREEMjAwghd3d3cuamV2ZXV4YWlkZXIuZ291di5mcoIVc25pLmNsb3VkZmxhcmVzc2wuY29tMA4GA1UdDwEB/wQEAwIHgDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwewYDVR0fBHQwcjA3oDWgM4YxaHR0cDovL2NybDMuZGlnaWNlcnQuY29tL0Nsb3VkZmxhcmVJbmNFQ0NDQS0zLmNybDA3oDWgM4YxaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0Nsb3VkZmxhcmVJbmNFQ0NDQS0zLmNybDA+BgNVHSAENzA1MDMGBmeBDAECAjApMCcGCCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwdgYIKwYBBQUHAQEEajBoMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wQAYIKwYBBQUHMAKGNGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9DbG91ZGZsYXJlSW5jRUNDQ0EtMy5jcnQwDAYDVR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGGQ5/2CwAABAMARzBFAiEAkxcG1DzPVZNisOxqgQld8RMgMmBt5JRbtxxTHlIfnSkCIAVGp2Zmnng92XY7lF0Pj6OamnK+dVc+BTX1EvV1cWVrAHYAc9meiRtMlnigIH1HneayxhzQUV5xGSqMa4AQesF3crUAAAGGQ5/2PwAABAMARzBFAiAZ/C5Ovufns2rdRw4pZAVfUavA8cc/78JfTrIpgobubAIhAPe9PPJitI5hiuPP9ZS0aDdJeVgni7bGmj8tOG4Ek96LAHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGGQ5/2AAAABAMARjBEAiBDUCNCh/SOWNNxiu7UPQvTMZJOU8ZXPyujC4N3jK7XYgIgD1dw/isqD33Q3rSAbq/1m25/Egd3D9m4OKhsmZWhsPwwCgYIKoZIzj0EAwIDSQAwRgIhAO4dRCZdpDdriqh+RqAo2lMExaD9BF0VgXmgbV5GhlKmAiEA5zBWueI18p6SspShiLB1pBlTi+vuULLqVTNoy/LXeRY=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "Ok via SAN (SNI mandatory)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (36)" + "severity": "OK", + "finding": "88 >= 30 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "2023-02-12 00:00" + "finding": "2024-01-12 23:24" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-12 23:59" + "severity": "OK", + "finding": "2024-04-11 23:24" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" + "finding": "--" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "http://ocsp.digicert.com" + "finding": "http://e1.o.lencr.org" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "WARN", + "finding": "unable to verify response" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "4" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" + "finding": "E1 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" + "finding": "46494E30379059DF18BE52124305E606FC59070E5B21076CE113954B60517CDA" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "2020-01-27 12:48" + "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", - "finding": "2024-12-31 23:59" + "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" + "finding": "E1 <-- ISRG Root X2" + }, + { + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "8B05B68CC659E5ED0FCB38F2C942FBFD200E6F2FF9F85D63C6994EF5E0B02701" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X2 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#3> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#3> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#3> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#3> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#3> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#3> ", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", - "finding": "1704630667" + "finding": "1705233839" }, { "id": "HSTS_time", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "x-powered-by: Nuxt" }, { "id": "cookie_count", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control_multiple", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "finding": "Multiple Cache-Control headers. Using first header: max-age=300" }, { "id": "Cache-Control", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "max-age=300" }, { "id": "banner_reverseproxy", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -359854,7 +356168,7 @@ }, { "id": "heartbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -359863,7 +356177,7 @@ }, { "id": "CCS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -359872,7 +356186,7 @@ }, { "id": "ticketbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -359881,7 +356195,7 @@ }, { "id": "ROBOT", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -359890,7 +356204,7 @@ }, { "id": "secure_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -359898,7 +356212,7 @@ }, { "id": "secure_client_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -359907,7 +356221,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -359916,7 +356230,7 @@ }, { "id": "BREACH", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -359925,7 +356239,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -359934,14 +356248,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -359950,7 +356264,7 @@ }, { "id": "FREAK", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -359959,7 +356273,7 @@ }, { "id": "DROWN", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -359968,16 +356282,16 @@ }, { "id": "DROWN_hint", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=5557276ABA19AFCA4CCA3ACC841330C16016908EB16867841607041BA4C73FF4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B9E1CCB3B4E73AAFAE5F7878B2A991B5C3D6DD9A413650587BC4E16284ADCAC3" }, { "id": "LOGJAM", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -359986,7 +356300,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -359995,7 +356309,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -360004,7 +356318,7 @@ }, { "id": "BEAST", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -360013,7 +356327,7 @@ }, { "id": "LUCKY13", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -360022,7 +356336,7 @@ }, { "id": "winshock", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -360031,7 +356345,7 @@ }, { "id": "RC4", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -360040,406 +356354,406 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "79" }, { "id": "overall_grade", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "ip": "www.jeveuxaider.gouv.fr/172.67.42.178", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "service", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "finding": "offered (deprecated)" }, { "id": "TLS1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -360447,7 +356761,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -360455,7 +356769,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -360463,7 +356777,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -360471,7 +356785,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -360479,7 +356793,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -360487,756 +356801,882 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-SHA" }, { "id": "cipher_order-tls1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "08E8505CD23A31E7140592B0B0CA54CA" + "finding": "04FAABEFB9C33634E65E6C6C51BA33B7C38C" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "4D98D55D7CCFAD7D435C85E515806455676BF43C" + "finding": "50B530CB4D9624CCA0AF5B24CAEDE71A5133B30B" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "5557276ABA19AFCA4CCA3ACC841330C16016908EB16867841607041BA4C73FF4" + "finding": "B9E1CCB3B4E73AAFAE5F7878B2A991B5C3D6DD9A413650587BC4E16284ADCAC3" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIE+zCCA+OgAwIBAgISBPqr77nDNjTmXmxsUbozt8OMMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yNDAxMTIyMzI0MzdaFw0yNDA0MTEyMzI0MzZaMCIxIDAeBgNVBAMTF3d3dy5qZXZldXhhaWRlci5nb3V2LmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1G9XR7sstpOQarmvASkFka3+M87wjt6KNuYygTK0Jzgs1+vrC1R8gHVYGwmjtUEfx23qO2A/3YmxpanLfJ4uyuPOIwyPmkpC8eAucbyBN8suHVdgxtmNWUFOGDuau9vOdeWbut0LDEfV02ZJM0CRZL+JzA1z2dvv/yHfJkKFu/3nHMfwLMBr8HpKiA3g4iC79/H4SEfzfrG3XBhf/CXduDRxx/0d8plcQdyMa4qTflyQuCiyUmz3V53PD0olLMXv4dcbEPl4IMIy5m8YsSAlzdSeb5wMHn3kDAagvpUYyGGo+1sfFTMqHu3ptp2Euu/4KDIZtYt7998nTk6i3EhG7QIDAQABo4ICGTCCAhUwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTaWTQuRC7kV27glLCga5cR6M52VzAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAiBgNVHREEGzAZghd3d3cuamV2ZXV4YWlkZXIuZ291di5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjQA00UAAAAQDAEYwRAIgJl/Rh81+dlaQKniLlHwwZvMXHzOCJZ9QLkjQNMK1qU0CIHs2itm0E6UkScNCXyf92xm4/RbRFLEoYjSGm4SWjknlAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGNADTR4QAABAMASDBGAiEAoglT8Q8w8oM7dR2zVjw6X7HZlwfbmc6/HrqNV3V2EDICIQCggjv8OrNBLIKjSxhMsy8qbZcgpTJF11Ggb1lfeWnDjTANBgkqhkiG9w0BAQsFAAOCAQEAIHgLSt/1v+CZm+nUoe3KZrs5FnjYnUCg/869LOuZOSZ94fppq0df/6OLUO0sPtwK6rhZWCJS1q0XSDxSg6P3jCpaLoUM+j9zBW6900LyW2uY72Jlok1kxabV01kKtRs5pTxH/DwSxZI5d+JuCwCmZXRaMohygKuS9iVSXWJNl1G8huGSYoANkQmPBTiNuf7I6ckK3XaeRPqGd2DMnYFyIg9pj1TiZh7hzlb7eJxX25zst81c1ZtCydNnnL3Gaq8iPFcTlZ1F24OebuBeom3mFbgFB+aTWYgsrUZYqct+gNsts0iceHZrn1sa+Rzi7XejuJdOgK89ROR5N7ERNWsFIw==\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "Ok via SAN (SNI mandatory)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (36)" + "severity": "OK", + "finding": "88 >= 30 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2023-02-12 00:00" + "finding": "2024-01-12 23:24" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-12 23:59" + "severity": "OK", + "finding": "2024-04-11 23:24" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" + "finding": "--" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "http://ocsp.digicert.com" + "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" + "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIEmDCCA4CgAwIBAgIQAtiaFXPzs7jaFFtYOJgpBzANBgkqhkiG9w0BAQsFADBaMQswCQYDVQQGEwJJRTESMBAGA1UEChMJQmFsdGltb3JlMRMwEQYDVQQLEwpDeWJlclRydXN0MSIwIAYDVQQDExlCYWx0aW1vcmUgQ3liZXJUcnVzdCBSb290MB4XDTIwMDEyNzEyNDYzOVoXDTI0MTIzMTIzNTk1OVowSjELMAkGA1UEBhMCVVMxGTAXBgNVBAoTEENsb3VkZmxhcmUsIEluYy4xIDAeBgNVBAMTF0Nsb3VkZmxhcmUgSW5jIFJTQSBDQS0yMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtV0myAmrsTNdDLKWBcIxA05+X4cCxm+AJO3arhy+552A98XPVAFmOCjo5mm7nfiBMWpW9ejBpehZ6LPgOgFhCCiwfs2g/c43AMPpqY0LyXjKpmBGgK90BS1P2ugJUsibWjLPISFHj1waiqoXwBhwsQHx3t8thamV7FtXOTm+hcLv17YsSj/R1rMhopdPJSxCI33XsxnWEmmFAAKv1aoS2Ghkf+OtGJ1SL8Xl9JGv5QnZi0bnzzIVIvA3xP2L5uIdFsw6SNeBYYK/PXLZcF7sCmkk4jxI4/7T5VHUK8ASoU+TcJm/t9KDbmktyM2iYhhMQzdfFjp2k1r6bmldmsWIwQIDAQABo4IBaDCCAWQwHQYDVR0OBBYEFBipGvyyRUnBbzA0CCvZh5ywJVd6MB8GA1UdIwQYMBaAFOWdWTCCR1jMrPoIVDaGezq1BE3wMA4GA1UdDwEB/wQEAwIBhjAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwEgYDVR0TAQH/BAgwBgEB/wIBADA0BggrBgEFBQcBAQQoMCYwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vT21uaXJvb3QyMDI1LmNybDBtBgNVHSAEZjBkMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwCAYGZ4EMAQICMAgGBmeBDAECAzANBgkqhkiG9w0BAQsFAAOCAQEAfLCdjh6mZHIQ4WHd83Q9UKca58JOFwwVJisXj0HnkPCw8/LS51CA0gfGqX+6k+u+wcGG+E+EvAV85nIv6bbGdmnd8mpHa5NUGKQNgAM1J92Kn8iEl9O04NqmBfDnz+admJTSy9oid9hJC6hVjonU0s7Q6NrgQv0dzn6WhMqnw5Ennym8/+0uNP1GKu9OVnzo3CKX7VMJW7p74PJPpVmVQc2zci5cb3pKFUMrIsvUPyB88/p82x4PSnNx6dXdRraeHRMegHGZ3/VQfjOB0jV1JF6PmFqokkX0tNiIprFkBun7+WVI9pbDH55GEgF+WjBTXTQcFeIS8vGLlfCU+K3jkw==\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2020-01-27 12:46" + "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "2024-12-31 23:59" + "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "ECDSA with SHA256" + "finding": "ECDSA with SHA384" }, { "id": "cert_keySize ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Digital Signature" }, { "id": "cert_extKeyUsage ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "0303C655D707D57E86C3EEB42143CF18" + "finding": "04D98D42D145D09F3CEF4A3EF799B3E60F99" }, { "id": "cert_serialNumberLen ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "16" + "finding": "18" }, { "id": "cert_fingerprintSHA1 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "7DDF74261D5694569AB5F19527580289146D4F41" + "finding": "695BF14FEDA877D50D8E51FF6890426AD3379609" }, { "id": "cert_fingerprintSHA256 ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "F268D5D994296BEA5E6FD7AF39A8B57F9366D83456FEE6F381AB38F301B9D8B7" + "finding": "9F317E9E1E139B02FD9812077DC69848EAC34949D6602773B2AEAE1AD83185C1" }, { "id": "cert ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed, usual for EC certificates" }, { "id": "cert_subjectAltName ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "www.jeveuxaider.gouv.fr sni.cloudflaressl.com" + "finding": "www.jeveuxaider.gouv.fr" }, { "id": "cert_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "Ok via SAN (SNI mandatory)" + "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 60 days (36)" + "severity": "OK", + "finding": "88 >= 30 days" }, { "id": "cert_notBefore ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2023-02-12 00:00" + "finding": "2024-01-12 23:24" }, { "id": "cert_notAfter ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-12 23:59" + "severity": "OK", + "finding": "2024-04-11 23:24" }, { "id": "cert_extlifeSpan ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" + "finding": "--" }, { "id": "cert_ocspURL ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "http://ocsp.digicert.com" + "finding": "http://e1.o.lencr.org" }, { "id": "OCSP_stapling ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", - "severity": "OK", - "finding": "not revoked" + "severity": "WARN", + "finding": "unable to verify response" }, { "id": "cert_mustStapleExtension ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "4" }, { "id": "certs_list_ordering_problem ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" + "finding": "E1 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIICxjCCAk2gAwIBAgIRALO93/inhFu86QOgQTWzSkUwCgYIKoZIzj0EAwMwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDIwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCRTEwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQkXC2iKv0cS6Zdl3MnMayyoGli72XoprDwrEuf/xwLcA/TmC9N/A8AmzfwdAVXMpcuBe8qQyWj+240JxP2T35p0wKZXuskR5LBJJvmsSGPwSSB/GjMH2m6WPUZIvd0xhajggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFFrz7Sv8NsI3eblSMOpUb89Vyy6sMB8GA1UdIwQYMBaAFHxClq7eS0g7+pL4nozPbYupcjeVMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gyLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDIuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMAoGCCqGSM49BAMDA2cAMGQCMHt01VITjWH+Dbo/AwCd89eYhNlXLr3pD5xcSAQh8suzYHKOl9YST8pE9kLJ03uGqQIwWrGxtO3qYJkgsTgDyj2gJrjubi1K9sZmHzOa25JK1fUpE8ZwYii6I4zPPS/Lgul/\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" + "finding": "46494E30379059DF18BE52124305E606FC59070E5B21076CE113954B60517CDA" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "2020-01-27 12:48" + "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", - "finding": "2024-12-31 23:59" + "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" + "finding": "E1 <-- ISRG Root X2" + }, + { + "id": "intermediate_cert <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "8B05B68CC659E5ED0FCB38F2C942FBFD200E6F2FF9F85D63C6994EF5E0B02701" + }, + { + "id": "intermediate_cert_notBefore <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X2 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#3> ", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP ", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "1704630726" + "finding": "1705233905" }, { "id": "HSTS_time", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "x-powered-by: Nuxt" }, { "id": "cookie_count", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "Cache-Control_multiple", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "finding": "Multiple Cache-Control headers. Using first header: max-age=300" }, { "id": "Cache-Control", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "max-age=300" }, { "id": "banner_reverseproxy", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -361244,7 +357684,7 @@ }, { "id": "heartbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -361253,7 +357693,7 @@ }, { "id": "CCS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -361262,7 +357702,7 @@ }, { "id": "ticketbleed", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -361271,7 +357711,7 @@ }, { "id": "ROBOT", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -361280,7 +357720,7 @@ }, { "id": "secure_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -361288,7 +357728,7 @@ }, { "id": "secure_client_renego", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -361297,7 +357737,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -361306,7 +357746,7 @@ }, { "id": "BREACH", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -361315,7 +357755,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -361324,14 +357764,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "finding": "supported" }, { "id": "SWEET32", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -361340,7 +357780,7 @@ }, { "id": "FREAK", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -361349,7 +357789,7 @@ }, { "id": "DROWN", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -361358,16 +357798,16 @@ }, { "id": "DROWN_hint", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=5557276ABA19AFCA4CCA3ACC841330C16016908EB16867841607041BA4C73FF4" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=B9E1CCB3B4E73AAFAE5F7878B2A991B5C3D6DD9A413650587BC4E16284ADCAC3" }, { "id": "LOGJAM", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -361376,7 +357816,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -361385,7 +357825,7 @@ }, { "id": "BEAST_CBC_TLS1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "cve": "CVE-2011-3389", @@ -361394,7 +357834,7 @@ }, { "id": "BEAST", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "cve": "CVE-2011-3389", @@ -361403,7 +357843,7 @@ }, { "id": "LUCKY13", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -361412,7 +357852,7 @@ }, { "id": "winshock", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -361421,7 +357861,7 @@ }, { "id": "RC4", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -361430,354 +357870,350 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.0 ECDHE-RSA-AES128-SHA" }, { "id": "clientsimulation-java_8u161", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "95" }, { "id": "protocol_support_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "28" }, { "id": "key_exchange_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "79" }, { "id": "overall_grade", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "MEDIUM", "finding": "B" }, { "id": "grade_cap_reason_1", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.1 offered" }, { "id": "grade_cap_reason_2", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", "finding": "Grade capped to B. TLS 1.0 offered" }, { "id": "scanTime", - "ip": "www.jeveuxaider.gouv.fr/104.22.77.85", + "ip": "www.jeveuxaider.gouv.fr/104.22.76.85", "port": "443", "severity": "INFO", - "finding": "183" + "finding": "201" } ], "thirdparties": { "trackers": [ - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/8472/responsive/NWgtGWKGTNDkrGh___card_600_286.webp" - }, { "type": "unknown", "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12169/responsive/solidarite-et-insertion-5___card_600_286.webp" }, { "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/23406/responsive/mmCJRuNqVzSkRgGsVXi0xSkoBs5jRQ___card_600_286.webp" + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12166/responsive/solidarite-et-insertion-2___card_600_286.webp" }, { "type": "unknown", @@ -361785,11 +358221,7 @@ }, { "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/16730/responsive/oapbCLiySgVV2vlAphIdygoIbhlutK___card_600_286.webp" - }, - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/12166/responsive/solidarite-et-insertion-2___card_600_286.webp" + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/23406/responsive/mmCJRuNqVzSkRgGsVXi0xSkoBs5jRQ___card_600_286.webp" }, { "type": "google tag manager", @@ -361817,11 +358249,11 @@ }, { "type": "unknown", - "url": "https://plausible.io/api/event" + "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/30331/responsive/ntYcHt7wuT6QRsqf7QiO5JnMO7xIR6___card_600_286.webp" }, { "type": "unknown", - "url": "https://gqlg3qh7po-dsn.algolia.net/1/indexes/prod_scalingo_covid_missions/query?x-algolia-agent=Algolia%20for%20JavaScript%20(4.20.0)%3B%20Browser" + "url": "https://plausible.io/api/event" }, { "type": "unknown", @@ -361831,10 +358263,6 @@ "type": "unknown", "url": "https://client.axept.io/606dd246669e09466761ef93.json?r=0" }, - { - "type": "unknown", - "url": "https://jeveuxaider.fra1.digitaloceanspaces.com/public/production/30331/responsive/ntYcHt7wuT6QRsqf7QiO5JnMO7xIR6___card_600_286.webp" - }, { "type": "unknown", "url": "https://client.axept.io/pack/fr" @@ -361844,27 +358272,61 @@ "headers": { "cache-control": "max-age=300\npublic, no-transform", "cf-cache-status": "DYNAMIC", - "cf-ray": "841c344f094967fc-SJC", + "cf-ray": "8455b9f41a7228f6-LAX", "content-encoding": "gzip", "content-type": "text/html;charset=utf-8", - "date": "Sun, 07 Jan 2024 12:29:06 GMT", - "expires": "Sun, 07 Jan 2024 12:34:06 GMT", + "date": "Sun, 14 Jan 2024 12:01:48 GMT", + "expires": "Sun, 14 Jan 2024 12:06:48 GMT", "server": "cloudflare", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-powered-by": "Nuxt", - "x-request-id": "770ba3e6-d5c1-4ad2-afea-200738dd9f07\n770ba3e6-d5c1-4ad2-afea-200738dd9f07" + "x-request-id": "2a686b81-230d-42dd-8004-dc5e2cfa849a\n2a686b81-230d-42dd-8004-dc5e2cfa849a" }, "endpoints": [ { "hostname": "www.jeveuxaider.gouv.fr", - "ip": "104.22.77.85", + "ip": "172.67.42.178", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -361935,7 +358397,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -361962,7 +358424,7 @@ }, { "hostname": "www.googletagmanager.com", - "ip": "142.250.189.168", + "ip": "142.250.217.136", "geoip": { "continent": { "code": "NA", @@ -361982,7 +358444,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -362002,7 +358464,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -362016,7 +358478,7 @@ }, { "hostname": "gqlg3qh7po-dsn.algolia.net", - "ip": "149.202.77.144", + "ip": "95.211.18.123", "geoip": { "continent": { "code": "EU", @@ -362033,57 +358495,58 @@ } }, "country": { - "geoname_id": 3017382, + "geoname_id": 2750405, "is_in_european_union": true, - "iso_code": "FR", + "iso_code": "NL", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "Niederlande", + "en": "The Netherlands", + "es": "Holanda", + "fr": "Pays-Bas", + "ja": "オランダ王国", + "pt-BR": "Holanda", + "ru": "Нидерланды", + "zh-CN": "荷兰" } }, "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" + "accuracy_radius": 100, + "latitude": 52.3824, + "longitude": 4.8995, + "time_zone": "Europe/Amsterdam" }, "registered_country": { - "geoname_id": 3017382, + "geoname_id": 2750405, "is_in_european_union": true, - "iso_code": "FR", + "iso_code": "NL", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "Niederlande", + "en": "The Netherlands", + "es": "Holanda", + "fr": "Pays-Bas", + "ja": "オランダ王国", + "pt-BR": "Holanda", + "ru": "Нидерланды", + "zh-CN": "荷兰" } } } }, { "hostname": "plausible.io", - "ip": "169.150.221.147", + "ip": "143.244.50.83", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 5368361, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -362104,7 +358567,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -362116,22 +358579,22 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, + "latitude": 34.0544, + "longitude": -118.2441, + "metro_code": 803, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95141" + "code": "90060" }, "registered_country": { "geoname_id": 2635167, "iso_code": "GB", "names": { - "de": "Vereinigtes Königreich", + "de": "UK", "en": "United Kingdom", "es": "Reino Unido", - "fr": "Royaume Uni", + "fr": "Royaume-Uni", "ja": "英国", "pt-BR": "Reino Unido", "ru": "Британия", @@ -362158,7 +358621,7 @@ }, { "hostname": "static.axept.io", - "ip": "13.227.74.20", + "ip": "3.163.125.33", "geoip": { "continent": { "code": "NA", @@ -362178,7 +358641,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -362198,7 +358661,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -362212,7 +358675,7 @@ }, { "hostname": "client.axept.io", - "ip": "18.244.214.128", + "ip": "13.226.228.9", "geoip": { "continent": { "code": "NA", @@ -362232,7 +358695,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -362252,7 +358715,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -362488,7 +358951,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 12:27:59", + "@generated": "Sun, 14 Jan 2024 12:00:35", "site": [ { "@name": "https://www.jeveuxaider.gouv.fr", @@ -362531,6 +358994,13 @@ "riskdesc": "Medium (High)", "desc": "

The integrity attribute is missing on a script or link tag served by an external server. The integrity tag prevents an attacker who have gained access to this server from injecting a malicious content.

" }, + { + "name": "Application Error Disclosure", + "riskcode": "1", + "confidence": "2", + "riskdesc": "Low (Medium)", + "desc": "

This page contains an error/warning message that may disclose sensitive information like the location of the file that produced the unhandled exception. This information can be used to launch further attacks against the web application. The alert could be a false positive if the error message is found inside a documentation page.

" + }, { "name": "Big Redirect Detected (Potential Sensitive Information Leak)", "riskcode": "1", @@ -362566,13 +359036,6 @@ "riskdesc": "Low (Medium)", "desc": "

The web/application server is leaking information via one or more \"X-Powered-By\" HTTP response headers. Access to such information may facilitate attackers identifying other frameworks/components your web application is reliant upon and the vulnerabilities such components may be subject to.

" }, - { - "name": "Strict-Transport-Security Header Not Set", - "riskcode": "1", - "confidence": "3", - "riskdesc": "Low (High)", - "desc": "

HTTP Strict Transport Security (HSTS) is a web security policy mechanism whereby a web server declares that complying user agents (such as a web browser) are to interact with it using only secure HTTPS connections (i.e. HTTP layered over TLS/SSL). HSTS is an IETF standards track protocol and is specified in RFC 6797.

" - }, { "name": "Timestamp Disclosure - Unix", "riskcode": "1", @@ -362601,13 +359064,6 @@ "riskdesc": "Informational (Medium)", "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, - { - "name": "Charset Mismatch ", - "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

This check identifies responses where the HTTP Content-Type header declares a charset different from the charset defined by the body of the HTML or XML. When there's a charset mismatch between the HTTP header and content body Web browsers can be forced into an undesirable content-sniffing mode to determine the content's correct character set.

An attacker could manipulate content on the page to be interpreted in an encoding of their choice. For example, if an attacker can control content at the beginning of the page, they could inject script using UTF-7 encoded text and manipulate some browsers into interpreting that text.

" - }, { "name": "Content-Type Header Missing", "riskcode": "0", @@ -362737,7 +359193,7 @@ "extracted-results": [ "www.jeveuxaider.gouv.fr.cdn.cloudflare.net." ], - "timestamp": "2024-01-07T12:33:43.74813017Z", + "timestamp": "2024-01-14T12:06:44.917874317Z", "matcher-status": true }, { @@ -362772,7 +359228,7 @@ "type": "dns", "host": "www.jeveuxaider.gouv.fr.", "matched-at": "www.jeveuxaider.gouv.fr", - "timestamp": "2024-01-07T12:33:44.439704174Z", + "timestamp": "2024-01-14T12:06:45.28898313Z", "matcher-status": true }, { @@ -362802,8 +359258,8 @@ "extracted-results": [ "token\":\"cba5fa8241b048cbb52ececb5e988a18\"" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:33:50.572398511Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:06:52.186329313Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362842,8 +359298,8 @@ "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:33:50.589967404Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:06:52.192808787Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362869,8 +359325,8 @@ "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:08.665560856Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:10.204160409Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362902,12 +359358,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:13.545863786Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:15.159348407Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362939,12 +359395,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:13.545921473Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:15.159389254Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -362976,12 +359432,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:13.545943634Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:15.159406275Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -363013,12 +359469,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:13.545958522Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:15.159423157Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -363050,12 +359506,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:13.545985872Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:15.159439848Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -363087,12 +359543,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:13.546001451Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:15.159452552Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -363124,12 +359580,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:13.546042989Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:15.159468291Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -363161,12 +359617,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:13.546077402Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:15.159483309Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -363198,12 +359654,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:13.546111095Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:15.15949954Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr'", "matcher-status": true }, @@ -363239,8 +359695,8 @@ "extracted-results": [ "https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:23.482037685Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:25.046925311Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: www.jeveuxaider.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr/'", "matcher-status": true }, @@ -363279,70 +359735,76 @@ "type": "http", "host": "https://www.jeveuxaider.gouv.fr", "matched-at": "https://www.jeveuxaider.gouv.fr/", - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:34:27.561515117Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:07:29.158797553Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: www.jeveuxaider.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.jeveuxaider.gouv.fr/'", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "Weak Cipher Suites Detection", "author": [ - "lingtren" + "pussycat0x" ], "tags": [ "ssl", - "tls" + "tls", + "misconfig" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" + ], + "severity": "low", "metadata": { - "max-request": 1 + "max-request": 4 } }, + "matcher-name": "tls-1.0", "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "Cloudflare, Inc." + "[tls10 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:41.877447003Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.456349867Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "SSL DNS Names", + "name": "TLS Version - Detect", "author": [ - "pdteam" + "pdteam", + "pussycat0x" ], "tags": [ "ssl", "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "www.jeveuxaider.gouv.fr", - "sni.cloudflaressl.com" + "tls10" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:41.877576012Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.459433303Z", "matcher-status": true }, { @@ -363377,106 +359839,104 @@ "extracted-results": [ "tls10" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:42.052795833Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.497879675Z", "matcher-status": true }, { - "template": "ssl/deprecated-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/deprecated-tls", - "template-id": "deprecated-tls", - "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "name": "Detect SSL Certificate Issuer", "author": [ - "righettod", - "forgedhallpass" + "lingtren" ], "tags": [ "ssl", "tls" ], - "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", - "reference": [ - "https://ssl-config.mozilla.org/#config=intermediate" - ], + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { - "max-request": 3, - "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" - }, - "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + "max-request": 1 + } }, "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls11" + "Let's Encrypt" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:42.202748441Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.513090235Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls10" + "www.jeveuxaider.gouv.fr" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:42.23129372Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.513197866Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Weak Cipher Suites Detection", "author": [ - "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls" + "tls", + "misconfig" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" + ], + "severity": "low", "metadata": { "max-request": 4 } }, + "matcher-name": "tls-1.1", "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls11" + "[tls11 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:42.257123282Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.568009193Z", "matcher-status": true }, { @@ -363504,113 +359964,108 @@ "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls12" + "tls11" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:42.329129548Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.591853755Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/deprecated-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/deprecated-tls", + "template-id": "deprecated-tls", + "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", "author": [ - "pdteam", - "pussycat0x" + "righettod", + "forgedhallpass" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "reference": [ + "https://ssl-config.mozilla.org/#config=intermediate" + ], "severity": "info", "metadata": { - "max-request": 4 - } + "max-request": 3, + "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" + }, + "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" }, "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "tls13" + "tls11" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:42.349771547Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.60760625Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "TLS Version - Detect", "author": [ + "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "tls" ], - "severity": "low", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", "metadata": { "max-request": 4 } }, - "matcher-name": "tls-1.0", "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "[tls10 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" + "tls12" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:42.380539949Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.705520481Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "TLS Version - Detect", "author": [ + "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "tls" ], - "severity": "low", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", "metadata": { "max-request": 4 } }, - "matcher-name": "tls-1.1", "type": "ssl", "host": "www.jeveuxaider.gouv.fr", "matched-at": "www.jeveuxaider.gouv.fr:443", "extracted-results": [ - "[tls11 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" + "tls13" ], - "ip": "104.22.76.85", - "timestamp": "2024-01-07T12:38:42.415412082Z", + "ip": "104.22.77.85", + "timestamp": "2024-01-14T12:11:43.813263359Z", "matcher-status": true } ], @@ -363618,7 +360073,7 @@ { "requestedUrl": "https://www.jeveuxaider.gouv.fr/", "finalUrl": "https://www.jeveuxaider.gouv.fr/", - "fetchTime": "2024-01-07T12:28:13.266Z", + "fetchTime": "2024-01-14T12:00:49.991Z", "runWarnings": [], "categories": { "performance": { @@ -363629,7 +360084,7 @@ "snapshot" ], "id": "performance", - "score": 0.2960990905761719 + "score": 0.373259162902832 }, "accessibility": { "title": "Accessibility", @@ -363681,53 +360136,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7547, + "numericValue": 7637, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3317, - "firstMeaningfulPaint": 3317, - "largestContentfulPaint": 3392, - "interactive": 7547, - "speedIndex": 5915, - "totalBlockingTime": 392, - "maxPotentialFID": 211, + "firstContentfulPaint": 3149, + "firstMeaningfulPaint": 3149, + "largestContentfulPaint": 4503, + "interactive": 7637, + "speedIndex": 5837, + "totalBlockingTime": 371, + "maxPotentialFID": 188, "cumulativeLayoutShift": 0.0035955810546875, "cumulativeLayoutShiftMainFrame": 0.0035955810546875, - "totalCumulativeLayoutShift": 0.0036059977213541666, + "totalCumulativeLayoutShift": 0.003650702582465278, "observedTimeOrigin": 0, - "observedTimeOriginTs": 605745555, + "observedTimeOriginTs": 360528445, "observedNavigationStart": 0, - "observedNavigationStartTs": 605745555, - "observedFirstPaint": 1362, - "observedFirstPaintTs": 607107825, - "observedFirstContentfulPaint": 1362, - "observedFirstContentfulPaintTs": 607107825, - "observedFirstContentfulPaintAllFrames": 1362, - "observedFirstContentfulPaintAllFramesTs": 607107825, - "observedFirstMeaningfulPaint": 1362, - "observedFirstMeaningfulPaintTs": 607107825, - "observedLargestContentfulPaint": 1362, - "observedLargestContentfulPaintTs": 607107825, - "observedLargestContentfulPaintAllFrames": 1362, - "observedLargestContentfulPaintAllFramesTs": 607107825, - "observedTraceEnd": 7367, - "observedTraceEndTs": 613112929, - "observedLoad": 1745, - "observedLoadTs": 607490472, - "observedDomContentLoaded": 1394, - "observedDomContentLoadedTs": 607139344, + "observedNavigationStartTs": 360528445, + "observedFirstPaint": 1129, + "observedFirstPaintTs": 361657733, + "observedFirstContentfulPaint": 1129, + "observedFirstContentfulPaintTs": 361657733, + "observedFirstContentfulPaintAllFrames": 1129, + "observedFirstContentfulPaintAllFramesTs": 361657733, + "observedFirstMeaningfulPaint": 1129, + "observedFirstMeaningfulPaintTs": 361657733, + "observedLargestContentfulPaint": 1379, + "observedLargestContentfulPaintTs": 361907671, + "observedLargestContentfulPaintAllFrames": 1379, + "observedLargestContentfulPaintAllFramesTs": 361907671, + "observedTraceEnd": 14325, + "observedTraceEndTs": 374853680, + "observedLoad": 12019, + "observedLoadTs": 372546983, + "observedDomContentLoaded": 1159, + "observedDomContentLoadedTs": 361687097, "observedCumulativeLayoutShift": 0.0035955810546875, "observedCumulativeLayoutShiftMainFrame": 0.0035955810546875, - "observedTotalCumulativeLayoutShift": 0.0036059977213541666, - "observedFirstVisualChange": 1363, - "observedFirstVisualChangeTs": 607108555, - "observedLastVisualChange": 6896, - "observedLastVisualChangeTs": 612641555, - "observedSpeedIndex": 1467, - "observedSpeedIndexTs": 607212377 + "observedTotalCumulativeLayoutShift": 0.003650702582465278, + "observedFirstVisualChange": 1140, + "observedFirstVisualChangeTs": 361668445, + "observedLastVisualChange": 14173, + "observedLastVisualChangeTs": 374701445, + "observedSpeedIndex": 1443, + "observedSpeedIndexTs": 361971021 }, { "lcpInvalidated": false @@ -363745,23 +360200,23 @@ "type": "debugdata", "items": [ { - "numRequests": 134, - "numScripts": 57, + "numRequests": 128, + "numScripts": 56, "numStylesheets": 15, "numFonts": 3, - "numTasks": 2405, - "numTasksOver10ms": 15, - "numTasksOver25ms": 7, + "numTasks": 2648, + "numTasksOver10ms": 10, + "numTasksOver25ms": 6, "numTasksOver50ms": 3, - "numTasksOver100ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.7430000000000003, - "throughput": 11813418.519651882, - "maxRtt": 154.061, - "maxServerLatency": 317.2950000000001, - "totalByteWeight": 2117604, - "totalTaskTime": 843.4280000000017, - "mainDocumentTransferSize": 72217 + "rtt": 8.549999999999999, + "throughput": 8662409.785688115, + "maxRtt": 149.68599999999998, + "maxServerLatency": 442.74100000000004, + "totalByteWeight": 1713063, + "totalTaskTime": 856.5139999999976, + "mainDocumentTransferSize": 69393 } ] } @@ -363865,9 +360320,9 @@ "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "F", - "trackersCount": 17, - "lighthouse_performance": 0.2960990905761719, - "lighthouse_performanceGrade": "E", + "trackersCount": 14, + "lighthouse_performance": 0.373259162902832, + "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, @@ -363892,7 +360347,7 @@ "http": { "url": "https://www.monstagedetroisieme.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:15:29 GMT", + "end_time": "Sun, 14 Jan 2024 02:15:14 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -363900,27 +360355,27 @@ "Cache-Control": "max-age=0, private, must-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "6073", + "Content-Length": "6078", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 02:15:28 GMT", - "ETag": "W/\"0f8a6a2728bf14dee3f4122469497616\"", + "Date": "Sun, 14 Jan 2024 02:15:13 GMT", + "ETag": "W/\"27ec833f863cfbddadcf373f6f311902\"", "Link": "; rel=preload; as=style; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_monstage_session=zIXia1xHIJmi70dE18t3I2jXYpd4RUYA4qJf00UjYQEvfBWF3T%2B3jnnuTtuU%2FoSB4z8yAtgu%2B1di7M2Ey4Sgc%2B%2FvISRpmde%2FHs4i35NiOpo1L4Gt%2FnbP3yrOEKBVjkkwUIdtr8q%2FUWVZDijLjpCuIJ0bBSgo%2F3MgnczYSzKE3lJ%2BbUI1ungnsPfsQvoTALvgcnXXdv6rpyI9jIMsyw6s8DI%2B0wun41ZwDpbN3nAw5U83FSCNqWYmBXKUEbXnlk5ArP3XBinsGoNBjGXp0wCDiSMGoO7uycxbVg%3D%3D--uOIlCCLrcy11FALE--oT52HFw2Q7MCHGABAuPVSg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", - "Sozu-Id": "01HKGV88BTBCG6CSE4P3RXHR28", + "Set-Cookie": "_monstage_session=HcN3Q6K%2FCN3P7T%2BmDnUDBAVqNucP0eGqSZZN%2FugkAS9FX4MJuOJnTkWPNo8MqLd4Y2XcShQ93uN%2F8jWw3IQvxkh1drxr8Il9C5WMhqvJpvo3df5Dr2gJmRAn9GfjCVohFz9Q5vY50aNgTgYsaTsHuL%2FqmR%2B6Rfc%2Frfnw1bsEVAunYT4wZDTK6ofyMpVAWtWlkh5gIx2goZhm48QfBQGz2Yp78kRwWSQGYazUpth4OBz4D6by2WXfAYQIopXlUM6LaOaupKT6vXSSNkyVkbQR0SJaoiONlwKs7g%3D%3D--398i5PJ7JUaMFP9F--2a1gfH5vomWupSZuPCm5SQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Sozu-Id": "01HM2W0TY1313NG38QAMSTN5JJ", "Strict-Transport-Security": "max-age=63072000; includeSubDomains", "Vary": "Accept,Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-Id": "388936bb-2cad-455b-a14b-095bf925a47d", - "X-Runtime": "0.013911", + "X-Request-Id": "20f512e9-2430-4f17-82df-62b18f561d34", + "X-Runtime": "0.016876", "X-XSS-Protection": "0" }, - "scan_id": 46226929, + "scan_id": 46435708, "score": 65, - "start_time": "Sun, 07 Jan 2024 02:15:25 GMT", + "start_time": "Sun, 14 Jan 2024 02:15:11 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -364105,7 +360560,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-01T01:01:56Z", + "up_since": "2024-01-10T14:21:47Z", "error": null, "period": 3600, "apdex_t": 0.5, @@ -364117,8 +360572,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T12:13:03Z", - "next_check_at": "2024-01-07T13:12:53Z", + "last_check_at": "2024-01-14T11:52:52Z", + "next_check_at": "2024-01-14T12:52:35Z", "created_at": "2021-12-01T16:35:58Z", "mute_until": null, "favicon_url": "https://www.monstagedetroisieme.fr/packs/media/images/favicon-d21ba7166343077ed001c60d663a06e1.png", @@ -364126,29 +360581,29 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T07:14:22Z", + "tested_at": "2024-01-14T07:54:20Z", "expires_at": "2024-02-13T18:37:01Z", "valid": true, "error": null }, "metrics": { - "apdex": 1, + "apdex": 0.958, "timings": { "redirect": 0, - "namelookup": 116, - "connection": 158, - "handshake": 169, - "response": 195, - "total": 637 + "namelookup": 105, + "connection": 134, + "handshake": 157, + "response": 219, + "total": 615 } }, "uptimeGrade": "A", - "apdexGrade": "A" + "apdexGrade": "E" }, "nmap": { "host": "www.monstagedetroisieme.fr", "protocol": "tcp", - "closed_ports": "987", + "closed_ports": "986", "open_ports": [ { "service": { @@ -364157,6 +360612,13 @@ "vulnerabilities": [] } }, + { + "service": { + "name": "tcpwrapped", + "id": "179", + "vulnerabilities": [] + } + }, { "service": { "name": "https", @@ -364224,7 +360686,8 @@ }, { "service": { - "name": "cpdlc", + "name": "http", + "product": "JBoss Enterprise Application Platform", "id": "5911", "vulnerabilities": [] } @@ -364251,70 +360714,70 @@ "testssl": [ { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -364322,7 +360785,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -364330,7 +360793,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -364338,7 +360801,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -364346,7 +360809,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -364354,7 +360817,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -364362,595 +360825,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFAzCCA+ugAwIBAgISBGjKOEDudxTskJOyO5fk84OcMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxODM3MDJaFw0yNDAyMTMxODM3MDFaMCUxIzAhBgNVBAMTGnd3dy5tb25zdGFnZWRldHJvaXNpZW1lLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglE4rZXIA8ETduuACYckprmx+6i6WQwXEo0qeXNTvCW4vyb8cyYHtMeT+K2LmfF7vbXvY37btz/8RwLbH8aSkRqsV7HHFoewHIrfvT78a48EXTkCHIhmZooWJWQjGavCA79dMS6DUdN76R+WYUVZDuYQgwaDBxzPcEX8MQaAJC+IQ91690TvR4s52DliyVECl/f3SFYTij31ej4bDo1TSR52Js61PxPVVPK1RamkSJS8MbI4a3KB7HYALOWZPJwGydFGdlf3WxSydkgp6GZcEg10p6LCgDIrMde4xJE+J7NIcEDl/dKfVzj8IkBoFl8pyKFUnR/JhWlHTlAer/nI6wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWSVBrwdvT1+ZBJc4RrYN2DChdijAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9R8rYkAAAQDAEgwRgIhAPqOV80XjbSd1mI8IVYc6y45ZglZGUHyOXMdV47yCSosAiEAq3QI8NhstrttQJNadQ360w/0HFfhA0aBLUAdYPxZNTMAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvUfK2mAAAEAwBIMEYCIQCLZOMlO+FNNGZ7CeOWVpDn0I7x5FoiAG5r1hF8HrsykgIhANM93IL7PLwKvWhlzH7Q8/3iOGvuvde9GEhs5ug6eeknMA0GCSqGSIb3DQEBCwUAA4IBAQCxUJSbtvILf5NMnT+/lE0hddu2A5u8KP1G9LJEV62IFF7zjlPbeNGt7rn014w4D9tmrVIN8IvZfggttQRhNGcqbtfAplZoy+JFjo10Ykcq/GthuCol8qc0UZIo+wmDsf9Zgb/JY8+0J76rBHSyo1GjxqYg7vQ+z3hfCBPqlPGc3KoUUrnRoP8kl3Q/YWJrqk9yWEvmEeVsIzCA3eaN7LaodKBUm793yOJnOY4ndmyswV2iFWYLXjIdzCDxlDmohLIGTjKzyIUhP3zNjWOwnZ7zw0WkADT/iWeeaklCFPhguW9JYpOM7ZW5IWz9dLquf580XcPJw3XX3kRqRfKMO2ys\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", - "finding": "1704630924" + "finding": "1705234323" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -364958,7 +361421,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -364967,7 +361430,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -364976,7 +361439,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -364985,7 +361448,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -364994,7 +361457,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -365002,7 +361465,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -365011,7 +361474,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -365020,7 +361483,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -365029,7 +361492,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -365038,14 +361501,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -365054,7 +361517,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -365063,7 +361526,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -365072,7 +361535,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -365081,7 +361544,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -365090,7 +361553,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -365099,7 +361562,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -365108,7 +361571,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -365117,7 +361580,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -365126,7 +361589,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -365135,385 +361598,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.215", + "ip": "www.monstagedetroisieme.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -365521,7 +361984,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -365529,7 +361992,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -365537,7 +362000,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -365545,7 +362008,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -365553,7 +362016,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -365561,595 +362024,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", - "finding": "1704630992" + "finding": "1705234380" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -366157,7 +362620,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -366166,7 +362629,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -366175,7 +362638,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -366184,7 +362647,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -366193,7 +362656,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -366201,7 +362664,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -366210,7 +362673,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -366219,7 +362682,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -366228,7 +362691,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -366237,14 +362700,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -366253,7 +362716,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -366262,7 +362725,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -366271,7 +362734,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -366280,7 +362743,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -366289,7 +362752,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -366298,7 +362761,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -366307,7 +362770,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -366316,7 +362779,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -366325,7 +362788,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -366334,385 +362797,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/46.252.181.103", + "ip": "www.monstagedetroisieme.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -366720,7 +363183,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -366728,7 +363191,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -366736,7 +363199,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -366744,7 +363207,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -366752,7 +363215,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -366760,595 +363223,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFAzCCA+ugAwIBAgISBGjKOEDudxTskJOyO5fk84OcMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxODM3MDJaFw0yNDAyMTMxODM3MDFaMCUxIzAhBgNVBAMTGnd3dy5tb25zdGFnZWRldHJvaXNpZW1lLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglE4rZXIA8ETduuACYckprmx+6i6WQwXEo0qeXNTvCW4vyb8cyYHtMeT+K2LmfF7vbXvY37btz/8RwLbH8aSkRqsV7HHFoewHIrfvT78a48EXTkCHIhmZooWJWQjGavCA79dMS6DUdN76R+WYUVZDuYQgwaDBxzPcEX8MQaAJC+IQ91690TvR4s52DliyVECl/f3SFYTij31ej4bDo1TSR52Js61PxPVVPK1RamkSJS8MbI4a3KB7HYALOWZPJwGydFGdlf3WxSydkgp6GZcEg10p6LCgDIrMde4xJE+J7NIcEDl/dKfVzj8IkBoFl8pyKFUnR/JhWlHTlAer/nI6wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWSVBrwdvT1+ZBJc4RrYN2DChdijAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9R8rYkAAAQDAEgwRgIhAPqOV80XjbSd1mI8IVYc6y45ZglZGUHyOXMdV47yCSosAiEAq3QI8NhstrttQJNadQ360w/0HFfhA0aBLUAdYPxZNTMAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvUfK2mAAAEAwBIMEYCIQCLZOMlO+FNNGZ7CeOWVpDn0I7x5FoiAG5r1hF8HrsykgIhANM93IL7PLwKvWhlzH7Q8/3iOGvuvde9GEhs5ug6eeknMA0GCSqGSIb3DQEBCwUAA4IBAQCxUJSbtvILf5NMnT+/lE0hddu2A5u8KP1G9LJEV62IFF7zjlPbeNGt7rn014w4D9tmrVIN8IvZfggttQRhNGcqbtfAplZoy+JFjo10Ykcq/GthuCol8qc0UZIo+wmDsf9Zgb/JY8+0J76rBHSyo1GjxqYg7vQ+z3hfCBPqlPGc3KoUUrnRoP8kl3Q/YWJrqk9yWEvmEeVsIzCA3eaN7LaodKBUm793yOJnOY4ndmyswV2iFWYLXjIdzCDxlDmohLIGTjKzyIUhP3zNjWOwnZ7zw0WkADT/iWeeaklCFPhguW9JYpOM7ZW5IWz9dLquf580XcPJw3XX3kRqRfKMO2ys\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", - "finding": "1704631050" + "finding": "1705234438" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -367356,7 +363819,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -367365,7 +363828,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -367374,7 +363837,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -367383,7 +363846,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -367392,7 +363855,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -367400,7 +363863,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -367409,7 +363872,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -367418,7 +363881,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -367427,7 +363890,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -367436,14 +363899,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -367452,7 +363915,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -367461,7 +363924,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -367470,7 +363933,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -367479,7 +363942,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -367488,7 +363951,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -367497,7 +363960,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -367506,7 +363969,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -367515,7 +363978,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -367524,7 +363987,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -367533,385 +363996,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.217", + "ip": "www.monstagedetroisieme.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -367919,7 +364382,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -367927,7 +364390,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -367935,7 +364398,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -367943,7 +364406,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -367951,7 +364414,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -367959,595 +364422,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", - "finding": "1704631109" + "finding": "1705234496" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -368555,7 +365018,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -368564,7 +365027,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -368573,7 +365036,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -368582,7 +365045,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -368591,7 +365054,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -368599,7 +365062,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -368608,7 +365071,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -368617,7 +365080,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -368626,7 +365089,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -368635,14 +365098,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -368651,7 +365114,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -368660,7 +365123,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -368669,7 +365132,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -368678,7 +365141,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -368687,7 +365150,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -368696,7 +365159,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -368705,7 +365168,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -368714,7 +365177,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -368723,7 +365186,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -368732,385 +365195,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.218", + "ip": "www.monstagedetroisieme.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -369118,7 +365581,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -369126,7 +365589,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -369134,7 +365597,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -369142,7 +365605,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -369150,7 +365613,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -369158,595 +365621,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFAzCCA+ugAwIBAgISBGjKOEDudxTskJOyO5fk84OcMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxODM3MDJaFw0yNDAyMTMxODM3MDFaMCUxIzAhBgNVBAMTGnd3dy5tb25zdGFnZWRldHJvaXNpZW1lLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglE4rZXIA8ETduuACYckprmx+6i6WQwXEo0qeXNTvCW4vyb8cyYHtMeT+K2LmfF7vbXvY37btz/8RwLbH8aSkRqsV7HHFoewHIrfvT78a48EXTkCHIhmZooWJWQjGavCA79dMS6DUdN76R+WYUVZDuYQgwaDBxzPcEX8MQaAJC+IQ91690TvR4s52DliyVECl/f3SFYTij31ej4bDo1TSR52Js61PxPVVPK1RamkSJS8MbI4a3KB7HYALOWZPJwGydFGdlf3WxSydkgp6GZcEg10p6LCgDIrMde4xJE+J7NIcEDl/dKfVzj8IkBoFl8pyKFUnR/JhWlHTlAer/nI6wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWSVBrwdvT1+ZBJc4RrYN2DChdijAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9R8rYkAAAQDAEgwRgIhAPqOV80XjbSd1mI8IVYc6y45ZglZGUHyOXMdV47yCSosAiEAq3QI8NhstrttQJNadQ360w/0HFfhA0aBLUAdYPxZNTMAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvUfK2mAAAEAwBIMEYCIQCLZOMlO+FNNGZ7CeOWVpDn0I7x5FoiAG5r1hF8HrsykgIhANM93IL7PLwKvWhlzH7Q8/3iOGvuvde9GEhs5ug6eeknMA0GCSqGSIb3DQEBCwUAA4IBAQCxUJSbtvILf5NMnT+/lE0hddu2A5u8KP1G9LJEV62IFF7zjlPbeNGt7rn014w4D9tmrVIN8IvZfggttQRhNGcqbtfAplZoy+JFjo10Ykcq/GthuCol8qc0UZIo+wmDsf9Zgb/JY8+0J76rBHSyo1GjxqYg7vQ+z3hfCBPqlPGc3KoUUrnRoP8kl3Q/YWJrqk9yWEvmEeVsIzCA3eaN7LaodKBUm793yOJnOY4ndmyswV2iFWYLXjIdzCDxlDmohLIGTjKzyIUhP3zNjWOwnZ7zw0WkADT/iWeeaklCFPhguW9JYpOM7ZW5IWz9dLquf580XcPJw3XX3kRqRfKMO2ys\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", - "finding": "1704631176" + "finding": "1705234554" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -369754,7 +366217,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -369763,7 +366226,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -369772,7 +366235,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -369781,7 +366244,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -369790,7 +366253,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -369798,7 +366261,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -369807,7 +366270,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -369816,7 +366279,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -369825,7 +366288,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -369834,14 +366297,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -369850,7 +366313,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -369859,7 +366322,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -369868,7 +366331,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -369877,7 +366340,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -369886,7 +366349,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -369895,7 +366358,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -369904,7 +366367,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -369913,7 +366376,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -369922,7 +366385,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -369931,385 +366394,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/185.42.117.109", + "ip": "www.monstagedetroisieme.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370317,7 +366780,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370325,7 +366788,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370333,7 +366796,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -370341,7 +366804,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -370349,7 +366812,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -370357,595 +366820,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFAzCCA+ugAwIBAgISBGjKOEDudxTskJOyO5fk84OcMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxODM3MDJaFw0yNDAyMTMxODM3MDFaMCUxIzAhBgNVBAMTGnd3dy5tb25zdGFnZWRldHJvaXNpZW1lLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglE4rZXIA8ETduuACYckprmx+6i6WQwXEo0qeXNTvCW4vyb8cyYHtMeT+K2LmfF7vbXvY37btz/8RwLbH8aSkRqsV7HHFoewHIrfvT78a48EXTkCHIhmZooWJWQjGavCA79dMS6DUdN76R+WYUVZDuYQgwaDBxzPcEX8MQaAJC+IQ91690TvR4s52DliyVECl/f3SFYTij31ej4bDo1TSR52Js61PxPVVPK1RamkSJS8MbI4a3KB7HYALOWZPJwGydFGdlf3WxSydkgp6GZcEg10p6LCgDIrMde4xJE+J7NIcEDl/dKfVzj8IkBoFl8pyKFUnR/JhWlHTlAer/nI6wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWSVBrwdvT1+ZBJc4RrYN2DChdijAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9R8rYkAAAQDAEgwRgIhAPqOV80XjbSd1mI8IVYc6y45ZglZGUHyOXMdV47yCSosAiEAq3QI8NhstrttQJNadQ360w/0HFfhA0aBLUAdYPxZNTMAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvUfK2mAAAEAwBIMEYCIQCLZOMlO+FNNGZ7CeOWVpDn0I7x5FoiAG5r1hF8HrsykgIhANM93IL7PLwKvWhlzH7Q8/3iOGvuvde9GEhs5ug6eeknMA0GCSqGSIb3DQEBCwUAA4IBAQCxUJSbtvILf5NMnT+/lE0hddu2A5u8KP1G9LJEV62IFF7zjlPbeNGt7rn014w4D9tmrVIN8IvZfggttQRhNGcqbtfAplZoy+JFjo10Ykcq/GthuCol8qc0UZIo+wmDsf9Zgb/JY8+0J76rBHSyo1GjxqYg7vQ+z3hfCBPqlPGc3KoUUrnRoP8kl3Q/YWJrqk9yWEvmEeVsIzCA3eaN7LaodKBUm793yOJnOY4ndmyswV2iFWYLXjIdzCDxlDmohLIGTjKzyIUhP3zNjWOwnZ7zw0WkADT/iWeeaklCFPhguW9JYpOM7ZW5IWz9dLquf580XcPJw3XX3kRqRfKMO2ys\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "1704631238" + "finding": "1705234613" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -370953,7 +367416,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -370962,7 +367425,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -370971,7 +367434,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -370980,7 +367443,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -370989,7 +367452,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -370997,7 +367460,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -371006,7 +367469,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -371015,7 +367478,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -371024,7 +367487,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -371033,14 +367496,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -371049,7 +367512,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -371058,7 +367521,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -371067,7 +367530,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -371076,7 +367539,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -371085,7 +367548,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -371094,7 +367557,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -371103,7 +367566,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -371112,7 +367575,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -371121,7 +367584,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -371130,385 +367593,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/46.252.181.104", + "ip": "www.monstagedetroisieme.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -371516,7 +367979,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -371524,7 +367987,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -371532,7 +367995,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -371540,7 +368003,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -371548,7 +368011,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -371556,595 +368019,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFAzCCA+ugAwIBAgISBGjKOEDudxTskJOyO5fk84OcMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxODM3MDJaFw0yNDAyMTMxODM3MDFaMCUxIzAhBgNVBAMTGnd3dy5tb25zdGFnZWRldHJvaXNpZW1lLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglE4rZXIA8ETduuACYckprmx+6i6WQwXEo0qeXNTvCW4vyb8cyYHtMeT+K2LmfF7vbXvY37btz/8RwLbH8aSkRqsV7HHFoewHIrfvT78a48EXTkCHIhmZooWJWQjGavCA79dMS6DUdN76R+WYUVZDuYQgwaDBxzPcEX8MQaAJC+IQ91690TvR4s52DliyVECl/f3SFYTij31ej4bDo1TSR52Js61PxPVVPK1RamkSJS8MbI4a3KB7HYALOWZPJwGydFGdlf3WxSydkgp6GZcEg10p6LCgDIrMde4xJE+J7NIcEDl/dKfVzj8IkBoFl8pyKFUnR/JhWlHTlAer/nI6wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWSVBrwdvT1+ZBJc4RrYN2DChdijAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9R8rYkAAAQDAEgwRgIhAPqOV80XjbSd1mI8IVYc6y45ZglZGUHyOXMdV47yCSosAiEAq3QI8NhstrttQJNadQ360w/0HFfhA0aBLUAdYPxZNTMAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvUfK2mAAAEAwBIMEYCIQCLZOMlO+FNNGZ7CeOWVpDn0I7x5FoiAG5r1hF8HrsykgIhANM93IL7PLwKvWhlzH7Q8/3iOGvuvde9GEhs5ug6eeknMA0GCSqGSIb3DQEBCwUAA4IBAQCxUJSbtvILf5NMnT+/lE0hddu2A5u8KP1G9LJEV62IFF7zjlPbeNGt7rn014w4D9tmrVIN8IvZfggttQRhNGcqbtfAplZoy+JFjo10Ykcq/GthuCol8qc0UZIo+wmDsf9Zgb/JY8+0J76rBHSyo1GjxqYg7vQ+z3hfCBPqlPGc3KoUUrnRoP8kl3Q/YWJrqk9yWEvmEeVsIzCA3eaN7LaodKBUm793yOJnOY4ndmyswV2iFWYLXjIdzCDxlDmohLIGTjKzyIUhP3zNjWOwnZ7zw0WkADT/iWeeaklCFPhguW9JYpOM7ZW5IWz9dLquf580XcPJw3XX3kRqRfKMO2ys\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1704631297" + "finding": "1705234671" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -372152,7 +368615,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -372161,7 +368624,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -372170,7 +368633,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -372179,7 +368642,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -372188,7 +368651,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -372196,7 +368659,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -372205,7 +368668,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -372214,7 +368677,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -372223,7 +368686,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -372232,14 +368695,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -372248,7 +368711,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -372257,7 +368720,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -372266,7 +368729,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -372275,7 +368738,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -372284,7 +368747,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -372293,7 +368756,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -372302,7 +368765,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -372311,7 +368774,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -372320,7 +368783,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -372329,385 +368792,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.214", + "ip": "www.monstagedetroisieme.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -372715,7 +369178,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -372723,7 +369186,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -372731,7 +369194,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -372739,7 +369202,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -372747,7 +369210,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -372755,595 +369218,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFAzCCA+ugAwIBAgISBGjKOEDudxTskJOyO5fk84OcMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxODM3MDJaFw0yNDAyMTMxODM3MDFaMCUxIzAhBgNVBAMTGnd3dy5tb25zdGFnZWRldHJvaXNpZW1lLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglE4rZXIA8ETduuACYckprmx+6i6WQwXEo0qeXNTvCW4vyb8cyYHtMeT+K2LmfF7vbXvY37btz/8RwLbH8aSkRqsV7HHFoewHIrfvT78a48EXTkCHIhmZooWJWQjGavCA79dMS6DUdN76R+WYUVZDuYQgwaDBxzPcEX8MQaAJC+IQ91690TvR4s52DliyVECl/f3SFYTij31ej4bDo1TSR52Js61PxPVVPK1RamkSJS8MbI4a3KB7HYALOWZPJwGydFGdlf3WxSydkgp6GZcEg10p6LCgDIrMde4xJE+J7NIcEDl/dKfVzj8IkBoFl8pyKFUnR/JhWlHTlAer/nI6wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWSVBrwdvT1+ZBJc4RrYN2DChdijAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9R8rYkAAAQDAEgwRgIhAPqOV80XjbSd1mI8IVYc6y45ZglZGUHyOXMdV47yCSosAiEAq3QI8NhstrttQJNadQ360w/0HFfhA0aBLUAdYPxZNTMAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvUfK2mAAAEAwBIMEYCIQCLZOMlO+FNNGZ7CeOWVpDn0I7x5FoiAG5r1hF8HrsykgIhANM93IL7PLwKvWhlzH7Q8/3iOGvuvde9GEhs5ug6eeknMA0GCSqGSIb3DQEBCwUAA4IBAQCxUJSbtvILf5NMnT+/lE0hddu2A5u8KP1G9LJEV62IFF7zjlPbeNGt7rn014w4D9tmrVIN8IvZfggttQRhNGcqbtfAplZoy+JFjo10Ykcq/GthuCol8qc0UZIo+wmDsf9Zgb/JY8+0J76rBHSyo1GjxqYg7vQ+z3hfCBPqlPGc3KoUUrnRoP8kl3Q/YWJrqk9yWEvmEeVsIzCA3eaN7LaodKBUm793yOJnOY4ndmyswV2iFWYLXjIdzCDxlDmohLIGTjKzyIUhP3zNjWOwnZ7zw0WkADT/iWeeaklCFPhguW9JYpOM7ZW5IWz9dLquf580XcPJw3XX3kRqRfKMO2ys\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", - "finding": "1704631361" + "finding": "1705234729" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -373351,7 +369814,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -373360,7 +369823,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -373369,7 +369832,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -373378,7 +369841,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -373387,7 +369850,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -373395,7 +369858,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -373404,7 +369867,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -373413,7 +369876,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -373422,7 +369885,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -373431,14 +369894,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -373447,7 +369910,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -373456,7 +369919,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -373465,7 +369928,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -373474,7 +369937,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -373483,7 +369946,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -373492,7 +369955,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -373501,7 +369964,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -373510,7 +369973,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -373519,7 +369982,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -373528,385 +369991,385 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/185.42.117.108", + "ip": "www.monstagedetroisieme.fr/46.252.181.103", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -373914,7 +370377,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -373922,7 +370385,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -373930,7 +370393,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -373938,7 +370401,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -373946,7 +370409,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -373954,595 +370417,595 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0468CA3840EE7714EC9093B23B97E4F3839C" }, { "id": "cert_serialNumberLen", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "02C89CAAB0A0DC1DAD04C154F5FE606398E57DDE" }, { "id": "cert_fingerprintSHA256", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "cert", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr" }, { "id": "cert_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "cert_notAfter", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-13 18:37" }, { "id": "cert_extlifeSpan", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFAzCCA+ugAwIBAgISBGjKOEDudxTskJOyO5fk84OcMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTUxODM3MDJaFw0yNDAyMTMxODM3MDFaMCUxIzAhBgNVBAMTGnd3dy5tb25zdGFnZWRldHJvaXNpZW1lLmZyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAglE4rZXIA8ETduuACYckprmx+6i6WQwXEo0qeXNTvCW4vyb8cyYHtMeT+K2LmfF7vbXvY37btz/8RwLbH8aSkRqsV7HHFoewHIrfvT78a48EXTkCHIhmZooWJWQjGavCA79dMS6DUdN76R+WYUVZDuYQgwaDBxzPcEX8MQaAJC+IQ91690TvR4s52DliyVECl/f3SFYTij31ej4bDo1TSR52Js61PxPVVPK1RamkSJS8MbI4a3KB7HYALOWZPJwGydFGdlf3WxSydkgp6GZcEg10p6LCgDIrMde4xJE+J7NIcEDl/dKfVzj8IkBoFl8pyKFUnR/JhWlHTlAer/nI6wIDAQABo4ICHjCCAhowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTWSVBrwdvT1+ZBJc4RrYN2DChdijAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAlBgNVHREEHjAcghp3d3cubW9uc3RhZ2VkZXRyb2lzaWVtZS5mcjATBgNVHSAEDDAKMAgGBmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi9R8rYkAAAQDAEgwRgIhAPqOV80XjbSd1mI8IVYc6y45ZglZGUHyOXMdV47yCSosAiEAq3QI8NhstrttQJNadQ360w/0HFfhA0aBLUAdYPxZNTMAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYvUfK2mAAAEAwBIMEYCIQCLZOMlO+FNNGZ7CeOWVpDn0I7x5FoiAG5r1hF8HrsykgIhANM93IL7PLwKvWhlzH7Q8/3iOGvuvde9GEhs5ug6eeknMA0GCSqGSIb3DQEBCwUAA4IBAQCxUJSbtvILf5NMnT+/lE0hddu2A5u8KP1G9LJEV62IFF7zjlPbeNGt7rn014w4D9tmrVIN8IvZfggttQRhNGcqbtfAplZoy+JFjo10Ykcq/GthuCol8qc0UZIo+wmDsf9Zgb/JY8+0J76rBHSyo1GjxqYg7vQ+z3hfCBPqlPGc3KoUUrnRoP8kl3Q/YWJrqk9yWEvmEeVsIzCA3eaN7LaodKBUm793yOJnOY4ndmyswV2iFWYLXjIdzCDxlDmohLIGTjKzyIUhP3zNjWOwnZ7zw0WkADT/iWeeaklCFPhguW9JYpOM7ZW5IWz9dLquf580XcPJw3XX3kRqRfKMO2ys\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "E342ADE8C6D06315EADF42F6E5AEEFBF6E73D8030FF2F7290F5F859F78F7C3FA" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-15 18:37" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "finding": "2024-02-13 18:37" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "www.monstagedetroisieme.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "1704631419" + "finding": "1705234788" }, { "id": "HSTS_time", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -374550,7 +371013,7 @@ }, { "id": "heartbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -374559,7 +371022,7 @@ }, { "id": "CCS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -374568,7 +371031,7 @@ }, { "id": "ticketbleed", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -374577,7 +371040,7 @@ }, { "id": "ROBOT", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -374586,7 +371049,7 @@ }, { "id": "secure_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -374594,7 +371057,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -374603,7 +371066,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -374612,7 +371075,7 @@ }, { "id": "BREACH", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -374621,7 +371084,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -374630,14 +371093,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -374646,7 +371109,7 @@ }, { "id": "FREAK", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -374655,7 +371118,7 @@ }, { "id": "DROWN", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -374664,7 +371127,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -374673,7 +371136,7 @@ }, { "id": "LOGJAM", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -374682,7 +371145,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -374691,7 +371154,7 @@ }, { "id": "BEAST", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -374700,7 +371163,7 @@ }, { "id": "LUCKY13", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -374709,7 +371172,7 @@ }, { "id": "winshock", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -374718,7 +371181,7 @@ }, { "id": "RC4", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -374727,325 +371190,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "www.monstagedetroisieme.fr/91.208.207.216", + "ip": "www.monstagedetroisieme.fr/91.208.207.214", "port": "443", "severity": "INFO", - "finding": "556" + "finding": "525" } ], "thirdparties": { @@ -375062,11 +371525,11 @@ "cookies": [ { "name": "_monstage_session", - "value": "VkonV1C%2FQ0oNOHtLsstd69j5PuqSTmwWgwbXcNbiIGlHZUzV5NoPpoltCrxflOTgGHoiElkL7n2aanc%2B4o1yP1LkqgxqU8G07sUaZKUjsDSDh1flyWt6an%2B7G%2FKAqbSLgB9kbXloPBoSmqPsnzgF3YxFeaQAA8%2FjVI1NN6ErqTYRpr4po4RrNced8vfXPoOaN0JQwGMUU46nPMItwhB0No4ZMuVfs1%2FtcnlsHcjDu3d0bZb3AzFvBdQ%2FL9Y1p4emtegMT7Z8EUv8MiKeG7BOFFvU56mVjT%2FJcQ%3D%3D--DTq28AR4TWwN0K1n--vyFE%2BJPs5Nl2OIGDSjvAXQ%3D%3D", + "value": "uK2SBhR1J%2FnE503NqsFMbz%2FYlHJL4LRDcVY%2FeIIG9SU3o3BtzIEviRHG6rUNSDHQa1YX6SFsY%2Fkrk295g9ZWh1xUS88M1d5%2FpgryDbze5cgWQldWVOPQ9UsTIitWFoIIjxNswBuqodKe%2BLdRqww1pPoQZkNnYEf3MOAWS6yDXc98A8cMj8vDMd3OXooH9w3ly8kczXABO1ZS%2B%2B1sLQO0xXZWVLnph9EFEYW%2BCBMKIEK%2F%2BUzzy%2BSz4gHl9k6pDNa2rS%2BMqmMNG1F1kcd7Vu1yc44jwu0bK35bsg%3D%3D--HcvGEOjBnO4XHtE%2F--fHLXYUCsF0M5HmwEoSdYAw%3D%3D", "domain": "www.monstagedetroisieme.fr", "path": "/", "expires": -1, - "size": 379, + "size": 389, "httpOnly": true, "secure": true, "session": true, @@ -375080,28 +371543,28 @@ "cache-control": "max-age=0, private, must-revalidate", "connection": "keep-alive", "content-encoding": "gzip", - "content-length": "6076", + "content-length": "6073", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 12:34:24 GMT", - "etag": "W/\"ea79ac81490d1bc27c0b615405dad38b\"", + "date": "Sun, 14 Jan 2024 12:11:02 GMT", + "etag": "W/\"5e77d9cc70cd8983dccba121a8198db4\"", "link": "; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_monstage_session=VkonV1C%2FQ0oNOHtLsstd69j5PuqSTmwWgwbXcNbiIGlHZUzV5NoPpoltCrxflOTgGHoiElkL7n2aanc%2B4o1yP1LkqgxqU8G07sUaZKUjsDSDh1flyWt6an%2B7G%2FKAqbSLgB9kbXloPBoSmqPsnzgF3YxFeaQAA8%2FjVI1NN6ErqTYRpr4po4RrNced8vfXPoOaN0JQwGMUU46nPMItwhB0No4ZMuVfs1%2FtcnlsHcjDu3d0bZb3AzFvBdQ%2FL9Y1p4emtegMT7Z8EUv8MiKeG7BOFFvU56mVjT%2FJcQ%3D%3D--DTq28AR4TWwN0K1n--vyFE%2BJPs5Nl2OIGDSjvAXQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", - "sozu-id": "01HKHYNJJEB27JZS7X34P1SFSB", + "set-cookie": "_monstage_session=uK2SBhR1J%2FnE503NqsFMbz%2FYlHJL4LRDcVY%2FeIIG9SU3o3BtzIEviRHG6rUNSDHQa1YX6SFsY%2Fkrk295g9ZWh1xUS88M1d5%2FpgryDbze5cgWQldWVOPQ9UsTIitWFoIIjxNswBuqodKe%2BLdRqww1pPoQZkNnYEf3MOAWS6yDXc98A8cMj8vDMd3OXooH9w3ly8kczXABO1ZS%2B%2B1sLQO0xXZWVLnph9EFEYW%2BCBMKIEK%2F%2BUzzy%2BSz4gHl9k6pDNa2rS%2BMqmMNG1F1kcd7Vu1yc44jwu0bK35bsg%3D%3D--HcvGEOjBnO4XHtE%2F--fHLXYUCsF0M5HmwEoSdYAw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "sozu-id": "01HM3Y3TP8KRE8420HF7YC92N5", "strict-transport-security": "max-age=63072000; includeSubDomains", "vary": "Accept-Encoding", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "c4433c1f-f78f-4d89-bf57-49fab8bb9b88", - "x-runtime": "0.012517", + "x-request-id": "f6fc34e2-9a2d-4c48-9bc5-92d17843419e", + "x-runtime": "0.014283", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "www.monstagedetroisieme.fr", - "ip": "185.42.117.108", + "ip": "46.252.181.103", "geoip": { "continent": { "code": "EU", @@ -375157,7 +371620,7 @@ }, { "hostname": "betagouv-matomo.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -375399,6 +371862,24 @@ ], "rootPath": true }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, { "slug": "google-workspace", "name": "Google Workspace", @@ -375422,24 +371903,6 @@ ], "rootPath": true }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, { "slug": "webpack", "name": "Webpack", @@ -375463,7 +371926,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 12:33:43", + "@generated": "Sun, 14 Jan 2024 12:10:22", "site": [ { "@name": "https://www.monstagedetroisieme.fr", @@ -375664,12 +372127,515 @@ } ] }, - "nuclei": [], + "nuclei": [ + { + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "info": { + "name": "DNS SaaS Service Detection", + "author": [ + "noah @thesubtlety", + "pdteam" + ], + "tags": [ + "dns", + "service" + ], + "description": "A CNAME DNS record was discovered", + "reference": [ + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "dns", + "host": "www.monstagedetroisieme.fr.", + "matched-at": "www.monstagedetroisieme.fr", + "extracted-results": [ + "domain.par.clever-cloud.com." + ], + "timestamp": "2024-01-14T12:23:45.152509067Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "www.monstagedetroisieme.fr.", + "matched-at": "www.monstagedetroisieme.fr", + "timestamp": "2024-01-14T12:23:45.158134172Z", + "matcher-status": true + }, + { + "template": "http/misconfiguration/httponly-cookie-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/httponly-cookie-detect", + "template-id": "httponly-cookie-detect", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/httponly-cookie-detect.yaml", + "info": { + "name": "HttpOnly Cookie - Detect", + "author": [ + "mr. bobo hp" + ], + "tags": [ + "misconfig", + "http", + "cookie", + "generic" + ], + "description": "Checks whether cookies in the HTTP response contain the HttpOnly attribute. If the HttpOnly flag is set, it means that the cookie is HTTP-only\n", + "reference": [ + "https://stackoverflow.com/questions/4316539/how-do-i-test-httponly-cookie-flag" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": null, + "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "http", + "host": "https://www.monstagedetroisieme.fr", + "matched-at": "https://www.monstagedetroisieme.fr", + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:23:57.297744788Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://www.monstagedetroisieme.fr", + "matched-at": "https://www.monstagedetroisieme.fr", + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:24:31.262635162Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://www.monstagedetroisieme.fr", + "matched-at": "https://www.monstagedetroisieme.fr", + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:24:31.26269338Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://www.monstagedetroisieme.fr", + "matched-at": "https://www.monstagedetroisieme.fr", + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:24:31.262718637Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://www.monstagedetroisieme.fr", + "matched-at": "https://www.monstagedetroisieme.fr", + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:24:31.262742201Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://www.monstagedetroisieme.fr", + "matched-at": "https://www.monstagedetroisieme.fr", + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:24:31.262758281Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://www.monstagedetroisieme.fr", + "matched-at": "https://www.monstagedetroisieme.fr", + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:24:31.262776616Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monstagedetroisieme.fr'", + "matcher-status": true + }, + { + "template": "network/detection/openssh-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/openssh-detect", + "template-id": "openssh-detect", + "template-path": "/home/runner/nuclei-templates/network/detection/openssh-detect.yaml", + "info": { + "name": "OpenSSH Service - Detect", + "author": [ + "r3dg33k", + "daffainfo", + "iamthefrogy" + ], + "tags": [ + "seclists", + "network", + "ssh", + "openssh", + "detect" + ], + "description": "OpenSSH service was detected.\n", + "reference": [ + "http://www.openwall.com/lists/oss-security/2016/08/01/2", + "http://www.openwall.com/lists/oss-security/2018/08/15/5", + "http://seclists.org/fulldisclosure/2016/jul/51", + "https://nvd.nist.gov/vuln/detail/cve-2016-6210", + "https://nvd.nist.gov/vuln/detail/cve-2018-15473" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "tcp", + "host": "www.monstagedetroisieme.fr:22", + "matched-at": "www.monstagedetroisieme.fr:22", + "extracted-results": [ + "SSH-2.0-OpenSSH_9.4" + ], + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:28:19.966652715Z", + "matcher-status": true + }, + { + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "info": { + "name": "Detect SSL Certificate Issuer", + "author": [ + "lingtren" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "www.monstagedetroisieme.fr", + "matched-at": "www.monstagedetroisieme.fr:443", + "extracted-results": [ + "Let's Encrypt" + ], + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:28:25.275364496Z", + "matcher-status": true + }, + { + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "info": { + "name": "SSL DNS Names", + "author": [ + "pdteam" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "www.monstagedetroisieme.fr", + "matched-at": "www.monstagedetroisieme.fr:443", + "extracted-results": [ + "www.monstagedetroisieme.fr" + ], + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:28:25.275477086Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "www.monstagedetroisieme.fr", + "matched-at": "www.monstagedetroisieme.fr:443", + "extracted-results": [ + "tls12" + ], + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:28:26.70423346Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "www.monstagedetroisieme.fr", + "matched-at": "www.monstagedetroisieme.fr:443", + "extracted-results": [ + "tls13" + ], + "ip": "91.208.207.215", + "timestamp": "2024-01-14T12:28:26.899985403Z", + "matcher-status": true + } + ], "lhr": [ { "requestedUrl": "https://www.monstagedetroisieme.fr/", "finalUrl": "https://www.monstagedetroisieme.fr/", - "fetchTime": "2024-01-07T12:33:58.551Z", + "fetchTime": "2024-01-14T12:10:36.052Z", "runWarnings": [], "categories": { "performance": { @@ -375680,7 +372646,7 @@ "snapshot" ], "id": "performance", - "score": 0.6273973464965821 + "score": 0.6273965835571289 }, "accessibility": { "title": "Accessibility", @@ -375732,53 +372698,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 17440, + "numericValue": 17356, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 5775, - "firstMeaningfulPaint": 5775, - "largestContentfulPaint": 5775, - "interactive": 17440, - "speedIndex": 5775, - "totalBlockingTime": 283, - "maxPotentialFID": 603, + "firstContentfulPaint": 5765, + "firstMeaningfulPaint": 5765, + "largestContentfulPaint": 5765, + "interactive": 17356, + "speedIndex": 5765, + "totalBlockingTime": 336, + "maxPotentialFID": 702, "cumulativeLayoutShift": 0.004132242838541667, "cumulativeLayoutShiftMainFrame": 0.004132242838541667, "totalCumulativeLayoutShift": 0.004132242838541667, "observedTimeOrigin": 0, - "observedTimeOriginTs": 301043612, + "observedTimeOriginTs": 293309555, "observedNavigationStart": 0, - "observedNavigationStartTs": 301043612, - "observedFirstPaint": 906, - "observedFirstPaintTs": 301949804, - "observedFirstContentfulPaint": 906, - "observedFirstContentfulPaintTs": 301949804, - "observedFirstContentfulPaintAllFrames": 906, - "observedFirstContentfulPaintAllFramesTs": 301949804, - "observedFirstMeaningfulPaint": 906, - "observedFirstMeaningfulPaintTs": 301949804, - "observedLargestContentfulPaint": 906, - "observedLargestContentfulPaintTs": 301949804, - "observedLargestContentfulPaintAllFrames": 906, - "observedLargestContentfulPaintAllFramesTs": 301949804, - "observedTraceEnd": 3732, - "observedTraceEndTs": 304775202, - "observedLoad": 1423, - "observedLoadTs": 302466897, - "observedDomContentLoaded": 1321, - "observedDomContentLoadedTs": 302364233, + "observedNavigationStartTs": 293309555, + "observedFirstPaint": 861, + "observedFirstPaintTs": 294170646, + "observedFirstContentfulPaint": 861, + "observedFirstContentfulPaintTs": 294170646, + "observedFirstContentfulPaintAllFrames": 861, + "observedFirstContentfulPaintAllFramesTs": 294170646, + "observedFirstMeaningfulPaint": 861, + "observedFirstMeaningfulPaintTs": 294170646, + "observedLargestContentfulPaint": 861, + "observedLargestContentfulPaintTs": 294170646, + "observedLargestContentfulPaintAllFrames": 861, + "observedLargestContentfulPaintAllFramesTs": 294170646, + "observedTraceEnd": 3738, + "observedTraceEndTs": 297047861, + "observedLoad": 1430, + "observedLoadTs": 294739906, + "observedDomContentLoaded": 1328, + "observedDomContentLoadedTs": 294637207, "observedCumulativeLayoutShift": 0.004132242838541667, "observedCumulativeLayoutShiftMainFrame": 0.004132242838541667, "observedTotalCumulativeLayoutShift": 0.004132242838541667, - "observedFirstVisualChange": 877, - "observedFirstVisualChangeTs": 301920612, - "observedLastVisualChange": 1477, - "observedLastVisualChangeTs": 302520612, - "observedSpeedIndex": 890, - "observedSpeedIndexTs": 301933589 + "observedFirstVisualChange": 862, + "observedFirstVisualChangeTs": 294171555, + "observedLastVisualChange": 1461, + "observedLastVisualChangeTs": 294770555, + "observedSpeedIndex": 875, + "observedSpeedIndexTs": 294184232 }, { "lcpInvalidated": false @@ -375800,19 +372766,19 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 3, - "numTasks": 685, - "numTasksOver10ms": 4, + "numTasks": 692, + "numTasksOver10ms": 3, "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 52.643, - "throughput": 27021562.10794003, - "maxRtt": 82.201, - "maxServerLatency": 81.57400000000001, - "totalByteWeight": 3002087, - "totalTaskTime": 303.215999999999, - "mainDocumentTransferSize": 7249 + "rtt": 57.434, + "throughput": 27140207.78639662, + "maxRtt": 81.206, + "maxServerLatency": 32.67, + "totalByteWeight": 3002091, + "totalTaskTime": 304.1619999999997, + "mainDocumentTransferSize": 7253 } ] } @@ -375822,9 +372788,9 @@ ], "screenshot": true, "stats": { - "grade": "F", - "url": "null", - "uri": "" + "grade": "B", + "url": "https://www.monstagedetroisieme.fr", + "uri": "statistiques" }, "github_repository": { "grade": "A", @@ -375866,6 +372832,7 @@ "attributes": { "name": "Mon stage de 3e", "pitch": "Permettre aux élèves de 3e d'accéder à des stages pertinents pour combattre les déterminismes sociaux", + "stats_url": "https://www.monstagedetroisieme.fr/statistiques", "link": "https://www.monstagedetroisieme.fr/", "repository": "https://github.com/betagouv/monstage", "contact": "support@monstagedetroisieme.fr", @@ -375902,21 +372869,21 @@ "sonarcloud": null, "summary": { "httpGrade": "B-", - "apdex": 1, - "apdexGrade": "A", + "apdex": 0.958, + "apdexGrade": "E", "uptime": 100, "uptimeGrade": "A", "nmapGrade": "B", - "nmapOpenPortsCount": 13, + "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": false, + "testsslExpireSoon": true, "testsslExpireDate": "2024-02-13T18:37:00.000Z", "testsslGrade": "A+", "cookiesGrade": "B", "cookiesCount": 1, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.6273973464965821, + "lighthouse_performance": 0.6273965835571289, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.98, "lighthouse_accessibilityGrade": "A", @@ -375926,7 +372893,7 @@ "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.2, "lighthouse_pwaGrade": "E", - "statsGrade": "F", + "statsGrade": "B", "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "C", @@ -375945,7 +372912,7 @@ "http": { "url": "https://civilsdeladefense.fabnum.fr/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 12:33:54 GMT", + "end_time": "Sun, 14 Jan 2024 12:16:09 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -375954,11 +372921,11 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 12:33:53 GMT", - "ETag": "W/\"97d801074ebef40f9b2a6a0cd6209700\"", + "Date": "Sun, 14 Jan 2024 12:16:07 GMT", + "ETag": "W/\"4d4df5277f8c1f6363a6881316e25384\"", "Link": "; rel=preload; as=script; nopush,; rel=preload; as=style; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_civilsdeladefense_session=Z1SQLclVLGILxOe4cR9aazsEgVdRkpGMKrDEbv01GY%2Ft3LPnoQrwKUVigJGGXwJD2W88ejcr7dpefPsRLWGIWosAa%2BNg8rzsTPh4d2DZL5qF%2F%2F43np5YecTOv2N4UHPpNz9IwUPgoKWozIjUgkgV3aWpBc3UHPbtr21GBJz4ztuiJsov9%2FPXXULNQBtIMRSxgl9bms4dJ6M%2BnDl6YwgVsz8KjexATrMn5IgGqf61Aygtdn5i6F%2FlKaVGEqkncpib%2BtTAo9qUqE4lH9vo12P9JSxobnhh96TWvdWDhWZ9TsWNIA%3D%3D--pxFkywuVRgkemmhN--0fE6NJ38w%2BI4tgnxIuElrA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_civilsdeladefense_session=SB%2FTtGAAa51j1wvkMYe4xi7HbizqS6aWwomnio%2FUTtOhCy79KRsuIGnFyks35Xpg5fi4EVB5br%2BsTr5ZoQaxi1q10VBJY1FCWMwCiNpUHn1FVlA75OK0bkoC%2BOy8FsDZRCHTLYIK7b8XfPyCwemeSDISHqyLjscSKyEnM2dNU7HxREW0OWqD0hpszsGljXTqt29ezyPSWxDRH4A5%2FeMWFXzSPR%2Bk2iqF0a4gSR%2B7vb2N5pGKloCixNfbwTMEGfXCE7H8B4MtOfsIIUzl6OBQqxsp%2B5kvn4t1jLKA28wi5uxUvg%3D%3D--Tx1fRQ9sY2zuY8BA--IQAKBClk70vYbcaB3p20YA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31556952; preload", "Transfer-Encoding": "chunked", "Vary": "Accept", @@ -375966,13 +372933,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "b5ef70e3-7bc0-4f29-8824-c90c3d78d797, b5ef70e3-7bc0-4f29-8824-c90c3d78d797", - "X-Runtime": "0.042559", + "X-Request-ID": "7b05bf16-38ca-4a58-aa50-3e46bd20d275, 7b05bf16-38ca-4a58-aa50-3e46bd20d275", + "X-Runtime": "0.052370", "X-XSS-Protection": "0" }, - "scan_id": 46233884, + "scan_id": 46468738, "score": 55, - "start_time": "Sun, 07 Jan 2024 12:33:49 GMT", + "start_time": "Sun, 14 Jan 2024 12:11:44 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -376176,1107 +373143,6 @@ "dependabot": null, "codescan": null, "testssl": [ - { - "id": "service", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "2023-12-13 08:30" - }, - { - "id": "cert_notAfter", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "2024-03-12 08:30" - }, - { - "id": "cert_extlifeSpan", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "301 Moved Permanently ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "1704630924" - }, - { - "id": "HSTS", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "HPKP", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "0 at '/' (30x detected, better try target URL of 30x)" - }, - { - "id": "security_headers", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "MEDIUM", - "finding": "--" - }, - { - "id": "banner_reverseproxy", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D4847A44E20B5EBFAD9FA619D177FFF286DE2FBCD4EBAFFFB0A474CAE726E711" - }, - { - "id": "LOGJAM", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "A" - }, - { - "id": "grade_cap_reason_1", - "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "Grade capped to A. HSTS is not offered" - }, { "id": "service", "ip": "civilsdeladefense.fabnum.fr/80.247.12.255", @@ -377624,7 +373490,7 @@ "ip": "civilsdeladefense.fabnum.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "64 >= 30 days" + "finding": "57 >= 30 days" }, { "id": "cert_notBefore", @@ -377827,7 +373693,7 @@ "ip": "civilsdeladefense.fabnum.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704630974" + "finding": "1705234661" }, { "id": "HSTS", @@ -378725,7 +374591,7 @@ "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "64 >= 30 days" + "finding": "57 >= 30 days" }, { "id": "cert_notBefore", @@ -378928,7 +374794,7 @@ "ip": "civilsdeladefense.fabnum.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704631027" + "finding": "1705234712" }, { "id": "HSTS", @@ -379826,7 +375692,7 @@ "ip": "civilsdeladefense.fabnum.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "64 >= 30 days" + "finding": "57 >= 30 days" }, { "id": "cert_notBefore", @@ -380029,7 +375895,7 @@ "ip": "civilsdeladefense.fabnum.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704631079" + "finding": "1705234763" }, { "id": "HSTS", @@ -380580,12 +376446,1113 @@ "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, + { + "id": "service", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "2023-12-13 08:30" + }, + { + "id": "cert_notAfter", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "2024-03-12 08:30" + }, + { + "id": "cert_extlifeSpan", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "301 Moved Permanently ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "1705234814" + }, + { + "id": "HSTS", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "HPKP", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "0 at '/' (30x detected, better try target URL of 30x)" + }, + { + "id": "security_headers", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "MEDIUM", + "finding": "--" + }, + { + "id": "banner_reverseproxy", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=D4847A44E20B5EBFAD9FA619D177FFF286DE2FBCD4EBAFFFB0A474CAE726E711" + }, + { + "id": "LOGJAM", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "OK", + "finding": "A" + }, + { + "id": "grade_cap_reason_1", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", + "port": "443", + "severity": "INFO", + "finding": "Grade capped to A. HSTS is not offered" + }, { "id": "scanTime", - "ip": "civilsdeladefense.fabnum.fr/185.21.194.105", + "ip": "civilsdeladefense.fabnum.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "210" + "finding": "208" } ], "thirdparties": { @@ -380602,11 +377569,11 @@ "cookies": [ { "name": "_civilsdeladefense_session", - "value": "FuenNxXRCeFUG1qD76jxzEKaIelkqUuyW9hXGLTRBvvDiSq2qQJPqeADKUJBI3RXwKMNwpDW0zIV29eaPmNBXHcLB8SaZjRm%2FF3ROWFpK3EKqFm%2FdPCCvxtxTnYpQPHHeMU6fbZ64%2BAWk8hxIwhyeyAL3%2Fo8PMJFjg%2FLTxcnqBqlUu3I9%2B8xIKelTEzTqrv3RBuO0qKrg9gGRtQr7lDMkBo1a%2F16Mssw4wr5shAtf4TP2%2FIet%2FYh33swBA2tzOXsvFXPkpxqBRkHFXzJ6TfqFPJSNbfll5lCC7VSc5qhv4s57A%3D%3D--QegGWw4Kmn6rHVgj--LU8Cv%2FUVci0CcM6qxJzY3w%3D%3D", + "value": "5i56P35BqYiNIQOpvF7l5VZ%2B%2Bn90QphFLy%2Bp1bQU%2Fk7KGYX8uHEH%2B9kKQEffa897q%2FDeBDZafU4U8MuT4jkQ85lDXOUJFWSB2egUPEPY9k3Da3gzl0DSKANYwyA53RuqfOiPsR5K1McEwE%2Fw%2FTYd8JOO1shRqykBEkhTRA5%2B%2FGwuOkmE%2FO9YSKTkL041V7lpySHEMk3vyCuPTtcCvVdJQeMGXEBcQKCIbZouEX4xfV4xIPxhAOq%2Bx%2B%2Byi%2Fqxt2rUSAquZz4ZVSCC26nT%2FjBJhm%2BO8z83W4EATxoDKLjKXWXzOQ%3D%3D--eI%2BCrBEB%2BlmOBTU3--ITNGgcNrdrPRu5ZDdMSNlA%3D%3D", "domain": "contractuels.civils.defense.gouv.fr", "path": "/", "expires": -1, - "size": 402, + "size": 420, "httpOnly": true, "secure": true, "session": true, @@ -380620,24 +377587,24 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 12:34:25 GMT", - "etag": "W/\"cdf5cfcef2ae7cac619293edbfcd48b0\"", + "date": "Sun, 14 Jan 2024 12:16:42 GMT", + "etag": "W/\"f8f24baf9614a33e1cd6c7ab70d58077\"", "link": "; rel=preload; as=script; nopush,; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_civilsdeladefense_session=FuenNxXRCeFUG1qD76jxzEKaIelkqUuyW9hXGLTRBvvDiSq2qQJPqeADKUJBI3RXwKMNwpDW0zIV29eaPmNBXHcLB8SaZjRm%2FF3ROWFpK3EKqFm%2FdPCCvxtxTnYpQPHHeMU6fbZ64%2BAWk8hxIwhyeyAL3%2Fo8PMJFjg%2FLTxcnqBqlUu3I9%2B8xIKelTEzTqrv3RBuO0qKrg9gGRtQr7lDMkBo1a%2F16Mssw4wr5shAtf4TP2%2FIet%2FYh33swBA2tzOXsvFXPkpxqBRkHFXzJ6TfqFPJSNbfll5lCC7VSc5qhv4s57A%3D%3D--QegGWw4Kmn6rHVgj--LU8Cv%2FUVci0CcM6qxJzY3w%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_civilsdeladefense_session=5i56P35BqYiNIQOpvF7l5VZ%2B%2Bn90QphFLy%2Bp1bQU%2Fk7KGYX8uHEH%2B9kKQEffa897q%2FDeBDZafU4U8MuT4jkQ85lDXOUJFWSB2egUPEPY9k3Da3gzl0DSKANYwyA53RuqfOiPsR5K1McEwE%2Fw%2FTYd8JOO1shRqykBEkhTRA5%2B%2FGwuOkmE%2FO9YSKTkL041V7lpySHEMk3vyCuPTtcCvVdJQeMGXEBcQKCIbZouEX4xfV4xIPxhAOq%2Bx%2B%2Byi%2Fqxt2rUSAquZz4ZVSCC26nT%2FjBJhm%2BO8z83W4EATxoDKLjKXWXzOQ%3D%3D--eI%2BCrBEB%2BlmOBTU3--ITNGgcNrdrPRu5ZDdMSNlA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31556952; preload", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "e91940ec-aee8-4076-a741-3f2b3e181366\ne91940ec-aee8-4076-a741-3f2b3e181366", - "x-runtime": "0.065949", + "x-request-id": "478ab31f-4ffc-469a-a37d-ec7daa1b1651\n478ab31f-4ffc-469a-a37d-ec7daa1b1651", + "x-runtime": "0.039723", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "civilsdeladefense.fabnum.fr", - "ip": "80.247.13.145", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -380761,7 +377728,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 12:33:24", + "@generated": "Sun, 14 Jan 2024 12:11:19", "site": [ { "@name": "https://civilsdeladefense.fabnum.fr", @@ -380866,73 +377833,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "civilsdeladefense.fabnum.fr.", "matched-at": "civilsdeladefense.fabnum.fr", - "extracted-results": [ - "erecrutement-cvd-production.osc-secnum-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T12:39:20.172782444Z", + "timestamp": "2024-01-14T12:21:35.192373064Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "civilsdeladefense.fabnum.fr.", "matched-at": "civilsdeladefense.fabnum.fr", - "timestamp": "2024-01-07T12:39:20.309955997Z", + "extracted-results": [ + "erecrutement-cvd-production.osc-secnum-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T12:21:35.421415137Z", "matcher-status": true }, { @@ -380961,8 +377928,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T12:46:04.097687283Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T12:28:17.538303781Z", "matcher-status": true }, { @@ -380991,8 +377958,8 @@ "extracted-results": [ "civilsdeladefense.fabnum.fr" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T12:46:04.097819963Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T12:28:17.538419186Z", "matcher-status": true }, { @@ -381022,8 +377989,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T12:46:05.271007885Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T12:28:18.722783278Z", "matcher-status": true }, { @@ -381053,8 +378020,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T12:46:05.450007204Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T12:28:18.911270665Z", "matcher-status": true } ], @@ -381062,7 +378029,7 @@ { "requestedUrl": "https://civilsdeladefense.fabnum.fr/", "finalUrl": "https://contractuels.civils.defense.gouv.fr/", - "fetchTime": "2024-01-07T12:33:38.657Z", + "fetchTime": "2024-01-14T12:11:33.896Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://civilsdeladefense.fabnum.fr/) was redirected to https://contractuels.civils.defense.gouv.fr/. Try testing the second URL directly." ], @@ -381127,53 +378094,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3161, + "numericValue": 3176, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2504, - "firstMeaningfulPaint": 3007, - "largestContentfulPaint": 3307, - "interactive": 3161, - "speedIndex": 3449, - "totalBlockingTime": 6, + "firstContentfulPaint": 2374, + "firstMeaningfulPaint": 3017, + "largestContentfulPaint": 3318, + "interactive": 3176, + "speedIndex": 3283, + "totalBlockingTime": 9, "maxPotentialFID": 60, - "cumulativeLayoutShift": 0.01933885298834907, - "cumulativeLayoutShiftMainFrame": 0.01933885298834907, - "totalCumulativeLayoutShift": 0.01933885298834907, + "cumulativeLayoutShift": 0.01987808905707465, + "cumulativeLayoutShiftMainFrame": 0.01987808905707465, + "totalCumulativeLayoutShift": 0.01987808905707465, "observedTimeOrigin": 0, - "observedTimeOriginTs": 541922176, + "observedTimeOriginTs": 277168165, "observedNavigationStart": 0, - "observedNavigationStartTs": 541922176, - "observedFirstPaint": 1056, - "observedFirstPaintTs": 542978495, - "observedFirstContentfulPaint": 1056, - "observedFirstContentfulPaintTs": 542978495, - "observedFirstContentfulPaintAllFrames": 1056, - "observedFirstContentfulPaintAllFramesTs": 542978495, - "observedFirstMeaningfulPaint": 1135, - "observedFirstMeaningfulPaintTs": 543057243, - "observedLargestContentfulPaint": 1135, - "observedLargestContentfulPaintTs": 543057243, - "observedLargestContentfulPaintAllFrames": 1135, - "observedLargestContentfulPaintAllFramesTs": 543057243, - "observedTraceEnd": 3695, - "observedTraceEndTs": 545616800, - "observedLoad": 1387, - "observedLoadTs": 543309038, - "observedDomContentLoaded": 1034, - "observedDomContentLoadedTs": 542956235, - "observedCumulativeLayoutShift": 0.01933885298834907, - "observedCumulativeLayoutShiftMainFrame": 0.01933885298834907, - "observedTotalCumulativeLayoutShift": 0.01933885298834907, - "observedFirstVisualChange": 1039, - "observedFirstVisualChangeTs": 542961176, - "observedLastVisualChange": 1456, - "observedLastVisualChangeTs": 543378176, - "observedSpeedIndex": 1143, - "observedSpeedIndexTs": 543065277 + "observedNavigationStartTs": 277168165, + "observedFirstPaint": 893, + "observedFirstPaintTs": 278061370, + "observedFirstContentfulPaint": 893, + "observedFirstContentfulPaintTs": 278061370, + "observedFirstContentfulPaintAllFrames": 893, + "observedFirstContentfulPaintAllFramesTs": 278061370, + "observedFirstMeaningfulPaint": 998, + "observedFirstMeaningfulPaintTs": 278166213, + "observedLargestContentfulPaint": 998, + "observedLargestContentfulPaintTs": 278166213, + "observedLargestContentfulPaintAllFrames": 998, + "observedLargestContentfulPaintAllFramesTs": 278166213, + "observedTraceEnd": 3622, + "observedTraceEndTs": 280790466, + "observedLoad": 1314, + "observedLoadTs": 278481868, + "observedDomContentLoaded": 893, + "observedDomContentLoadedTs": 278061190, + "observedCumulativeLayoutShift": 0.01987808905707465, + "observedCumulativeLayoutShiftMainFrame": 0.01987808905707465, + "observedTotalCumulativeLayoutShift": 0.01987808905707465, + "observedFirstVisualChange": 887, + "observedFirstVisualChangeTs": 278055165, + "observedLastVisualChange": 1387, + "observedLastVisualChangeTs": 278555165, + "observedSpeedIndex": 1016, + "observedSpeedIndexTs": 278183706 }, { "lcpInvalidated": false @@ -381195,19 +378162,19 @@ "numScripts": 1, "numStylesheets": 1, "numFonts": 3, - "numTasks": 452, - "numTasksOver10ms": 5, - "numTasksOver25ms": 1, + "numTasks": 459, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.104, - "throughput": 9289535.072804064, - "maxRtt": 83.31299999999999, - "maxServerLatency": 7.409000000000006, - "totalByteWeight": 769795, - "totalTaskTime": 157.9079999999996, - "mainDocumentTransferSize": 4962 + "rtt": 80.898, + "throughput": 10711658.613613298, + "maxRtt": 81.009, + "maxServerLatency": 10.961000000000041, + "totalByteWeight": 769708, + "totalTaskTime": 145.3990000000001, + "mainDocumentTransferSize": 4974 } ] } @@ -381480,7 +378447,7 @@ "http": { "url": "https://sepia.fabnum.fr/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 13:09:30 GMT", + "end_time": "Sun, 14 Jan 2024 12:51:29 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -381488,12 +378455,12 @@ "Connection": "keep-alive", "Content-Length": "190", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 13:09:29 GMT", + "Date": "Sun, 14 Jan 2024 12:51:29 GMT", "Server": "nginx" }, - "scan_id": 46234063, + "scan_id": 46470978, "score": 0, - "start_time": "Sun, 07 Jan 2024 13:09:26 GMT", + "start_time": "Sun, 14 Jan 2024 12:51:26 GMT", "state": "FINISHED", "status_code": 503, "tests_failed": 6, @@ -381670,7 +378637,50 @@ "product": "OpenSSH", "id": "22", "version": "9.2p1 Debian 2+deb12u2", - "vulnerabilities": [] + "vulnerabilities": [ + { + "cvss": "7.5", + "type": "seebug", + "id": "SSV:92579", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "prion", + "id": "PRION:CVE-2023-38408", + "is_exploit": "false" + }, + { + "cvss": "7.5", + "type": "prion", + "id": "PRION:CVE-2023-28531", + "is_exploit": "false" + }, + { + "cvss": "7.5", + "type": "githubexploit", + "id": "F0979183-AE88-53B4-86CF-3AF0523F3807", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "githubexploit", + "id": "B8190CDB-3EB9-5631-9828-8064A1575B23", + "is_exploit": "true" + }, + { + "cvss": "7.5", + "type": "zdt", + "id": "1337DAY-ID-26576", + "is_exploit": "true" + }, + { + "cvss": "0.0", + "type": "packetstorm", + "id": "PACKETSTORM:140261", + "is_exploit": "true" + } + ] } }, { @@ -381690,7 +378700,7 @@ } } ], - "grade": "B" + "grade": "D" }, "dependabot": null, "codescan": null, @@ -382070,7 +379080,7 @@ "ip": "sepia.fabnum.fr/141.94.28.168", "port": "443", "severity": "OK", - "finding": "328 >= 60 days" + "finding": "321 >= 60 days" }, { "id": "cert_notBefore", @@ -382196,7 +379206,7 @@ "ip": "sepia.fabnum.fr/141.94.28.168", "port": "443", "severity": "INFO", - "finding": "1704633040" + "finding": "1705236797" }, { "id": "HSTS", @@ -382766,7 +379776,7 @@ "ip": "sepia.fabnum.fr/141.94.28.168", "port": "443", "severity": "INFO", - "finding": "53" + "finding": "98" } ], "thirdparties": { @@ -382775,7 +379785,7 @@ "headers": { "content-length": "592", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 13:10:01 GMT", + "date": "Sun, 14 Jan 2024 12:52:02 GMT", "server": "nginx" }, "endpoints": [ @@ -382872,7 +379882,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 13:07:34", + "@generated": "Sun, 14 Jan 2024 12:49:34", "site": [ { "@name": "https://sepia.fabnum.fr", @@ -382973,7 +379983,7 @@ "type": "dns", "host": "sepia.fabnum.fr.", "matched-at": "sepia.fabnum.fr", - "timestamp": "2024-01-07T13:12:04.767730294Z", + "timestamp": "2024-01-14T12:54:32.581828764Z", "matcher-status": true }, { @@ -382999,7 +380009,7 @@ "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:43.57928611Z", + "timestamp": "2024-01-14T12:55:30.071818256Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383031,12 +380041,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871454619Z", + "timestamp": "2024-01-14T12:55:45.211903759Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383068,12 +380078,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871498981Z", + "timestamp": "2024-01-14T12:55:45.211943342Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383105,12 +380115,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "permissions-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871511003Z", + "timestamp": "2024-01-14T12:55:45.211959953Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383142,12 +380152,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871528365Z", + "timestamp": "2024-01-14T12:55:45.211976745Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383179,12 +380189,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871541981Z", + "timestamp": "2024-01-14T12:55:45.21199009Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383216,12 +380226,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871556287Z", + "timestamp": "2024-01-14T12:55:45.212002212Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383253,12 +380263,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871569762Z", + "timestamp": "2024-01-14T12:55:45.212013513Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383290,12 +380300,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871584209Z", + "timestamp": "2024-01-14T12:55:45.212068486Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383327,12 +380337,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871643349Z", + "timestamp": "2024-01-14T12:55:45.212082232Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383364,12 +380374,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871660801Z", + "timestamp": "2024-01-14T12:55:45.212095406Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383401,12 +380411,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:12:52.871673435Z", + "timestamp": "2024-01-14T12:55:45.212107729Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383446,7 +380456,7 @@ "host": "https://sepia.fabnum.fr/", "matched-at": "https://sepia.fabnum.fr/", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:13:15.760971227Z", + "timestamp": "2024-01-14T12:56:23.783417472Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: sepia.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sepia.fabnum.fr/'", "matcher-status": true }, @@ -383496,7 +380506,7 @@ "SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u2" ], "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:13:36.563203358Z", + "timestamp": "2024-01-14T12:56:56.874637315Z", "matcher-status": true }, { @@ -383530,7 +380540,7 @@ "CN: letsencrypt-nginx-proxy-companion" ], "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:13:38.040956872Z", + "timestamp": "2024-01-14T12:56:59.522047435Z", "matcher-status": true }, { @@ -383563,7 +380573,7 @@ "host": "sepia.fabnum.fr", "matched-at": "sepia.fabnum.fr:443", "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:13:38.041010472Z", + "timestamp": "2024-01-14T12:56:59.522104411Z", "matcher-status": true }, { @@ -383594,7 +380604,7 @@ "tls12" ], "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:13:39.694922661Z", + "timestamp": "2024-01-14T12:57:02.066805087Z", "matcher-status": true }, { @@ -383625,7 +380635,7 @@ "tls13" ], "ip": "141.94.28.168", - "timestamp": "2024-01-07T13:13:39.88377727Z", + "timestamp": "2024-01-14T12:57:02.38609151Z", "matcher-status": true } ], @@ -383707,7 +380717,7 @@ "sonarcloud": null, "summary": { "httpGrade": "F", - "nmapGrade": "B", + "nmapGrade": "D", "nmapOpenPortsCount": 3, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, @@ -383863,7 +380873,7 @@ "http": { "url": "https://talents.ssi.gouv.fr/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 13:25:42 GMT", + "end_time": "Sun, 14 Jan 2024 13:11:42 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -383872,11 +380882,11 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 13:25:41 GMT", - "ETag": "W/\"9fdfb8ee04e0f1a08f17b8aca8050295\"", + "Date": "Sun, 14 Jan 2024 13:11:41 GMT", + "ETag": "W/\"d2bea2027ee98b97bffda4d46a086461\"", "Link": "; rel=preload; as=script; nopush,; rel=preload; as=style; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_civilsdeladefense_session=vRDzBT8%2BHDHU8eQJwt442e62x3zDVdfzdsh%2FjJ%2Fjb9Mk6IVCLdGHoSsLoVPLSr63bMPedsxGFFk1z7KCwSI61OgjQJYKKzL%2FAkjzz8A1X2DaquRqbO6i2QaeqprW%2Br8WalJSKQXTs5CBYtQwCrQ80HBrZMyJCXhjtaEISSgEfQJohFDwyQVl1bcb2115lgz35nKUr5yArEFapxga0t7Gp%2B%2FT%2B9OTeB9I02iCArQWkjAMd6K6Lw%2BnpCWTRp4zSotg62MjU%2BE7T%2FZJwt6%2BtFJ%2FAdCplwZHhVWVvasWT45VD%2B8oiw%3D%3D--ejtkNUw3eYMjSJT5--mxUSGL0vPB01AeQA6Ad6Ew%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_civilsdeladefense_session=HW89eettWEcQTSnwiVyEczBmTfUMydGAeKeDn2OqSYZw62k3VyqFUz4kMDkJmuqK1hHLq84l0grMZ%2BPOGqiE6ci0UutfroKBYl7KAzNTXJaGeuYpmADKDp2HnkV6xAkOyx0ucWO5GbQx29VOEDJJBJsVAASMFXRp7aTsEjTrOT5uct8xWO6jFEQa89VFUggXAQsu8imm5jxcyWXgmxuxAhts8NyfmZDclw4zUJAA1H0D5LZsXo3L5gWUGK%2BHdQZL2RJj5R9A9Otaja%2FZ0vHtn8vZ1tr0R0XBAj8AqhcDCGdluA%3D%3D--mZKB22%2FK0%2Fclv%2B1R--Kksl6AEPpbci7iDBbHtjPg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000, max-age=31556952; preload", "Transfer-Encoding": "chunked", "Vary": "Accept", @@ -383884,13 +380894,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "eb90dae3-b0bd-4579-81db-0e0134203b9f, eb90dae3-b0bd-4579-81db-0e0134203b9f", - "X-Runtime": "0.037228", + "X-Request-ID": "8b7c3fc3-7a7c-45f7-86e0-b78d98ef9835, 8b7c3fc3-7a7c-45f7-86e0-b78d98ef9835", + "X-Runtime": "0.037904", "X-XSS-Protection": "0" }, - "scan_id": 46234271, + "scan_id": 46472460, "score": 45, - "start_time": "Sun, 07 Jan 2024 13:25:38 GMT", + "start_time": "Sun, 14 Jan 2024 13:11:34 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -384095,77 +381105,77 @@ "testssl": [ { "id": "service", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384173,7 +381183,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384181,7 +381191,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384189,7 +381199,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -384197,7 +381207,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -384205,7 +381215,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -384213,504 +381223,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "177 >= 60 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-07-09 22:00" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-07-09 21:59" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704634037" + "finding": "1705237988" }, { "id": "HSTS_multiple", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -384718,7 +381728,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -384727,7 +381737,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -384736,7 +381746,7 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -384745,7 +381755,7 @@ }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -384754,7 +381764,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -384762,7 +381772,7 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -384771,7 +381781,7 @@ }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -384780,7 +381790,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -384789,7 +381799,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -384798,14 +381808,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -384814,7 +381824,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -384823,7 +381833,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -384832,7 +381842,7 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -384841,7 +381851,7 @@ }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -384850,7 +381860,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -384859,7 +381869,7 @@ }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -384868,7 +381878,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -384877,7 +381887,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -384886,7 +381896,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -384895,392 +381905,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/148.253.96.193", + "ip": "talents.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -385288,7 +382298,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -385296,7 +382306,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -385304,7 +382314,7 @@ }, { "id": "cipherlist_LOW", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -385312,7 +382322,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -385320,7 +382330,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -385328,504 +382338,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "177 >= 60 days" }, { "id": "cert_notBefore", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-07-09 22:00" }, { "id": "cert_notAfter", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-07-09 21:59" }, { "id": "cert_extlifeSpan", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704634098" + "finding": "1705238042" }, { "id": "HSTS_multiple", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -385833,7 +382843,7 @@ }, { "id": "heartbleed", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -385842,7 +382852,7 @@ }, { "id": "CCS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -385851,7 +382861,7 @@ }, { "id": "ticketbleed", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -385860,7 +382870,7 @@ }, { "id": "ROBOT", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -385869,7 +382879,7 @@ }, { "id": "secure_renego", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -385877,7 +382887,7 @@ }, { "id": "secure_client_renego", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -385886,7 +382896,7 @@ }, { "id": "CRIME_TLS", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -385895,7 +382905,7 @@ }, { "id": "BREACH", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -385904,7 +382914,7 @@ }, { "id": "POODLE_SSL", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -385913,14 +382923,14 @@ }, { "id": "fallback_SCSV", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -385929,7 +382939,7 @@ }, { "id": "FREAK", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -385938,7 +382948,7 @@ }, { "id": "DROWN", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -385947,7 +382957,7 @@ }, { "id": "DROWN_hint", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -385956,7 +382966,7 @@ }, { "id": "LOGJAM", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -385965,7 +382975,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -385974,7 +382984,7 @@ }, { "id": "BEAST", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -385983,7 +382993,7 @@ }, { "id": "LUCKY13", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -385992,7 +383002,7 @@ }, { "id": "winshock", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -386001,7 +383011,7 @@ }, { "id": "RC4", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -386010,315 +383020,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "talents.ssi.gouv.fr/80.247.13.145", + "ip": "talents.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" @@ -386670,7 +383680,7 @@ "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "184 >= 60 days" + "finding": "177 >= 60 days" }, { "id": "cert_notBefore", @@ -386831,7 +383841,7 @@ "ip": "talents.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704634159" + "finding": "1705238096" }, { "id": "HSTS_multiple", @@ -387645,7 +384655,7 @@ "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -387785,7 +384795,7 @@ "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "184 >= 60 days" + "finding": "177 >= 60 days" }, { "id": "cert_notBefore", @@ -387946,7 +384956,7 @@ "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704634218" + "finding": "1705238151" }, { "id": "HSTS_multiple", @@ -388558,7 +385568,7 @@ "ip": "talents.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "243" + "finding": "220" } ], "thirdparties": { @@ -388579,11 +385589,11 @@ "cookies": [ { "name": "_civilsdeladefense_session", - "value": "0N3%2Bn%2B5k%2BG0ezOjQLgHFMGFjP2Src8wrIcU9Ojcy6FWcCjz1ZoJ%2Fy6i%2BKtzskt5H5vL9ag09IwcLiu1%2FaXGs%2FaLeopwp%2FcitA0YB90OznzKxz7M0weAml6TnczRC7bfZNkBCHzFUOFmCMKaw4Yzvyx4zHtj%2Ffy0BZgqhbjYbZ6%2FzzXaRHdFE9kBKoOaOnF%2FLw7W5iBJ%2B2nmAk2bUXpyZDsA0kMy0NUSFKqLxMnQrgA9ucUf4rVpiqoF8mT9PquQXIZn9Izty7P1dVJOVmqnY%2F8%2BorIpHIxSA1BZolSu%2B8k5sgA%3D%3D--z4QwmzU4lnOUPe1t--X7WP2rSV6Kf5UJaQA%2Bv%2FVw%3D%3D", + "value": "brHMK12CrGbsoVReUJnzVchxfLS6KvI8Z%2BQhn%2FcVStb2Bmnu3Ur2DznzmFCUvyuXP9Ynr74sQTzeC86Wj%2F1uWJ%2FcDNWVKWgmxlgvDwxhSVje%2F9FDzzk719eXUmVqKSkl58pyqPCKpGtkHAAwvedHqjVtKf1quzUX%2FnNd%2Fpa3arQCOcmVBr0DD5w67h%2FRxYQkRL1pzT0kUnJL0TGZtRuZZ71aOkABnkeOc7nu40A%2F%2FnN6mAxYlQ418m%2FfEnAeNGLsCk9GWBUrO76mwvjKUSRZArUBqpaIGLOLNJVPPThQuoYIxw%3D%3D--s4vEpwIgZ5r9p1FS--FiTedgr1YRosxAh8iTE5tQ%3D%3D", "domain": "talents.ssi.gouv.fr", "path": "/", "expires": -1, - "size": 416, + "size": 404, "httpOnly": true, "secure": true, "session": true, @@ -388597,18 +385607,18 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 13:26:14 GMT", - "etag": "W/\"672ad616153fc9442c73bc99b4ba6a4a\"", + "date": "Sun, 14 Jan 2024 13:12:09 GMT", + "etag": "W/\"0cb93306ceff8c12d7a932fce6f1a7ac\"", "link": "; rel=preload; as=script; nopush,; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_civilsdeladefense_session=0N3%2Bn%2B5k%2BG0ezOjQLgHFMGFjP2Src8wrIcU9Ojcy6FWcCjz1ZoJ%2Fy6i%2BKtzskt5H5vL9ag09IwcLiu1%2FaXGs%2FaLeopwp%2FcitA0YB90OznzKxz7M0weAml6TnczRC7bfZNkBCHzFUOFmCMKaw4Yzvyx4zHtj%2Ffy0BZgqhbjYbZ6%2FzzXaRHdFE9kBKoOaOnF%2FLw7W5iBJ%2B2nmAk2bUXpyZDsA0kMy0NUSFKqLxMnQrgA9ucUf4rVpiqoF8mT9PquQXIZn9Izty7P1dVJOVmqnY%2F8%2BorIpHIxSA1BZolSu%2B8k5sgA%3D%3D--z4QwmzU4lnOUPe1t--X7WP2rSV6Kf5UJaQA%2Bv%2FVw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_civilsdeladefense_session=brHMK12CrGbsoVReUJnzVchxfLS6KvI8Z%2BQhn%2FcVStb2Bmnu3Ur2DznzmFCUvyuXP9Ynr74sQTzeC86Wj%2F1uWJ%2FcDNWVKWgmxlgvDwxhSVje%2F9FDzzk719eXUmVqKSkl58pyqPCKpGtkHAAwvedHqjVtKf1quzUX%2FnNd%2Fpa3arQCOcmVBr0DD5w67h%2FRxYQkRL1pzT0kUnJL0TGZtRuZZ71aOkABnkeOc7nu40A%2F%2FnN6mAxYlQ418m%2FfEnAeNGLsCk9GWBUrO76mwvjKUSRZArUBqpaIGLOLNJVPPThQuoYIxw%3D%3D--s4vEpwIgZ5r9p1FS--FiTedgr1YRosxAh8iTE5tQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000\nmax-age=31556952; preload", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "e6966000-8966-46b9-bdfb-2696bed3e9ec\ne6966000-8966-46b9-bdfb-2696bed3e9ec", - "x-runtime": "0.036263", + "x-request-id": "68a7a1fa-6e0a-4543-b01c-02e83f7b99da\n68a7a1fa-6e0a-4543-b01c-02e83f7b99da", + "x-runtime": "0.037148", "x-xss-protection": "0" }, "endpoints": [ @@ -388845,7 +385855,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 13:25:14", + "@generated": "Sun, 14 Jan 2024 13:11:09", "site": [ { "@name": "https://talents.ssi.gouv.fr", @@ -388986,6 +385996,13 @@ "riskdesc": "Informational (Medium)", "desc": "

The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to \"Auto-Detect\" then this rule will change the session management to use the tokens identified.

" }, + { + "name": "Storable and Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" + }, { "name": "User Controllable HTML Element Attribute (Potential XSS)", "riskcode": "0", @@ -389030,7 +386047,7 @@ "extracted-results": [ "erecrutement-anssi-production.osc-secnum-fr1.scalingo.io." ], - "timestamp": "2024-01-07T13:31:49.139260356Z", + "timestamp": "2024-01-14T13:17:14.850649669Z", "matcher-status": true }, { @@ -389065,7 +386082,7 @@ "type": "dns", "host": "talents.ssi.gouv.fr.", "matched-at": "talents.ssi.gouv.fr", - "timestamp": "2024-01-07T13:31:50.103281382Z", + "timestamp": "2024-01-14T13:17:15.324842027Z", "matcher-status": true }, { @@ -389103,7 +386120,7 @@ "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:32:03.319898643Z", + "timestamp": "2024-01-14T13:17:26.540365217Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -389135,12 +386152,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:32:42.194283509Z", + "timestamp": "2024-01-14T13:17:59.51858737Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -389172,12 +386189,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:32:42.194326008Z", + "timestamp": "2024-01-14T13:17:59.518628406Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -389209,12 +386226,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:32:42.194346256Z", + "timestamp": "2024-01-14T13:17:59.518645238Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -389246,12 +386263,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:32:42.194360934Z", + "timestamp": "2024-01-14T13:17:59.518660116Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -389283,12 +386300,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:32:42.194373016Z", + "timestamp": "2024-01-14T13:17:59.518674202Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -389320,12 +386337,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/", "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:32:42.194385049Z", + "timestamp": "2024-01-14T13:17:59.518688338Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/'", "matcher-status": true }, @@ -389353,7 +386370,7 @@ "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/robots.txt", "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:32:54.137929482Z", + "timestamp": "2024-01-14T13:18:09.590347449Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/robots.txt'", "matcher-status": true }, @@ -389381,7 +386398,7 @@ "host": "https://talents.ssi.gouv.fr/", "matched-at": "https://talents.ssi.gouv.fr/robots.txt", "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:32:54.156552722Z", + "timestamp": "2024-01-14T13:18:09.593643816Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://talents.ssi.gouv.fr/robots.txt'", "matcher-status": true }, @@ -389413,7 +386430,7 @@ "tls12" ], "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:38:57.691284858Z", + "timestamp": "2024-01-14T13:24:06.146506204Z", "matcher-status": true }, { @@ -389443,7 +386460,7 @@ "DHIMYOTIS" ], "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:38:57.695005995Z", + "timestamp": "2024-01-14T13:24:06.170086455Z", "matcher-status": true }, { @@ -389474,7 +386491,7 @@ "talents.ssi.gouv.fr" ], "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:38:57.695105802Z", + "timestamp": "2024-01-14T13:24:06.170204265Z", "matcher-status": true }, { @@ -389505,7 +386522,7 @@ "tls13" ], "ip": "80.247.13.145", - "timestamp": "2024-01-07T13:38:58.752239568Z", + "timestamp": "2024-01-14T13:24:07.009911197Z", "matcher-status": true } ], @@ -389513,7 +386530,7 @@ { "requestedUrl": "https://talents.ssi.gouv.fr/", "finalUrl": "https://talents.ssi.gouv.fr/", - "fetchTime": "2024-01-07T13:25:28.186Z", + "fetchTime": "2024-01-14T13:11:23.755Z", "runWarnings": [], "categories": { "performance": { @@ -389576,53 +386593,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2889, + "numericValue": 2897, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1634, - "firstMeaningfulPaint": 2286, - "largestContentfulPaint": 1986, - "interactive": 2889, - "speedIndex": 3418, - "totalBlockingTime": 6, - "maxPotentialFID": 57, - "cumulativeLayoutShift": 0.05595801459418402, - "cumulativeLayoutShiftMainFrame": 0.05595801459418402, - "totalCumulativeLayoutShift": 0.05595801459418402, + "firstContentfulPaint": 1782, + "firstMeaningfulPaint": 2282, + "largestContentfulPaint": 2282, + "interactive": 2897, + "speedIndex": 3212, + "totalBlockingTime": 9, + "maxPotentialFID": 59, + "cumulativeLayoutShift": 0.05542809380425347, + "cumulativeLayoutShiftMainFrame": 0.05542809380425347, + "totalCumulativeLayoutShift": 0.05542809380425347, "observedTimeOrigin": 0, - "observedTimeOriginTs": 240156688, + "observedTimeOriginTs": 449996900, "observedNavigationStart": 0, - "observedNavigationStartTs": 240156688, - "observedFirstPaint": 739, - "observedFirstPaintTs": 240895979, - "observedFirstContentfulPaint": 739, - "observedFirstContentfulPaintTs": 240895979, - "observedFirstContentfulPaintAllFrames": 739, - "observedFirstContentfulPaintAllFramesTs": 240895979, - "observedFirstMeaningfulPaint": 992, - "observedFirstMeaningfulPaintTs": 241148771, - "observedLargestContentfulPaint": 910, - "observedLargestContentfulPaintTs": 241066499, - "observedLargestContentfulPaintAllFrames": 910, - "observedLargestContentfulPaintAllFramesTs": 241066499, - "observedTraceEnd": 3642, - "observedTraceEndTs": 243799130, - "observedLoad": 1335, - "observedLoadTs": 241491681, - "observedDomContentLoaded": 747, - "observedDomContentLoadedTs": 240903851, - "observedCumulativeLayoutShift": 0.05595801459418402, - "observedCumulativeLayoutShiftMainFrame": 0.05595801459418402, - "observedTotalCumulativeLayoutShift": 0.05595801459418402, - "observedFirstVisualChange": 750, - "observedFirstVisualChangeTs": 240906688, - "observedLastVisualChange": 1216, - "observedLastVisualChangeTs": 241372688, - "observedSpeedIndex": 1037, - "observedSpeedIndexTs": 241194019 + "observedNavigationStartTs": 449996900, + "observedFirstPaint": 672, + "observedFirstPaintTs": 450668996, + "observedFirstContentfulPaint": 672, + "observedFirstContentfulPaintTs": 450668996, + "observedFirstContentfulPaintAllFrames": 672, + "observedFirstContentfulPaintAllFramesTs": 450668996, + "observedFirstMeaningfulPaint": 789, + "observedFirstMeaningfulPaintTs": 450785682, + "observedLargestContentfulPaint": 789, + "observedLargestContentfulPaintTs": 450785682, + "observedLargestContentfulPaintAllFrames": 789, + "observedLargestContentfulPaintAllFramesTs": 450785682, + "observedTraceEnd": 3431, + "observedTraceEndTs": 453428307, + "observedLoad": 1123, + "observedLoadTs": 451119428, + "observedDomContentLoaded": 662, + "observedDomContentLoadedTs": 450658820, + "observedCumulativeLayoutShift": 0.05542809380425347, + "observedCumulativeLayoutShiftMainFrame": 0.05542809380425347, + "observedTotalCumulativeLayoutShift": 0.05542809380425347, + "observedFirstVisualChange": 651, + "observedFirstVisualChangeTs": 450647900, + "observedLastVisualChange": 1035, + "observedLastVisualChangeTs": 451031900, + "observedSpeedIndex": 882, + "observedSpeedIndexTs": 450878964 }, { "lcpInvalidated": false @@ -389644,19 +386661,19 @@ "numScripts": 1, "numStylesheets": 1, "numFonts": 3, - "numTasks": 479, - "numTasksOver10ms": 3, - "numTasksOver25ms": 1, + "numTasks": 468, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 100.66499999999999, - "throughput": 10159794.127992773, - "maxRtt": 100.75, - "maxServerLatency": 34.57599999999999, - "totalByteWeight": 965944, - "totalTaskTime": 133.37700000000012, - "mainDocumentTransferSize": 5162 + "rtt": 80.789, + "throughput": 12615034.505178384, + "maxRtt": 82.74799999999999, + "maxServerLatency": 88.16199999999999, + "totalByteWeight": 965973, + "totalTaskTime": 144.36999999999998, + "mainDocumentTransferSize": 5144 } ] } @@ -390010,7 +387027,7 @@ "http": { "url": "https://chatbot.fabnum.fr/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 13:51:29 GMT", + "end_time": "Sun, 14 Jan 2024 13:36:17 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -390020,7 +387037,7 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 13:51:28 GMT", + "Date": "Sun, 14 Jan 2024 13:36:15 GMT", "ETag": "W/\"64354379-abc\"", "Expires": "Thu, 01 Jan 1970 00:00:01 GMT", "Last-Modified": "Tue, 11 Apr 2023 11:24:41 GMT", @@ -390032,9 +387049,9 @@ "X-Frame-Options": "SAMEORIGIN", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46234504, + "scan_id": 46474210, "score": 80, - "start_time": "Sun, 07 Jan 2024 13:51:20 GMT", + "start_time": "Sun, 14 Jan 2024 13:36:08 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -390057,19 +387074,19 @@ "data:" ], "script-src": [ + "'self'", "'unsafe-inline'", - "dev.chatbot.fabnum.fr", - "'self'" + "dev.chatbot.fabnum.fr" ], "script-src-elem": [ - "'unsafe-inline'", - "dev.chatbot.fabnum.fr", "stats.data.gouv.fr", - "'self'" + "'self'", + "'unsafe-inline'", + "dev.chatbot.fabnum.fr" ], "style-src": [ - "'unsafe-inline'", - "'self'" + "'self'", + "'unsafe-inline'" ] }, "http": true, @@ -390249,52 +387266,52 @@ "version": "7.9p1 Debian 10+deb10u4", "vulnerabilities": [ { - "is_exploit": "true", "cvss": "5.8", - "type": "exploitpack", - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19" + "is_exploit": "true", + "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", + "type": "exploitpack" }, { - "is_exploit": "true", "cvss": "5.8", - "type": "exploitpack", - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97" + "is_exploit": "true", + "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", + "type": "exploitpack" }, { - "is_exploit": "true", "cvss": "5.8", - "type": "exploitdb", - "id": "EDB-ID:46516" + "is_exploit": "true", + "id": "EDB-ID:46516", + "type": "exploitdb" }, { - "is_exploit": "true", "cvss": "5.8", - "type": "exploitdb", - "id": "EDB-ID:46193" + "is_exploit": "true", + "id": "EDB-ID:46193", + "type": "exploitdb" }, { - "is_exploit": "false", "cvss": "5.8", - "type": "cve", - "id": "CVE-2019-6111" + "is_exploit": "false", + "id": "CVE-2019-6111", + "type": "cve" }, { - "is_exploit": "true", "cvss": "5.8", - "type": "zdt", - "id": "1337DAY-ID-32328" + "is_exploit": "true", + "id": "1337DAY-ID-32328", + "type": "zdt" }, { - "is_exploit": "true", "cvss": "5.8", - "type": "zdt", - "id": "1337DAY-ID-32009" + "is_exploit": "true", + "id": "1337DAY-ID-32009", + "type": "zdt" }, { - "is_exploit": "true", "cvss": "0.0", - "type": "packetstorm", - "id": "PACKETSTORM:151227" + "is_exploit": "true", + "id": "PACKETSTORM:151227", + "type": "packetstorm" } ] } @@ -390667,7 +387684,7 @@ "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "OK", - "finding": "66 >= 30 days" + "finding": "59 >= 30 days" }, { "id": "cert_notBefore", @@ -390870,7 +387887,7 @@ "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "1704635616" + "finding": "1705239466" }, { "id": "HSTS_time", @@ -391461,7 +388478,7 @@ "ip": "chatbot.fabnum.fr/51.38.43.26", "port": "443", "severity": "INFO", - "finding": "139" + "finding": "75" } ], "thirdparties": { @@ -391472,7 +388489,7 @@ "value": "1", "domain": "chatbot.fabnum.fr", "path": "/", - "expires": 1704637317, + "expires": 1705241205, "size": 17, "httpOnly": false, "secure": false, @@ -391484,10 +388501,10 @@ }, { "name": "_pk_id.130.2535", - "value": "866d20e67d5f64c2.1704635517.", + "value": "ebf1ff270fed515f.1705239405.", "domain": "chatbot.fabnum.fr", "path": "/", - "expires": 1738590717, + "expires": 1739194605, "size": 43, "httpOnly": false, "secure": false, @@ -391503,7 +388520,7 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; script-src-elem 'self' 'unsafe-inline' stats.data.gouv.fr dev.chatbot.fabnum.fr; img-src * data:; script-src 'self' dev.chatbot.fabnum.fr 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src dev.chatbot.fabnum.fr", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 13:51:55 GMT", + "date": "Sun, 14 Jan 2024 13:36:44 GMT", "etag": "W/\"64354379-abc\"", "expires": "Thu, 01 Jan 1970 00:00:01 GMT", "last-modified": "Tue, 11 Apr 2023 11:24:41 GMT", @@ -391549,7 +388566,7 @@ } }, "location": { - "accuracy_radius": 1000, + "accuracy_radius": 500, "latitude": 48.8582, "longitude": 2.3387, "time_zone": "Europe/Paris" @@ -391784,7 +388801,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 13:50:55", + "@generated": "Sun, 14 Jan 2024 13:35:44", "site": [ { "@name": "https://chatbot.fabnum.fr", @@ -391955,7 +388972,7 @@ "type": "dns", "host": "chatbot.fabnum.fr.", "matched-at": "chatbot.fabnum.fr", - "timestamp": "2024-01-07T13:55:39.562363548Z", + "timestamp": "2024-01-14T13:39:11.122347501Z", "matcher-status": true }, { @@ -391995,7 +389012,7 @@ "1; mode=block" ], "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:55:58.329342427Z", + "timestamp": "2024-01-14T13:39:22.437977122Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392022,7 +389039,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:56:35.666965897Z", + "timestamp": "2024-01-14T13:39:45.411793422Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392059,7 +389076,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:56:50.601927317Z", + "timestamp": "2024-01-14T13:39:54.389051265Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392096,7 +389113,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:56:50.601986871Z", + "timestamp": "2024-01-14T13:39:54.389094676Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392133,7 +389150,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:56:50.602011579Z", + "timestamp": "2024-01-14T13:39:54.389117638Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392170,7 +389187,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:56:50.60203304Z", + "timestamp": "2024-01-14T13:39:54.389136424Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392207,7 +389224,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:56:50.602060433Z", + "timestamp": "2024-01-14T13:39:54.389153996Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392244,7 +389261,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:56:50.602085521Z", + "timestamp": "2024-01-14T13:39:54.389169676Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392281,7 +389298,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:56:50.602111071Z", + "timestamp": "2024-01-14T13:39:54.389186727Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392318,7 +389335,7 @@ "https://dev.chatbot.fabnum.fr/backoffice/assets/scripts/embbed-chatbot.min.js?1425072122" ], "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:57:17.193890088Z", + "timestamp": "2024-01-14T13:40:09.76106248Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: chatbot.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392358,7 +389375,7 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:57:29.837261001Z", + "timestamp": "2024-01-14T13:40:17.147062125Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: chatbot.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, @@ -392398,59 +389415,10 @@ "host": "https://chatbot.fabnum.fr/", "matched-at": "https://chatbot.fabnum.fr/", "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:57:29.837300905Z", + "timestamp": "2024-01-14T13:40:17.147106307Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: chatbot.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://chatbot.fabnum.fr/'", "matcher-status": true }, - { - "template": "network/detection/openssh-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/openssh-detect", - "template-id": "openssh-detect", - "template-path": "/home/runner/nuclei-templates/network/detection/openssh-detect.yaml", - "info": { - "name": "OpenSSH Service - Detect", - "author": [ - "r3dg33k", - "daffainfo", - "iamthefrogy" - ], - "tags": [ - "seclists", - "network", - "ssh", - "openssh", - "detect" - ], - "description": "OpenSSH service was detected.\n", - "reference": [ - "http://www.openwall.com/lists/oss-security/2016/08/01/2", - "http://www.openwall.com/lists/oss-security/2018/08/15/5", - "http://seclists.org/fulldisclosure/2016/jul/51", - "https://nvd.nist.gov/vuln/detail/cve-2016-6210", - "https://nvd.nist.gov/vuln/detail/cve-2018-15473" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "tcp", - "host": "chatbot.fabnum.fr:22", - "matched-at": "chatbot.fabnum.fr:22", - "extracted-results": [ - "SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u4" - ], - "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:58:32.865371977Z", - "matcher-status": true - }, { "template": "ssl/detect-ssl-issuer.yaml", "template-url": "https://templates.nuclei.sh/public/ssl-issuer", @@ -392478,7 +389446,7 @@ "Let's Encrypt" ], "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:59:17.62927441Z", + "timestamp": "2024-01-14T13:41:56.995429511Z", "matcher-status": true }, { @@ -392508,7 +389476,7 @@ "chatbot.fabnum.fr" ], "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:59:17.629406147Z", + "timestamp": "2024-01-14T13:41:56.99554188Z", "matcher-status": true }, { @@ -392539,7 +389507,7 @@ "tls12" ], "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:59:23.074834177Z", + "timestamp": "2024-01-14T13:41:58.479888314Z", "matcher-status": true }, { @@ -392570,7 +389538,7 @@ "tls13" ], "ip": "51.38.43.26", - "timestamp": "2024-01-07T13:59:23.508191352Z", + "timestamp": "2024-01-14T13:41:58.675594023Z", "matcher-status": true } ], @@ -392578,7 +389546,7 @@ { "requestedUrl": "https://chatbot.fabnum.fr/", "finalUrl": "https://chatbot.fabnum.fr/", - "fetchTime": "2024-01-07T13:51:09.238Z", + "fetchTime": "2024-01-14T13:35:57.774Z", "runWarnings": [], "categories": { "performance": { @@ -392641,53 +389609,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3893, + "numericValue": 3657, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1647, - "firstMeaningfulPaint": 3252, - "largestContentfulPaint": 4254, - "interactive": 3893, - "speedIndex": 4206, - "totalBlockingTime": 375, - "maxPotentialFID": 267, - "cumulativeLayoutShift": 0.19101053873697918, - "cumulativeLayoutShiftMainFrame": 0.19101053873697918, - "totalCumulativeLayoutShift": 0.19101053873697918, + "firstContentfulPaint": 1509, + "firstMeaningfulPaint": 3136, + "largestContentfulPaint": 4388, + "interactive": 3657, + "speedIndex": 3285, + "totalBlockingTime": 352, + "maxPotentialFID": 253, + "cumulativeLayoutShift": 0.20539957682291665, + "cumulativeLayoutShiftMainFrame": 0.20539957682291665, + "totalCumulativeLayoutShift": 0.20539957682291665, "observedTimeOrigin": 0, - "observedTimeOriginTs": 269741512, + "observedTimeOriginTs": 188770774, "observedNavigationStart": 0, - "observedNavigationStartTs": 269741512, - "observedFirstPaint": 950, - "observedFirstPaintTs": 270691358, - "observedFirstContentfulPaint": 950, - "observedFirstContentfulPaintTs": 270691358, - "observedFirstContentfulPaintAllFrames": 950, - "observedFirstContentfulPaintAllFramesTs": 270691358, - "observedFirstMeaningfulPaint": 1557, - "observedFirstMeaningfulPaintTs": 271298607, - "observedLargestContentfulPaint": 1734, - "observedLargestContentfulPaintTs": 271475609, - "observedLargestContentfulPaintAllFrames": 1734, - "observedLargestContentfulPaintAllFramesTs": 271475609, - "observedTraceEnd": 4170, - "observedTraceEndTs": 273911158, - "observedLoad": 1860, - "observedLoadTs": 271601855, - "observedDomContentLoaded": 1307, - "observedDomContentLoadedTs": 271048729, - "observedCumulativeLayoutShift": 0.19101053873697918, - "observedCumulativeLayoutShiftMainFrame": 0.19101053873697918, - "observedTotalCumulativeLayoutShift": 0.19101053873697918, - "observedFirstVisualChange": 1447, - "observedFirstVisualChangeTs": 271188512, - "observedLastVisualChange": 3964, - "observedLastVisualChangeTs": 273705512, - "observedSpeedIndex": 1625, - "observedSpeedIndexTs": 271366812 + "observedNavigationStartTs": 188770774, + "observedFirstPaint": 531, + "observedFirstPaintTs": 189301810, + "observedFirstContentfulPaint": 531, + "observedFirstContentfulPaintTs": 189301810, + "observedFirstContentfulPaintAllFrames": 531, + "observedFirstContentfulPaintAllFramesTs": 189301810, + "observedFirstMeaningfulPaint": 973, + "observedFirstMeaningfulPaintTs": 189743840, + "observedLargestContentfulPaint": 1078, + "observedLargestContentfulPaintTs": 189848552, + "observedLargestContentfulPaintAllFrames": 1078, + "observedLargestContentfulPaintAllFramesTs": 189848552, + "observedTraceEnd": 3455, + "observedTraceEndTs": 192225644, + "observedLoad": 1145, + "observedLoadTs": 189915488, + "observedDomContentLoaded": 786, + "observedDomContentLoadedTs": 189556914, + "observedCumulativeLayoutShift": 0.20539957682291665, + "observedCumulativeLayoutShiftMainFrame": 0.20539957682291665, + "observedTotalCumulativeLayoutShift": 0.20539957682291665, + "observedFirstVisualChange": 754, + "observedFirstVisualChangeTs": 189524774, + "observedLastVisualChange": 3454, + "observedLastVisualChangeTs": 192224774, + "observedSpeedIndex": 1012, + "observedSpeedIndexTs": 189782408 }, { "lcpInvalidated": false @@ -392709,19 +389677,19 @@ "numScripts": 6, "numStylesheets": 1, "numFonts": 3, - "numTasks": 785, - "numTasksOver10ms": 7, - "numTasksOver25ms": 4, + "numTasks": 784, + "numTasksOver10ms": 5, + "numTasksOver25ms": 3, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 147.437, - "throughput": 11068781.542898087, - "maxRtt": 151.36200000000002, - "maxServerLatency": 9.621999999999986, - "totalByteWeight": 1036287, - "totalTaskTime": 372.18699999999836, - "mainDocumentTransferSize": 1828 + "rtt": 82.498, + "throughput": 19121431.43794021, + "maxRtt": 85.809, + "maxServerLatency": 8.123000000000005, + "totalByteWeight": 1036329, + "totalTaskTime": 317.88599999999855, + "mainDocumentTransferSize": 1829 } ] } @@ -393125,7 +390093,7 @@ "http": { "url": "https://mes-adresses.data.gouv.fr/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 14:33:09 GMT", + "end_time": "Sun, 14 Jan 2024 14:05:03 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -393133,17 +390101,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 14:33:08 GMT", + "Date": "Sun, 14 Jan 2024 14:05:02 GMT", "Server": "nginx/1.23.4", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "etag": "\"p2scz5cygc10bs\"", + "etag": "\"htkkzu3k9810bs\"", "x-powered-by": "Next.js" }, - "scan_id": 46234910, + "scan_id": 46476523, "score": 40, - "start_time": "Sun, 07 Jan 2024 14:33:05 GMT", + "start_time": "Sun, 14 Jan 2024 14:04:58 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -393323,10 +390291,10 @@ "version": "8.4p1 Debian 5+deb11u3", "vulnerabilities": [ { + "type": "prion", "id": "PRION:CVE-2016-20012", "cvss": "5.0", - "is_exploit": "false", - "type": "prion" + "is_exploit": "false" } ] } @@ -393716,7 +390684,7 @@ "ip": "mes-adresses.data.gouv.fr/162.19.30.139", "port": "443", "severity": "OK", - "finding": "47 >= 30 days" + "finding": "40 >= 30 days" }, { "id": "cert_notBefore", @@ -393926,7 +390894,7 @@ "ip": "mes-adresses.data.gouv.fr/162.19.30.139", "port": "443", "severity": "INFO", - "finding": "1704638060" + "finding": "1705241173" }, { "id": "HSTS_time", @@ -394489,7 +391457,7 @@ "ip": "mes-adresses.data.gouv.fr/162.19.30.139", "port": "443", "severity": "INFO", - "finding": "55" + "finding": "56" } ], "thirdparties": { @@ -394498,8 +391466,8 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 14:33:40 GMT", - "etag": "\"p2scz5cygc10bs\"", + "date": "Sun, 14 Jan 2024 14:05:33 GMT", + "etag": "\"htkkzu3k9810bs\"", "server": "nginx/1.23.4", "strict-transport-security": "max-age=63072000", "vary": "Accept-Encoding", @@ -394510,14 +391478,6 @@ "hostname": "mes-adresses.data.gouv.fr", "ip": "162.19.30.139", "geoip": { - "city": { - "geoname_id": 3021150, - "names": { - "en": "Domont", - "ru": "Домон", - "zh-CN": "多蒙" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -394548,14 +391508,11 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 49.0302, - "longitude": 2.3235, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "95330" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -394570,30 +391527,7 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "pt-BR": "Ilha de França" - } - }, - { - "geoname_id": 2971071, - "iso_code": "95", - "names": { - "de": "Val d'Oise", - "en": "Val d'Oise", - "es": "Valle de Oise", - "fr": "Val-d'Oise" - } - } - ] + } } } ] @@ -394788,7 +391722,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 14:32:41", + "@generated": "Sun, 14 Jan 2024 14:04:34", "site": [ { "@name": "https://mes-adresses.data.gouv.fr", @@ -394935,13 +391869,6 @@ "confidence": "2", "riskdesc": "Informational (Medium)", "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" - }, - { - "name": "Storable but Non-Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" } ] } @@ -394949,73 +391876,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "mes-adresses.data.gouv.fr.", "matched-at": "mes-adresses.data.gouv.fr", - "extracted-results": [ - "bal-1.infra.adresse.data.gouv.fr." - ], - "timestamp": "2024-01-07T14:35:28.297148536Z", + "timestamp": "2024-01-14T14:08:03.598287572Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "mes-adresses.data.gouv.fr.", "matched-at": "mes-adresses.data.gouv.fr", - "timestamp": "2024-01-07T14:35:28.932444762Z", + "extracted-results": [ + "bal-1.infra.adresse.data.gouv.fr." + ], + "timestamp": "2024-01-14T14:08:03.928518216Z", "matcher-status": true }, { @@ -395044,7 +391971,7 @@ "GET, HEAD" ], "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:35:35.347671034Z", + "timestamp": "2024-01-14T14:08:10.943126541Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395076,7 +392003,7 @@ "nginx/1.23.4" ], "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:35:39.970285157Z", + "timestamp": "2024-01-14T14:08:16.469593562Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395103,7 +392030,7 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:04.585028839Z", + "timestamp": "2024-01-14T14:08:41.508185537Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395130,7 +392057,7 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:04.585080314Z", + "timestamp": "2024-01-14T14:08:41.508237413Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395162,12 +392089,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.855004144Z", + "timestamp": "2024-01-14T14:08:48.766195908Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395199,12 +392126,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.855089273Z", + "timestamp": "2024-01-14T14:08:48.766241863Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395236,12 +392163,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.855108709Z", + "timestamp": "2024-01-14T14:08:48.766258815Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395273,12 +392200,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.855126652Z", + "timestamp": "2024-01-14T14:08:48.766275095Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395310,12 +392237,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.85514152Z", + "timestamp": "2024-01-14T14:08:48.766290393Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395352,7 +392279,44 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.855155796Z", + "timestamp": "2024-01-14T14:08:48.766303297Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://mes-adresses.data.gouv.fr/", + "matched-at": "https://mes-adresses.data.gouv.fr/", + "ip": "162.19.30.139", + "timestamp": "2024-01-14T14:08:48.766316011Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395389,7 +392353,7 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.855171826Z", + "timestamp": "2024-01-14T14:08:48.766328083Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395421,49 +392385,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://mes-adresses.data.gouv.fr/", - "matched-at": "https://mes-adresses.data.gouv.fr/", - "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.855187455Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.855201Z", + "timestamp": "2024-01-14T14:08:48.766341428Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395495,12 +392422,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:11.855214475Z", + "timestamp": "2024-01-14T14:08:48.766354643Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395540,7 +392467,7 @@ "host": "https://mes-adresses.data.gouv.fr/", "matched-at": "https://mes-adresses.data.gouv.fr/", "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:36:34.755270157Z", + "timestamp": "2024-01-14T14:09:11.776554853Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mes-adresses.data.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-adresses.data.gouv.fr/'", "matcher-status": true }, @@ -395590,7 +392517,7 @@ "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3" ], "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:37:19.824451143Z", + "timestamp": "2024-01-14T14:09:51.205394293Z", "matcher-status": true }, { @@ -395620,7 +392547,7 @@ "Let's Encrypt" ], "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:38:04.391350769Z", + "timestamp": "2024-01-14T14:10:41.020958694Z", "matcher-status": true }, { @@ -395647,14 +392574,14 @@ "host": "mes-adresses.data.gouv.fr", "matched-at": "mes-adresses.data.gouv.fr:443", "extracted-results": [ + "api-bal.adresse.data.gouv.fr", + "backend.adresse.data.gouv.fr", "bal-admin.adresse.data.gouv.fr", "mes-adresses.data.gouv.fr", - "plateforme-bal.adresse.data.gouv.fr", - "api-bal.adresse.data.gouv.fr", - "backend.adresse.data.gouv.fr" + "plateforme-bal.adresse.data.gouv.fr" ], "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:38:04.391474289Z", + "timestamp": "2024-01-14T14:10:41.021066063Z", "matcher-status": true }, { @@ -395685,7 +392612,7 @@ "tls12" ], "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:38:05.8120814Z", + "timestamp": "2024-01-14T14:10:42.297292988Z", "matcher-status": true }, { @@ -395716,7 +392643,7 @@ "tls13" ], "ip": "162.19.30.139", - "timestamp": "2024-01-07T14:38:06.015250021Z", + "timestamp": "2024-01-14T14:10:42.498201969Z", "matcher-status": true } ], @@ -395724,7 +392651,7 @@ { "requestedUrl": "https://mes-adresses.data.gouv.fr/", "finalUrl": "https://mes-adresses.data.gouv.fr/", - "fetchTime": "2024-01-07T14:32:55.383Z", + "fetchTime": "2024-01-14T14:04:48.281Z", "runWarnings": [], "categories": { "performance": { @@ -395787,53 +392714,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3323, + "numericValue": 3278, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 907, - "firstMeaningfulPaint": 907, - "largestContentfulPaint": 1057, - "interactive": 3323, - "speedIndex": 970, - "totalBlockingTime": 427, - "maxPotentialFID": 316, + "firstContentfulPaint": 905, + "firstMeaningfulPaint": 905, + "largestContentfulPaint": 1055, + "interactive": 3278, + "speedIndex": 960, + "totalBlockingTime": 413, + "maxPotentialFID": 417, "cumulativeLayoutShift": 0.011575868394639756, "cumulativeLayoutShiftMainFrame": 0.011575868394639756, "totalCumulativeLayoutShift": 0.011575868394639756, "observedTimeOrigin": 0, - "observedTimeOriginTs": 249584284, + "observedTimeOriginTs": 200975489, "observedNavigationStart": 0, - "observedNavigationStartTs": 249584284, + "observedNavigationStartTs": 200975489, "observedFirstPaint": 394, - "observedFirstPaintTs": 249978311, + "observedFirstPaintTs": 201369838, "observedFirstContentfulPaint": 394, - "observedFirstContentfulPaintTs": 249978311, + "observedFirstContentfulPaintTs": 201369838, "observedFirstContentfulPaintAllFrames": 394, - "observedFirstContentfulPaintAllFramesTs": 249978311, + "observedFirstContentfulPaintAllFramesTs": 201369838, "observedFirstMeaningfulPaint": 394, - "observedFirstMeaningfulPaintTs": 249978311, + "observedFirstMeaningfulPaintTs": 201369838, "observedLargestContentfulPaint": 394, - "observedLargestContentfulPaintTs": 249978311, + "observedLargestContentfulPaintTs": 201369838, "observedLargestContentfulPaintAllFrames": 394, - "observedLargestContentfulPaintAllFramesTs": 249978311, - "observedTraceEnd": 3192, - "observedTraceEndTs": 252776693, - "observedLoad": 663, - "observedLoadTs": 250246943, - "observedDomContentLoaded": 661, - "observedDomContentLoadedTs": 250245518, + "observedLargestContentfulPaintAllFramesTs": 201369838, + "observedTraceEnd": 3195, + "observedTraceEndTs": 204170250, + "observedLoad": 660, + "observedLoadTs": 201635375, + "observedDomContentLoaded": 658, + "observedDomContentLoadedTs": 201633783, "observedCumulativeLayoutShift": 0.011575868394639756, "observedCumulativeLayoutShiftMainFrame": 0.011575868394639756, "observedTotalCumulativeLayoutShift": 0.011575868394639756, - "observedFirstVisualChange": 405, - "observedFirstVisualChangeTs": 249989284, - "observedLastVisualChange": 1005, - "observedLastVisualChangeTs": 250589284, - "observedSpeedIndex": 450, - "observedSpeedIndexTs": 250034332 + "observedFirstVisualChange": 399, + "observedFirstVisualChangeTs": 201374489, + "observedLastVisualChange": 999, + "observedLastVisualChangeTs": 201974489, + "observedSpeedIndex": 444, + "observedSpeedIndexTs": 201419610 }, { "lcpInvalidated": false @@ -395855,19 +392782,19 @@ "numScripts": 17, "numStylesheets": 1, "numFonts": 0, - "numTasks": 508, - "numTasksOver10ms": 6, - "numTasksOver25ms": 4, + "numTasks": 595, + "numTasksOver10ms": 7, + "numTasksOver25ms": 3, "numTasksOver50ms": 1, - "numTasksOver100ms": 0, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 82.158, - "throughput": 14395485.543370908, - "maxRtt": 86.485, - "maxServerLatency": 6.820999999999998, - "totalByteWeight": 902417, - "totalTaskTime": 324.0319999999995, - "mainDocumentTransferSize": 9755 + "rtt": 82.124, + "throughput": 14273739.8139306, + "maxRtt": 84.715, + "maxServerLatency": 4.986999999999995, + "totalByteWeight": 902525, + "totalTaskTime": 350.9779999999989, + "mainDocumentTransferSize": 9758 } ] } @@ -396008,7 +392935,7 @@ "http": { "url": "https://adresse.data.gouv.fr/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 14:59:08 GMT", + "end_time": "Sun, 14 Jan 2024 14:31:15 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -396017,17 +392944,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 14:59:06 GMT", - "ETag": "\"13r7mir4oe919hy\"", + "Date": "Sun, 14 Jan 2024 14:31:13 GMT", + "ETag": "\"v0ls5nuive19j6\"", "Server": "nginx/1.24.0", "Strict-Transport-Security": "max-age=15768000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js" }, - "scan_id": 46235083, + "scan_id": 46478688, "score": 40, - "start_time": "Sun, 07 Jan 2024 14:59:03 GMT", + "start_time": "Sun, 14 Jan 2024 14:31:10 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -396207,129 +393134,129 @@ "version": "7.6p1 Ubuntu 4ubuntu0.7", "vulnerabilities": [ { + "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", "cvss": "5.8", "type": "exploitpack", - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", "is_exploit": "true" }, { + "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", "cvss": "5.8", "type": "exploitpack", - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", "is_exploit": "true" }, { + "id": "EDB-ID:46516", "cvss": "5.8", "type": "exploitdb", - "id": "EDB-ID:46516", "is_exploit": "true" }, { + "id": "EDB-ID:46193", "cvss": "5.8", "type": "exploitdb", - "id": "EDB-ID:46193", "is_exploit": "true" }, { + "id": "CVE-2019-6111", "cvss": "5.8", "type": "cve", - "id": "CVE-2019-6111", "is_exploit": "false" }, { + "id": "1337DAY-ID-32328", "cvss": "5.8", "type": "zdt", - "id": "1337DAY-ID-32328", "is_exploit": "true" }, { + "id": "1337DAY-ID-32009", "cvss": "5.8", "type": "zdt", - "id": "1337DAY-ID-32009", "is_exploit": "true" }, { + "id": "SSH_ENUM", "cvss": "5.0", "type": "canvas", - "id": "SSH_ENUM", "is_exploit": "true" }, { + "id": "PRION:CVE-2018-15919", "cvss": "5.0", "type": "prion", - "id": "PRION:CVE-2018-15919", "is_exploit": "false" }, { + "id": "PRION:CVE-2018-15473", "cvss": "5.0", "type": "prion", - "id": "PRION:CVE-2018-15473", "is_exploit": "false" }, { + "id": "PACKETSTORM:150621", "cvss": "5.0", "type": "packetstorm", - "id": "PACKETSTORM:150621", "is_exploit": "true" }, { + "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0", "cvss": "5.0", "type": "exploitpack", - "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0", "is_exploit": "true" }, { + "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283", "cvss": "5.0", "type": "exploitpack", - "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283", "is_exploit": "true" }, { + "id": "EDB-ID:45939", "cvss": "5.0", "type": "exploitdb", - "id": "EDB-ID:45939", "is_exploit": "true" }, { + "id": "EDB-ID:45233", "cvss": "5.0", "type": "exploitdb", - "id": "EDB-ID:45233", "is_exploit": "true" }, { + "id": "CVE-2018-15919", "cvss": "5.0", "type": "cve", - "id": "CVE-2018-15919", "is_exploit": "false" }, { + "id": "CVE-2018-15473", "cvss": "5.0", "type": "cve", - "id": "CVE-2018-15473", "is_exploit": "false" }, { + "id": "1337DAY-ID-31730", "cvss": "5.0", "type": "zdt", - "id": "1337DAY-ID-31730", "is_exploit": "true" }, { + "id": "PACKETSTORM:151227", "cvss": "0.0", "type": "packetstorm", - "id": "PACKETSTORM:151227", "is_exploit": "true" }, { + "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-", "cvss": "0.0", "type": "metasploit", - "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-", "is_exploit": "true" }, { + "id": "1337DAY-ID-30937", "cvss": "0.0", "type": "zdt", - "id": "1337DAY-ID-30937", "is_exploit": "true" } ] @@ -396720,7 +393647,7 @@ "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "OK", - "finding": "73 >= 30 days" + "finding": "66 >= 30 days" }, { "id": "cert_notBefore", @@ -396930,7 +393857,7 @@ "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "1704639702" + "finding": "1705242793" }, { "id": "HSTS_time", @@ -397493,7 +394420,7 @@ "ip": "adresse.data.gouv.fr/146.59.188.210", "port": "443", "severity": "INFO", - "finding": "114" + "finding": "72" } ], "thirdparties": { @@ -397553,7 +394480,7 @@ "value": "1", "domain": "adresse.data.gouv.fr", "path": "/", - "expires": 1704641387, + "expires": 1705244514, "size": 16, "httpOnly": false, "secure": false, @@ -397565,10 +394492,10 @@ }, { "name": "_pk_id.13.592e", - "value": "b6801161051c3d4d.1704639587.", + "value": "dddc1a0e14f2c504.1705242714.", "domain": "adresse.data.gouv.fr", "path": "/", - "expires": 1738594787, + "expires": 1739197914, "size": 42, "httpOnly": false, "secure": false, @@ -397583,8 +394510,8 @@ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 14:59:45 GMT", - "etag": "\"13r7mir4oe919hy\"", + "date": "Sun, 14 Jan 2024 14:31:52 GMT", + "etag": "\"v0ls5nuive19j6\"", "server": "nginx/1.24.0", "strict-transport-security": "max-age=15768000", "vary": "Accept-Encoding", @@ -397649,13 +394576,13 @@ }, { "hostname": "8d772127.sibforms.com", - "ip": "104.16.141.119", + "ip": "104.16.140.119", "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -397669,13 +394596,13 @@ }, { "hostname": "sibforms.com", - "ip": "104.16.140.119", + "ip": "104.16.141.119", "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -397695,7 +394622,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -397709,21 +394636,8 @@ }, { "hostname": "596808a16dec4fc39413bf34b0a70240.apm.eu-west-1.aws.cloud.es.io", - "ip": "63.33.254.192", + "ip": "34.253.3.7", "geoip": { - "city": { - "geoname_id": 2964574, - "names": { - "de": "Dublin", - "en": "Dublin", - "es": "Dublín", - "fr": "Dublin", - "ja": "ダブリン", - "pt-BR": "Dublin", - "ru": "Дублин", - "zh-CN": "都柏林" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -397739,34 +394653,30 @@ } }, "country": { - "geoname_id": 2963597, - "is_in_european_union": true, - "iso_code": "IE", + "geoname_id": 2635167, + "iso_code": "GB", "names": { - "de": "Irland", - "en": "Ireland", - "es": "Irlanda", - "fr": "Irlande", - "ja": "アイルランド", - "pt-BR": "Irlanda", - "ru": "Ирландия", - "zh-CN": "爱尔兰" + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" } }, "location": { - "accuracy_radius": 1000, - "latitude": 53.3379, - "longitude": -6.2591, - "time_zone": "Europe/Dublin" - }, - "postal": { - "code": "D02" + "accuracy_radius": 200, + "latitude": 51.4964, + "longitude": -0.1224, + "time_zone": "Europe/London" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -397775,19 +394685,7 @@ "ru": "США", "zh-CN": "美国" } - }, - "subdivisions": [ - { - "geoname_id": 7521314, - "iso_code": "L", - "names": { - "en": "Leinster", - "fr": "Leinster", - "ja": "レンスター", - "ru": "Ленстер" - } - } - ] + } } } ] @@ -397987,7 +394885,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 15:01:34", + "@generated": "Sun, 14 Jan 2024 14:33:08", "site": [ { "@name": "https://adresse.data.gouv.fr", @@ -398086,13 +394984,6 @@ "riskdesc": "Informational (Medium)", "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, - { - "name": "Content-Type Header Missing", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The Content-Type header was either missing or empty.

" - }, { "name": "Information Disclosure - Suspicious Comments", "riskcode": "0", @@ -398169,22 +395060,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -398200,29 +395091,26 @@ "type": "dns", "host": "adresse.data.gouv.fr.", "matched-at": "adresse.data.gouv.fr", - "extracted-results": [ - "\"sendinblue-code:dd31dfeba26dea3dbb822aba4ec57417\"" - ], - "timestamp": "2024-01-07T15:03:11.367195932Z", + "timestamp": "2024-01-14T14:34:22.985907713Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -398238,7 +395126,10 @@ "type": "dns", "host": "adresse.data.gouv.fr.", "matched-at": "adresse.data.gouv.fr", - "timestamp": "2024-01-07T15:03:11.556811425Z", + "extracted-results": [ + "\"sendinblue-code:dd31dfeba26dea3dbb822aba4ec57417\"" + ], + "timestamp": "2024-01-14T14:34:23.593461381Z", "matcher-status": true }, { @@ -398267,7 +395158,7 @@ "GET,HEAD" ], "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:03:23.242567344Z", + "timestamp": "2024-01-14T14:34:29.702795144Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398299,7 +395190,7 @@ "nginx/1.24.0" ], "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:03:31.492992924Z", + "timestamp": "2024-01-14T14:34:34.684747278Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398326,7 +395217,7 @@ "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:11.858165762Z", + "timestamp": "2024-01-14T14:35:00.978483076Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398353,7 +395244,7 @@ "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:11.858210355Z", + "timestamp": "2024-01-14T14:35:00.978542346Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398385,12 +395276,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.493651476Z", + "timestamp": "2024-01-14T14:35:08.666733383Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398422,12 +395313,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.493694356Z", + "timestamp": "2024-01-14T14:35:08.666772295Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398459,12 +395350,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.493711678Z", + "timestamp": "2024-01-14T14:35:08.666783235Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398496,12 +395387,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.493730092Z", + "timestamp": "2024-01-14T14:35:08.666798744Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398533,12 +395424,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.493744188Z", + "timestamp": "2024-01-14T14:35:08.666815856Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398570,12 +395461,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.493757122Z", + "timestamp": "2024-01-14T14:35:08.666831385Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398607,12 +395498,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.493768704Z", + "timestamp": "2024-01-14T14:35:08.66684499Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398644,12 +395535,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.493782019Z", + "timestamp": "2024-01-14T14:35:08.666857894Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398681,12 +395572,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.49379369Z", + "timestamp": "2024-01-14T14:35:08.666869446Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398718,12 +395609,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:04:25.493805963Z", + "timestamp": "2024-01-14T14:35:08.66688241Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398763,7 +395654,7 @@ "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:05:04.852093067Z", + "timestamp": "2024-01-14T14:35:31.96293645Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: adresse.data.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398803,7 +395694,7 @@ "host": "https://adresse.data.gouv.fr/", "matched-at": "https://adresse.data.gouv.fr/", "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:05:04.852132691Z", + "timestamp": "2024-01-14T14:35:31.962982345Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: adresse.data.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://adresse.data.gouv.fr/'", "matcher-status": true }, @@ -398853,7 +395744,7 @@ "SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.7" ], "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:06:06.572961992Z", + "timestamp": "2024-01-14T14:36:21.867090687Z", "matcher-status": true }, { @@ -398883,7 +395774,7 @@ "Let's Encrypt" ], "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:06:57.144840294Z", + "timestamp": "2024-01-14T14:37:11.825085657Z", "matcher-status": true }, { @@ -398910,13 +395801,13 @@ "host": "adresse.data.gouv.fr", "matched-at": "adresse.data.gouv.fr:443", "extracted-results": [ - "www.adresse.data.gouv.fr", "adresse.data.gouv.fr", "blog.geo.data.gouv.fr", - "plateforme.adresse.data.gouv.fr" + "plateforme.adresse.data.gouv.fr", + "www.adresse.data.gouv.fr" ], "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:06:57.144963403Z", + "timestamp": "2024-01-14T14:37:11.825202634Z", "matcher-status": true }, { @@ -398947,7 +395838,7 @@ "tls12" ], "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:06:59.363724047Z", + "timestamp": "2024-01-14T14:37:13.519966881Z", "matcher-status": true }, { @@ -398978,7 +395869,7 @@ "tls13" ], "ip": "146.59.188.210", - "timestamp": "2024-01-07T15:06:59.748901971Z", + "timestamp": "2024-01-14T14:37:13.715968309Z", "matcher-status": true } ], @@ -398986,7 +395877,7 @@ { "requestedUrl": "https://adresse.data.gouv.fr/", "finalUrl": "https://adresse.data.gouv.fr/", - "fetchTime": "2024-01-07T14:58:48.879Z", + "fetchTime": "2024-01-14T14:30:56.859Z", "runWarnings": [ "The tested device appears to have a slower CPU than Lighthouse expects. This can negatively affect your performance score. Learn more about [calibrating an appropriate CPU slowdown multiplier](https://github.com/GoogleChrome/lighthouse/blob/master/docs/throttling.md#cpu-throttling)." ], @@ -399051,53 +395942,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8159, + "numericValue": 7648, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2323, - "firstMeaningfulPaint": 5952, - "largestContentfulPaint": 2899, - "interactive": 8159, - "speedIndex": 4665, - "totalBlockingTime": 352, - "maxPotentialFID": 267, - "cumulativeLayoutShift": 0.010291130913628472, - "cumulativeLayoutShiftMainFrame": 0.010291130913628472, - "totalCumulativeLayoutShift": 0.010291130913628472, + "firstContentfulPaint": 2542, + "firstMeaningfulPaint": 5334, + "largestContentfulPaint": 3667, + "interactive": 7648, + "speedIndex": 4575, + "totalBlockingTime": 511, + "maxPotentialFID": 248, + "cumulativeLayoutShift": 0.008822014702690973, + "cumulativeLayoutShiftMainFrame": 0.008822014702690973, + "totalCumulativeLayoutShift": 0.008822014702690973, "observedTimeOrigin": 0, - "observedTimeOriginTs": 914317769, + "observedTimeOriginTs": 906442411, "observedNavigationStart": 0, - "observedNavigationStartTs": 914317769, - "observedFirstPaint": 1202, - "observedFirstPaintTs": 915520109, - "observedFirstContentfulPaint": 1202, - "observedFirstContentfulPaintTs": 915520109, - "observedFirstContentfulPaintAllFrames": 1202, - "observedFirstContentfulPaintAllFramesTs": 915520109, - "observedFirstMeaningfulPaint": 1767, - "observedFirstMeaningfulPaintTs": 916085121, - "observedLargestContentfulPaint": 1202, - "observedLargestContentfulPaintTs": 915520109, - "observedLargestContentfulPaintAllFrames": 1202, - "observedLargestContentfulPaintAllFramesTs": 915520109, - "observedTraceEnd": 4453, - "observedTraceEndTs": 918770950, - "observedLoad": 2144, - "observedLoadTs": 916461458, - "observedDomContentLoaded": 1306, - "observedDomContentLoadedTs": 915623503, - "observedCumulativeLayoutShift": 0.010291130913628472, - "observedCumulativeLayoutShiftMainFrame": 0.010291130913628472, - "observedTotalCumulativeLayoutShift": 0.010291130913628472, - "observedFirstVisualChange": 1212, - "observedFirstVisualChangeTs": 915529769, - "observedLastVisualChange": 2478, - "observedLastVisualChangeTs": 916795769, - "observedSpeedIndex": 1341, - "observedSpeedIndexTs": 915658706 + "observedNavigationStartTs": 906442411, + "observedFirstPaint": 984, + "observedFirstPaintTs": 907426089, + "observedFirstContentfulPaint": 984, + "observedFirstContentfulPaintTs": 907426089, + "observedFirstContentfulPaintAllFrames": 984, + "observedFirstContentfulPaintAllFramesTs": 907426089, + "observedFirstMeaningfulPaint": 1361, + "observedFirstMeaningfulPaintTs": 907803460, + "observedLargestContentfulPaint": 984, + "observedLargestContentfulPaintTs": 907426089, + "observedLargestContentfulPaintAllFrames": 984, + "observedLargestContentfulPaintAllFramesTs": 907426089, + "observedTraceEnd": 4027, + "observedTraceEndTs": 910468998, + "observedLoad": 1712, + "observedLoadTs": 908154164, + "observedDomContentLoaded": 1120, + "observedDomContentLoadedTs": 907562177, + "observedCumulativeLayoutShift": 0.008822014702690973, + "observedCumulativeLayoutShiftMainFrame": 0.008822014702690973, + "observedTotalCumulativeLayoutShift": 0.008822014702690973, + "observedFirstVisualChange": 954, + "observedFirstVisualChangeTs": 907396411, + "observedLastVisualChange": 2354, + "observedLastVisualChangeTs": 908796411, + "observedSpeedIndex": 1126, + "observedSpeedIndexTs": 907568862 }, { "lcpInvalidated": false @@ -399115,23 +396006,23 @@ "type": "debugdata", "items": [ { - "numRequests": 81, - "numScripts": 37, + "numRequests": 74, + "numScripts": 33, "numStylesheets": 3, - "numFonts": 7, - "numTasks": 1213, - "numTasksOver10ms": 21, - "numTasksOver25ms": 5, - "numTasksOver50ms": 3, + "numFonts": 9, + "numTasks": 1148, + "numTasksOver10ms": 17, + "numTasksOver25ms": 6, + "numTasksOver50ms": 4, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 8.679999999999993, - "throughput": 7756875.245285312, - "maxRtt": 153.692, - "maxServerLatency": 36.22900000000001, - "totalByteWeight": 810353, - "totalTaskTime": 891.2899999999935, - "mainDocumentTransferSize": 11219 + "rtt": 5.285000000000011, + "throughput": 19113700.16249944, + "maxRtt": 97.19999999999999, + "maxServerLatency": 29.788999999999987, + "totalByteWeight": 905588, + "totalTaskTime": 917.6009999999943, + "mainDocumentTransferSize": 11242 } ] } @@ -399272,7 +396163,7 @@ "http": { "url": "https://my.fabnum.fr/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 14:52:32 GMT", + "end_time": "Sun, 14 Jan 2024 14:35:13 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -399280,12 +396171,12 @@ "Connection": "keep-alive", "Content-Length": "146", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 14:52:31 GMT", + "Date": "Sun, 14 Jan 2024 14:35:12 GMT", "Server": "nginx" }, - "scan_id": 46235032, + "scan_id": 46478979, "score": 20, - "start_time": "Sun, 07 Jan 2024 14:51:08 GMT", + "start_time": "Sun, 14 Jan 2024 14:35:09 GMT", "state": "FINISHED", "status_code": 403, "tests_failed": 5, @@ -399465,40 +396356,40 @@ "version": "8.2p1 Ubuntu 4ubuntu0.11", "vulnerabilities": [ { - "id": "CVE-2020-15778", - "cvss": "6.8", "is_exploit": "false", - "type": "cve" + "type": "cve", + "id": "CVE-2020-15778", + "cvss": "6.8" }, { - "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "cvss": "6.8", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", + "cvss": "6.8" }, { - "id": "10213DBE-F683-58BB-B6D3-353173626207", - "cvss": "6.8", "is_exploit": "true", - "type": "githubexploit" + "type": "githubexploit", + "id": "10213DBE-F683-58BB-B6D3-353173626207", + "cvss": "6.8" }, { - "id": "PRION:CVE-2020-12062", - "cvss": "5.0", "is_exploit": "false", - "type": "prion" + "type": "prion", + "id": "PRION:CVE-2020-12062", + "cvss": "5.0" }, { - "id": "PRION:CVE-2016-20012", - "cvss": "5.0", "is_exploit": "false", - "type": "prion" + "type": "prion", + "id": "PRION:CVE-2016-20012", + "cvss": "5.0" }, { - "id": "CVE-2020-12062", - "cvss": "5.0", "is_exploit": "false", - "type": "cve" + "type": "cve", + "id": "CVE-2020-12062", + "cvss": "5.0" } ] } @@ -399907,7 +396798,7 @@ "ip": "my.fabnum.fr/51.255.78.174", "port": "443", "severity": "OK", - "finding": "48 >= 30 days" + "finding": "41 >= 30 days" }, { "id": "cert_notBefore", @@ -400117,7 +397008,7 @@ "ip": "my.fabnum.fr/51.255.78.174", "port": "443", "severity": "INFO", - "finding": "1704639241" + "finding": "1705242992" }, { "id": "HSTS", @@ -400673,7 +397564,7 @@ "ip": "my.fabnum.fr/51.255.78.174", "port": "443", "severity": "INFO", - "finding": "72" + "finding": "61" } ], "thirdparties": { @@ -400682,7 +397573,7 @@ "headers": { "content-length": "548", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 14:53:03 GMT", + "date": "Sun, 14 Jan 2024 14:35:46 GMT", "server": "nginx" }, "endpoints": [ @@ -400779,7 +397670,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 14:50:38", + "@generated": "Sun, 14 Jan 2024 14:34:39", "site": [ { "@name": "https://my.fabnum.fr", @@ -400894,7 +397785,7 @@ "type": "dns", "host": "my.fabnum.fr.", "matched-at": "my.fabnum.fr", - "timestamp": "2024-01-07T14:55:06.722690469Z", + "timestamp": "2024-01-14T14:37:41.576326019Z", "matcher-status": true }, { @@ -400920,7 +397811,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:42.880101379Z", + "timestamp": "2024-01-14T14:38:23.295546157Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400952,12 +397843,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.386346818Z", + "timestamp": "2024-01-14T14:38:34.345572972Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -400989,12 +397880,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.386411889Z", + "timestamp": "2024-01-14T14:38:34.345623025Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401026,12 +397917,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.38642883Z", + "timestamp": "2024-01-14T14:38:34.345638865Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401063,12 +397954,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.386446073Z", + "timestamp": "2024-01-14T14:38:34.345653121Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401100,12 +397991,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.386460419Z", + "timestamp": "2024-01-14T14:38:34.345731149Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401137,12 +398028,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "clear-site-data", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.386475377Z", + "timestamp": "2024-01-14T14:38:34.345762999Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401174,12 +398065,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.386489644Z", + "timestamp": "2024-01-14T14:38:34.345790841Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401211,12 +398102,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.386505734Z", + "timestamp": "2024-01-14T14:38:34.345821648Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401248,12 +398139,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "content-security-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.38652003Z", + "timestamp": "2024-01-14T14:38:34.345855852Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401285,12 +398176,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.386532834Z", + "timestamp": "2024-01-14T14:38:34.345884696Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401322,12 +398213,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:52.386547942Z", + "timestamp": "2024-01-14T14:38:34.345912959Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401366,7 +398257,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/.well-known/openid-configuration", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:55:56.223065256Z", + "timestamp": "2024-01-14T14:38:37.916692338Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/.well-known/openid-configuration'", "matcher-status": true }, @@ -401394,7 +398285,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/robots.txt", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:56:02.449602382Z", + "timestamp": "2024-01-14T14:38:46.175336273Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/robots.txt'", "matcher-status": true }, @@ -401422,7 +398313,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/.well-known/openid-configuration", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:56:14.431526342Z", + "timestamp": "2024-01-14T14:39:00.321184501Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/.well-known/openid-configuration'", "matcher-status": true }, @@ -401462,7 +398353,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:56:15.581765423Z", + "timestamp": "2024-01-14T14:39:01.839056355Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: my.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401502,7 +398393,7 @@ "host": "https://my.fabnum.fr/", "matched-at": "https://my.fabnum.fr/", "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:56:15.581804005Z", + "timestamp": "2024-01-14T14:39:01.839112657Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: my.fabnum.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://my.fabnum.fr/'", "matcher-status": true }, @@ -401552,7 +398443,7 @@ "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11" ], "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:56:58.523754538Z", + "timestamp": "2024-01-14T14:39:53.479792005Z", "matcher-status": true }, { @@ -401582,7 +398473,7 @@ "Let's Encrypt" ], "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:57:41.991157162Z", + "timestamp": "2024-01-14T14:40:45.03319084Z", "matcher-status": true }, { @@ -401612,7 +398503,7 @@ "my.fabnum.fr" ], "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:57:41.991282155Z", + "timestamp": "2024-01-14T14:40:45.033297299Z", "matcher-status": true }, { @@ -401643,7 +398534,7 @@ "tls12" ], "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:57:47.011868288Z", + "timestamp": "2024-01-14T14:40:46.679386156Z", "matcher-status": true }, { @@ -401674,7 +398565,7 @@ "tls13" ], "ip": "51.255.78.174", - "timestamp": "2024-01-07T14:57:47.224218597Z", + "timestamp": "2024-01-14T14:40:46.901033783Z", "matcher-status": true } ], @@ -401885,7 +398776,7 @@ "http": { "url": "https://inclusion.beta.gouv.fr/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 15:09:30 GMT", + "end_time": "Sun, 14 Jan 2024 14:48:32 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -401894,17 +398785,17 @@ "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 15:09:28 GMT", + "Date": "Sun, 14 Jan 2024 14:48:31 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "fac9c04f-b47b-4214-a70e-c09efff85724" + "X-Request-ID": "f05a44a6-cae1-440d-85e5-deb37eb4dc1d" }, - "scan_id": 46235153, + "scan_id": 46479936, "score": 65, - "start_time": "Sun, 07 Jan 2024 15:09:24 GMT", + "start_time": "Sun, 14 Jan 2024 14:48:27 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -402090,8 +398981,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T15:09:17Z", - "next_check_at": "2024-01-07T16:08:52Z", + "last_check_at": "2024-01-14T14:14:47Z", + "next_check_at": "2024-01-14T15:14:39Z", "created_at": "2021-04-22T21:34:01Z", "mute_until": "forever", "favicon_url": "https://inclusion.beta.gouv.fr/static/images/favicon.ico", @@ -402099,7 +398990,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T15:09:17Z", + "tested_at": "2024-01-14T06:18:38Z", "expires_at": "2024-03-16T07:46:09Z", "valid": true, "error": null @@ -402479,7 +399370,7 @@ "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "68 >= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", @@ -402682,7 +399573,7 @@ "ip": "inclusion.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704640258" + "finding": "1705243804" }, { "id": "HSTS_time", @@ -403256,77 +400147,77 @@ }, { "id": "service", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -403334,7 +400225,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -403342,7 +400233,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -403350,7 +400241,7 @@ }, { "id": "cipherlist_LOW", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -403358,7 +400249,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -403366,7 +400257,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -403374,511 +400265,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-17 07:46" }, { "id": "cert_notAfter", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-16 07:46" }, { "id": "cert_extlifeSpan", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704640313" + "finding": "1705243860" }, { "id": "HSTS_time", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -403886,7 +400777,7 @@ }, { "id": "heartbleed", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -403895,7 +400786,7 @@ }, { "id": "CCS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -403904,7 +400795,7 @@ }, { "id": "ticketbleed", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -403913,7 +400804,7 @@ }, { "id": "ROBOT", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -403922,7 +400813,7 @@ }, { "id": "secure_renego", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -403930,7 +400821,7 @@ }, { "id": "secure_client_renego", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -403939,7 +400830,7 @@ }, { "id": "CRIME_TLS", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -403948,7 +400839,7 @@ }, { "id": "BREACH", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -403957,7 +400848,7 @@ }, { "id": "POODLE_SSL", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -403966,14 +400857,14 @@ }, { "id": "fallback_SCSV", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -403982,7 +400873,7 @@ }, { "id": "FREAK", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -403991,7 +400882,7 @@ }, { "id": "DROWN", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -404000,7 +400891,7 @@ }, { "id": "DROWN_hint", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -404009,7 +400900,7 @@ }, { "id": "LOGJAM", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -404018,7 +400909,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -404027,7 +400918,7 @@ }, { "id": "BEAST", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -404036,7 +400927,7 @@ }, { "id": "LUCKY13", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -404045,7 +400936,7 @@ }, { "id": "winshock", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -404054,7 +400945,7 @@ }, { "id": "RC4", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -404063,392 +400954,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "inclusion.beta.gouv.fr/80.247.13.145", + "ip": "inclusion.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -404456,7 +401347,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -404464,7 +401355,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -404472,7 +401363,7 @@ }, { "id": "cipherlist_LOW", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -404480,7 +401371,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -404488,7 +401379,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -404496,511 +401387,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-17 07:46" }, { "id": "cert_notAfter", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-16 07:46" }, { "id": "cert_extlifeSpan", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704640367" + "finding": "1705243914" }, { "id": "HSTS_time", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -405008,7 +401899,7 @@ }, { "id": "heartbleed", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -405017,7 +401908,7 @@ }, { "id": "CCS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -405026,7 +401917,7 @@ }, { "id": "ticketbleed", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -405035,7 +401926,7 @@ }, { "id": "ROBOT", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -405044,7 +401935,7 @@ }, { "id": "secure_renego", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -405052,7 +401943,7 @@ }, { "id": "secure_client_renego", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -405061,7 +401952,7 @@ }, { "id": "CRIME_TLS", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -405070,7 +401961,7 @@ }, { "id": "BREACH", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -405079,7 +401970,7 @@ }, { "id": "POODLE_SSL", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -405088,14 +401979,14 @@ }, { "id": "fallback_SCSV", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -405104,7 +401995,7 @@ }, { "id": "FREAK", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -405113,7 +402004,7 @@ }, { "id": "DROWN", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -405122,7 +402013,7 @@ }, { "id": "DROWN_hint", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -405131,7 +402022,7 @@ }, { "id": "LOGJAM", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -405140,7 +402031,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -405149,7 +402040,7 @@ }, { "id": "BEAST", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -405158,7 +402049,7 @@ }, { "id": "LUCKY13", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -405167,7 +402058,7 @@ }, { "id": "winshock", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -405176,7 +402067,7 @@ }, { "id": "RC4", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -405185,392 +402076,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "inclusion.beta.gouv.fr/148.253.96.193", + "ip": "inclusion.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -405578,7 +402469,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -405586,7 +402477,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -405594,7 +402485,7 @@ }, { "id": "cipherlist_LOW", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -405602,7 +402493,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -405610,7 +402501,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -405618,511 +402509,511 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-17 07:46" }, { "id": "cert_notAfter", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-16 07:46" }, { "id": "cert_extlifeSpan", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704640421" + "finding": "1705243971" }, { "id": "HSTS_time", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Referrer-Policy", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -406130,7 +403021,7 @@ }, { "id": "heartbleed", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -406139,7 +403030,7 @@ }, { "id": "CCS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -406148,7 +403039,7 @@ }, { "id": "ticketbleed", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -406157,7 +403048,7 @@ }, { "id": "ROBOT", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -406166,7 +403057,7 @@ }, { "id": "secure_renego", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -406174,7 +403065,7 @@ }, { "id": "secure_client_renego", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -406183,7 +403074,7 @@ }, { "id": "CRIME_TLS", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -406192,7 +403083,7 @@ }, { "id": "BREACH", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -406201,7 +403092,7 @@ }, { "id": "POODLE_SSL", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -406210,14 +403101,14 @@ }, { "id": "fallback_SCSV", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -406226,7 +403117,7 @@ }, { "id": "FREAK", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -406235,7 +403126,7 @@ }, { "id": "DROWN", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -406244,7 +403135,7 @@ }, { "id": "DROWN_hint", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -406253,7 +403144,7 @@ }, { "id": "LOGJAM", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -406262,7 +403153,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -406271,7 +403162,7 @@ }, { "id": "BEAST", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -406280,7 +403171,7 @@ }, { "id": "LUCKY13", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -406289,7 +403180,7 @@ }, { "id": "winshock", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -406298,7 +403189,7 @@ }, { "id": "RC4", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -406307,412 +403198,412 @@ }, { "id": "clientsimulation-android_60", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "inclusion.beta.gouv.fr/185.21.194.105", + "ip": "inclusion.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "221" + "finding": "225" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/cdb.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=kQZYVN7j%2FLH2%2FLfnPQaqZGeoZ80%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/cdb.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=uI3t%2BSyBaS9xcLKe3wdd5Eq3WX4%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Communaute.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=Rg27DR5oF7S2txI%2B5%2BBFRVetTB8%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Communaute.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=PLBbn%2ByeGaG3uoAFLf8ZyAx6cys%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/DataInclusion-Monogramme-Couleur.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=hTf5waHTkaQXsMxbAUZJLaAk5u0%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/DataInclusion-Monogramme-Couleur.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=2RwrCrgXGgmqj6tAgPGFhotx0vk%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/DORA.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=NVUQaq1fs%2FISUy%2BAgGlhl3n76%2Fg%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/DORA.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=3ZhVhjdUP47hBHFDKHwTPTTaRBc%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Emplois.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=U5FfAw6%2FMWVgU%2BdbaT7QbY6TKJA%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Emplois.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=g9EFoo2cOTvfqPRHgXI%2F6Uqh7SE%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/IF.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=qICTw4wmFF%2BwlaaQ8yV9NPhNFgA%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/IF.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=oYSCFpsjZBmB6dwiEPWDLb36mEI%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/IC.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=eIqH8ylcrclyOSZsCOtJN82xyqg%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/IC.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=yf19Z6QdSGGkP6c4LhWSvadnMbE%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Marche.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=oN%2BUJHZxgZ1H21jRjYBtaNXsA4s%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Marche.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=R3BRFHGqSjwm29LtI3w8ju5MlFg%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Monrecap_Monogramme.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=3ugkAZLeT%2BWFHlsg%2BJivqZ1uEFI%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Monrecap_Monogramme.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=mDG2%2F68DcBQOF3V6lIJ24YE10ME%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Pilotage.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=GF%2BAKYwlT%2Fhz5cOblkQhK%2FqHSR0%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Pilotage.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=tbMVOR1rgohPB7TTnYbxKQjQtLA%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/rdv-insertion.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=sTdHNaHMGQOCbseN5KuC1dHGRkI%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/rdv-insertion.2e16d0ba.fill-20x20.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=dOQzXCijFVdsoEyJH7NqRRngofA%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_1.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=IJ7yrwV7m7uxPful2PKX0YP%2F08s%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_1.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=clfVkfUI5o9yik9zEn2A%2BTkO%2BfQ%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_2.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=MVfhsOeapxsYCPS%2F%2BfacNGRk2P4%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_2.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=Tu%2B1tuFtN1CnB3wg9NJCi04Htxc%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_3.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=YXn7m2%2BtxF1S1ehCMX7%2FTzxWOT4%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Illu_Accueil_3.optimized.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=cREPukn3czOGl830I826ndWZlHk%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Accompagnement3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=smbBPEqNOkHGw2g1iAf9LSyYyD0%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Accompagnement3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=ws8M0wOnG6QZQmsb6bKiz3F7Ez4%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Connaissances3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=hiR6LQiqkGu7vE4zD2VZtVGBL%2FI%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Connaissances3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=eKv6IIYkI%2F5jA1K1HIsNl%2FDJkY8%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Experiences3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=dFjea5sFzBDTk8a5%2FRXfnyo5Vek%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Experiences3.width-500.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=cBZAzNzY76wXd7cv1tvQlfppKb0%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Fabienne_BOUCHET.original.jpg?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=uL730Yc8nKBHD4t4JjjNbVdekRM%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Fabienne_BOUCHET.original.jpg?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=CRNQLTLyqu0f94ZYkrc0z0pEUcU%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/1604521246630.original.jpg?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=ix7WnAEu%2Bn57DQwMmfueUkey%2FPA%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/1604521246630.original.jpg?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=WXszcDybpJA8JhiZcHnwSgP8ZmI%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/fond_faciliter_2.optim.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=SpYwBQcmLxuDZK030y3JEO1NeBA%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/fond_faciliter_2.optim.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=VHou2%2FsZkkOs82%2B3rjS2Vh1vzYw%3D&Expires=1705247343" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Ressources3.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=NLTs6HEw2d3jaIO0MoPRC%2FHezcU%3D&Expires=1704643799" + "url": "https://cellar-c2.services.clever-cloud.com/django-storage-prod/images/Ressources3.original.png?AWSAccessKeyId=NQWGG3NMN5C82RKV1QD6&Signature=DeYLgoC4A%2FjpUvDPVo5%2BN5FJzEo%3D&Expires=1705247343" } ], "cookies": [ @@ -406721,7 +403612,7 @@ "value": "1", "domain": "inclusion.beta.gouv.fr", "path": "/", - "expires": 1704642000, + "expires": 1705245545, "size": 17, "httpOnly": false, "secure": false, @@ -406733,10 +403624,10 @@ }, { "name": "_pk_id.212.85a9", - "value": "275e56f146b6344b.1704640200.", + "value": "8cb5da74415f706b.1705243745.", "domain": "inclusion.beta.gouv.fr", "path": "/", - "expires": 1738595400, + "expires": 1739198945, "size": 43, "httpOnly": false, "secure": false, @@ -406751,17 +403642,17 @@ "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 15:09:59 GMT", + "date": "Sun, 14 Jan 2024 14:49:04 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "14d38909-0656-4a52-9b3c-66f7b51f20fc" + "x-request-id": "ec2ed674-16b7-42f2-8dd2-1bf1205e629f" }, "endpoints": [ { "hostname": "inclusion.beta.gouv.fr", - "ip": "148.253.96.193", + "ip": "80.247.13.145", "geoip": { "continent": { "code": "EU", @@ -406817,7 +403708,7 @@ }, { "hostname": "cellar-c2.services.clever-cloud.com", - "ip": "91.208.207.148", + "ip": "91.208.207.147", "geoip": { "continent": { "code": "EU", @@ -407055,7 +403946,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 15:08:59", + "@generated": "Sun, 14 Jan 2024 14:48:02", "site": [ { "@name": "https://inclusion.beta.gouv.fr", @@ -407163,7 +404054,7 @@ { "requestedUrl": "https://inclusion.beta.gouv.fr/", "finalUrl": "https://inclusion.beta.gouv.fr/", - "fetchTime": "2024-01-07T15:09:13.697Z", + "fetchTime": "2024-01-14T14:48:16.368Z", "runWarnings": [], "categories": { "performance": { @@ -407174,7 +404065,7 @@ "snapshot" ], "id": "performance", - "score": 0.5615091323852539 + "score": 0.5614953994750976 }, "accessibility": { "title": "Accessibility", @@ -407226,53 +404117,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1912, + "numericValue": 1520, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1912, - "firstMeaningfulPaint": 1912, - "largestContentfulPaint": 7312, - "interactive": 1912, - "speedIndex": 1912, + "firstContentfulPaint": 1520, + "firstMeaningfulPaint": 1520, + "largestContentfulPaint": 7132, + "interactive": 1520, + "speedIndex": 1595, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.0035367838541666666, "cumulativeLayoutShiftMainFrame": 0.0035367838541666666, "totalCumulativeLayoutShift": 0.0035367838541666666, "observedTimeOrigin": 0, - "observedTimeOriginTs": 235470041, + "observedTimeOriginTs": 217173343, "observedNavigationStart": 0, - "observedNavigationStartTs": 235470041, - "observedFirstPaint": 318, - "observedFirstPaintTs": 235788387, - "observedFirstContentfulPaint": 318, - "observedFirstContentfulPaintTs": 235788387, - "observedFirstContentfulPaintAllFrames": 318, - "observedFirstContentfulPaintAllFramesTs": 235788387, - "observedFirstMeaningfulPaint": 318, - "observedFirstMeaningfulPaintTs": 235788387, - "observedLargestContentfulPaint": 849, - "observedLargestContentfulPaintTs": 236318994, - "observedLargestContentfulPaintAllFrames": 849, - "observedLargestContentfulPaintAllFramesTs": 236318994, - "observedTraceEnd": 3396, - "observedTraceEndTs": 238866253, - "observedLoad": 1089, - "observedLoadTs": 236559277, + "observedNavigationStartTs": 217173343, + "observedFirstPaint": 377, + "observedFirstPaintTs": 217550208, + "observedFirstContentfulPaint": 377, + "observedFirstContentfulPaintTs": 217550208, + "observedFirstContentfulPaintAllFrames": 377, + "observedFirstContentfulPaintAllFramesTs": 217550208, + "observedFirstMeaningfulPaint": 377, + "observedFirstMeaningfulPaintTs": 217550208, + "observedLargestContentfulPaint": 848, + "observedLargestContentfulPaintTs": 218021003, + "observedLargestContentfulPaintAllFrames": 848, + "observedLargestContentfulPaintAllFramesTs": 218021003, + "observedTraceEnd": 3312, + "observedTraceEndTs": 220485572, + "observedLoad": 1004, + "observedLoadTs": 218176891, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 235470576, + "observedDomContentLoadedTs": 217174027, "observedCumulativeLayoutShift": 0.0035367838541666666, "observedCumulativeLayoutShiftMainFrame": 0.0035367838541666666, "observedTotalCumulativeLayoutShift": 0.0035367838541666666, - "observedFirstVisualChange": 320, - "observedFirstVisualChangeTs": 235790041, - "observedLastVisualChange": 853, - "observedLastVisualChangeTs": 236323041, - "observedSpeedIndex": 593, - "observedSpeedIndexTs": 236062557 + "observedFirstVisualChange": 367, + "observedFirstVisualChangeTs": 217540343, + "observedLastVisualChange": 851, + "observedLastVisualChangeTs": 218024343, + "observedSpeedIndex": 612, + "observedSpeedIndexTs": 217785288 }, { "lcpInvalidated": false @@ -407294,19 +404185,19 @@ "numScripts": 3, "numStylesheets": 4, "numFonts": 4, - "numTasks": 14, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.159, - "throughput": 16402372.551604206, - "maxRtt": 83.65, - "maxServerLatency": 84.80599999999998, - "totalByteWeight": 1774667, - "totalTaskTime": 3.966, - "mainDocumentTransferSize": 8890 + "rtt": 80.98100000000001, + "throughput": 18620383.400238816, + "maxRtt": 83.256, + "maxServerLatency": 13.74499999999999, + "totalByteWeight": 1774739, + "totalTaskTime": 3.4899999999999993, + "mainDocumentTransferSize": 8914 } ] } @@ -407417,7 +404308,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 21, - "lighthouse_performance": 0.5615091323852539, + "lighthouse_performance": 0.5614953994750976, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -407454,7 +404345,7 @@ "http": { "url": "https://dora.incubateur.net", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 15:21:12 GMT", + "end_time": "Sun, 14 Jan 2024 14:52:55 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -407462,12 +404353,12 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 15:21:10 GMT", + "Date": "Sun, 14 Jan 2024 14:52:54 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "3fe7b181-0ad4-49d9-9822-3a94e5faa97b", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-p+UlTcWX91D8Q+SyfUexhg=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", - "etag": "W/\"aif5a1\"", + "X-Request-ID": "4b6d7215-465a-4971-9921-1434c0d6d22f", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-9m6DaXK2Au/gawdQrWInMQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "etag": "W/\"14j4tmm\"", "link": "<./_app/immutable/assets/0.8b75e5ae.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.6dad8b14.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.c6c507b3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.4f938122.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.7f063a91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.66fe70f1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.0c3f3a58.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.89a88910.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.a51ce70c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.8734b399.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.103983c6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.fb3715ad.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.35d6e639.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.26660c89.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.d67cc691.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.cbf315ce.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.cd683c54.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.3ac6da80.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.751ee3d9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.53b27523.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.abab1a25.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.b6c7f5bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.9227e643.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.38ebe33b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.d3c6d4e6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.4d1b6635.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.7b2b3194.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.2d98d296.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.842897cc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.c4b0cb65.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.376dca72.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.f1180a1c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.cf2c17bd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.60ec9d95.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", "referrer-policy": "strict-origin", "x-content-type-options": "nosniff", @@ -407476,9 +404367,9 @@ "x-sveltekit-page": "true", "x-xss-protection": "1; mode=block" }, - "scan_id": 46235279, + "scan_id": 46480259, "score": 100, - "start_time": "Sun, 07 Jan 2024 15:21:05 GMT", + "start_time": "Sun, 14 Jan 2024 14:52:51 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -407496,20 +404387,20 @@ "child-src": [ "https://plausible.io", "https://aide.dora.inclusion.beta.gouv.fr/", - "https://metabase.dora.inclusion.beta.gouv.fr", - "https://tally.so" + "https://tally.so", + "https://metabase.dora.inclusion.beta.gouv.fr" ], "connect-src": [ - "https://*.sentry.gip-inclusion.cloud-ed.fr", - "https://api.dora.incubateur.net", - "https://sentry.gip-inclusion.cloud-ed.fr", - "https://api-adresse.data.gouv.fr/", - "https://plausible.io/api/event", "https://sentry.gip-inclusion.org", - "'self'", - "https://matomo.inclusion.beta.gouv.fr", "https://openmaptiles.github.io/osm-bright-gl-style/", + "https://api-adresse.data.gouv.fr/", + "'self'", + "https://plausible.io/api/event", "https://openmaptiles.geo.data.gouv.fr/", + "https://sentry.gip-inclusion.cloud-ed.fr", + "https://matomo.inclusion.beta.gouv.fr", + "https://api.dora.incubateur.net", + "https://*.sentry.gip-inclusion.cloud-ed.fr", "https://*.sentry.gip-inclusion.org" ], "default-src": [ @@ -407519,12 +404410,12 @@ "'self'" ], "img-src": [ - "data:", - "'self'" + "'self'", + "data:" ], "script-src": [ - "'nonce-p+ultcwx91d8q+syfuexhg=='", - "'strict-dynamic'" + "'strict-dynamic'", + "'nonce-9m6daxk2au/gawdqrwinmq=='" ], "style-src": [ "https://tally.so/widgets/embed.js", @@ -407532,8 +404423,8 @@ "'unsafe-inline'" ], "worker-src": [ - "blob:", - "'self'" + "'self'", + "blob:" ] }, "http": true, @@ -407735,77 +404626,77 @@ "testssl": [ { "id": "service", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -407813,7 +404704,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -407821,7 +404712,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -407829,7 +404720,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -407837,7 +404728,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -407845,7 +404736,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -407853,525 +404744,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-30 09:00" }, { "id": "cert_notAfter", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-29 09:00" }, { "id": "cert_extlifeSpan", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704640999" + "finding": "1705244101" }, { "id": "HSTS_time", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-Zhwk4PhcVXP0aKQMuqgB6Q=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-xLcCmBYzcREJPJsyW6sewQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" }, { "id": "X-XSS-Protection", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -408379,7 +405270,7 @@ }, { "id": "heartbleed", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -408388,7 +405279,7 @@ }, { "id": "CCS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -408397,7 +405288,7 @@ }, { "id": "ticketbleed", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -408406,7 +405297,7 @@ }, { "id": "ROBOT", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -408415,7 +405306,7 @@ }, { "id": "secure_renego", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -408423,7 +405314,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -408432,7 +405323,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -408441,7 +405332,7 @@ }, { "id": "BREACH", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -408450,7 +405341,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -408459,14 +405350,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -408475,7 +405366,7 @@ }, { "id": "FREAK", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -408484,7 +405375,7 @@ }, { "id": "DROWN", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -408493,7 +405384,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -408502,7 +405393,7 @@ }, { "id": "LOGJAM", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -408511,7 +405402,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -408520,7 +405411,7 @@ }, { "id": "BEAST", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -408529,7 +405420,7 @@ }, { "id": "LUCKY13", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -408538,7 +405429,7 @@ }, { "id": "winshock", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -408547,7 +405438,7 @@ }, { "id": "RC4", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -408556,392 +405447,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.incubateur.net/80.247.13.145", + "ip": "dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408949,7 +405840,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408957,7 +405848,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408965,7 +405856,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -408973,7 +405864,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -408981,7 +405872,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -408989,525 +405880,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-30 09:00" }, { "id": "cert_notAfter", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-29 09:00" }, { "id": "cert_extlifeSpan", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704641099" + "finding": "1705244197" }, { "id": "HSTS_time", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-xb24YUT03l9Ey2CLkbNYnQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-hPKt+1AYeDuI4sYKeaVl+w=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" }, { "id": "X-XSS-Protection", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin" }, { "id": "banner_reverseproxy", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -409515,7 +406406,7 @@ }, { "id": "heartbleed", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -409524,7 +406415,7 @@ }, { "id": "CCS", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -409533,7 +406424,7 @@ }, { "id": "ticketbleed", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -409542,7 +406433,7 @@ }, { "id": "ROBOT", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -409551,7 +406442,7 @@ }, { "id": "secure_renego", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -409559,7 +406450,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -409568,7 +406459,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -409577,7 +406468,7 @@ }, { "id": "BREACH", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -409586,7 +406477,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -409595,14 +406486,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -409611,7 +406502,7 @@ }, { "id": "FREAK", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -409620,7 +406511,7 @@ }, { "id": "DROWN", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -409629,7 +406520,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -409638,7 +406529,7 @@ }, { "id": "LOGJAM", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -409647,7 +406538,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -409656,7 +406547,7 @@ }, { "id": "BEAST", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -409665,7 +406556,7 @@ }, { "id": "LUCKY13", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -409674,7 +406565,7 @@ }, { "id": "winshock", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -409683,7 +406574,7 @@ }, { "id": "RC4", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -409692,315 +406583,1451 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.incubateur.net/80.247.12.255", + "ip": "dora.incubateur.net/185.21.194.105", + "port": "443", + "severity": "OK", + "finding": "A+" + }, + { + "id": "service", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2023-12-30 09:00" + }, + { + "id": "cert_notAfter", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2024-03-29 09:00" + }, + { + "id": "cert_extlifeSpan", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-1 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1705244293" + }, + { + "id": "HSTS_time", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "X-Frame-Options", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-lqNBGuxVkkdgs3cWsOLo3Q=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + }, + { + "id": "X-XSS-Protection", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1; mode=block" + }, + { + "id": "Referrer-Policy", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "strict-origin" + }, + { + "id": "banner_reverseproxy", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1E6114A9B3F78EFE212438ADC6A45E2CFD82C209B05699DD565B2EB61807716A" + }, + { + "id": "LOGJAM", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "dora.incubateur.net/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" @@ -410352,7 +408379,7 @@ "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", - "finding": "81 >= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", @@ -410548,14 +408575,14 @@ "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704641200" + "finding": "1705244390" }, { "id": "HSTS_time", @@ -410625,7 +408652,7 @@ "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-qk9hYC/b5ufnyS/Ypz+olg=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" + "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-a+TwV+vPWQwHuzJn/jafDA=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" }, { "id": "X-XSS-Protection", @@ -411141,1148 +409168,12 @@ "severity": "OK", "finding": "A+" }, - { - "id": "service", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "2023-12-30 09:00" - }, - { - "id": "cert_notAfter", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "2024-03-29 09:00" - }, - { - "id": "cert_extlifeSpan", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "-1 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "1704641299" - }, - { - "id": "HSTS_time", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-xO594bmjPAuZuFqMOB+9Vg=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'" - }, - { - "id": "X-XSS-Protection", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "1; mode=block" - }, - { - "id": "Referrer-Policy", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "strict-origin" - }, - { - "id": "banner_reverseproxy", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=1E6114A9B3F78EFE212438ADC6A45E2CFD82C209B05699DD565B2EB61807716A" - }, - { - "id": "LOGJAM", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "dora.incubateur.net/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "A+" - }, { "id": "scanTime", - "ip": "dora.incubateur.net/185.21.194.105", + "ip": "dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "405" + "finding": "392" } ], "thirdparties": { @@ -412302,7 +409193,7 @@ "value": "1", "domain": "dora.incubateur.net", "path": "/", - "expires": 1704642701, + "expires": 1705245808, "size": 17, "httpOnly": false, "secure": false, @@ -412314,10 +409205,10 @@ }, { "name": "_pk_id.210.783f", - "value": "bc42a8503a1846d5.1704640902.", + "value": "6ed50ae7c832e44b.1705244008.", "domain": "dora.incubateur.net", "path": "/", - "expires": 1738596102, + "expires": 1739199208, "size": 43, "httpOnly": false, "secure": false, @@ -412330,16 +409221,16 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-+pP0rP4cwcLL2Snwli4gJw=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.incubateur.net https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-Lt8DTOYuc7NgYe/Je7rCOA=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 15:21:41 GMT", - "etag": "W/\"1y7olto\"", + "date": "Sun, 14 Jan 2024 14:53:27 GMT", + "etag": "W/\"1nk08k\"", "link": "<./_app/immutable/assets/0.8b75e5ae.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.6dad8b14.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.c6c507b3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.4f938122.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.7f063a91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.66fe70f1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.0c3f3a58.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.89a88910.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.a51ce70c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.8734b399.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.103983c6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.fb3715ad.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.35d6e639.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.26660c89.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.d67cc691.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.cbf315ce.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.cd683c54.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.3ac6da80.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.751ee3d9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.53b27523.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.abab1a25.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.b6c7f5bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.9227e643.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.38ebe33b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.d3c6d4e6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.4d1b6635.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.7b2b3194.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.2d98d296.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.842897cc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.c4b0cb65.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.376dca72.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.f1180a1c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.cf2c17bd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.60ec9d95.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "e68bca8c-6fc3-4bff-a1ae-17d81cf73d28", + "x-request-id": "b5a1317c-ba29-4dc8-b73d-5dec2265a114", "x-robots-tag": "noindex", "x-sveltekit-page": "true", "x-xss-protection": "1; mode=block" @@ -412347,7 +409238,7 @@ "endpoints": [ { "hostname": "dora.incubateur.net", - "ip": "148.253.96.193", + "ip": "80.247.13.145", "geoip": { "continent": { "code": "EU", @@ -412403,18 +409294,19 @@ }, { "hostname": "plausible.io", - "ip": "169.150.221.147", + "ip": "143.244.50.83", "geoip": { "city": { - "geoname_id": 5392171, + "geoname_id": 5368361, "names": { - "de": "San José", - "en": "San Jose", - "es": "San José", - "fr": "San José", - "ja": "サンノゼ", - "pt-BR": "San José", - "ru": "Сан-Хосе" + "de": "Los Angeles", + "en": "Los Angeles", + "es": "Los Ángeles", + "fr": "Los Angeles", + "ja": "ロサンゼルス", + "pt-BR": "Los Angeles", + "ru": "Лос-Анджелес", + "zh-CN": "洛杉矶" } }, "continent": { @@ -412435,7 +409327,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -412447,22 +409339,22 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.1835, - "longitude": -121.7714, - "metro_code": 807, + "latitude": 34.0544, + "longitude": -118.2441, + "metro_code": 803, "time_zone": "America/Los_Angeles" }, "postal": { - "code": "95141" + "code": "90060" }, "registered_country": { "geoname_id": 2635167, "iso_code": "GB", "names": { - "de": "Vereinigtes Königreich", + "de": "UK", "en": "United Kingdom", "es": "Reino Unido", - "fr": "Royaume Uni", + "fr": "Royaume-Uni", "ja": "英国", "pt-BR": "Reino Unido", "ru": "Британия", @@ -412543,7 +409435,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -412787,7 +409679,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 15:20:37", + "@generated": "Sun, 14 Jan 2024 14:52:22", "site": [ { "@name": "https://dora.incubateur.net", @@ -412970,26 +409862,26 @@ "extracted-results": [ "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T15:30:10.878093959Z", + "timestamp": "2024-01-14T15:01:39.651672584Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -413005,28 +409897,28 @@ "type": "dns", "host": "dora.incubateur.net.", "matched-at": "dora.incubateur.net", - "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"", - "\"google-site-verification=pzLwiBmOclJJjykziVUJGBTmjDxe9cX4AXPyXnevrig\"" - ], - "timestamp": "2024-01-07T15:30:11.026552024Z", + "timestamp": "2024-01-14T15:01:39.854032515Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -413042,30 +409934,27 @@ "host": "dora.incubateur.net.", "matched-at": "dora.incubateur.net", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2024-01-07T15:30:11.031006598Z", + "timestamp": "2024-01-14T15:01:39.916881178Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -413080,27 +409969,30 @@ "type": "dns", "host": "dora.incubateur.net.", "matched-at": "dora.incubateur.net", - "timestamp": "2024-01-07T15:30:11.155312284Z", + "extracted-results": [ + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." + ], + "timestamp": "2024-01-14T15:01:40.484128592Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -413117,10 +410009,10 @@ "host": "dora.incubateur.net.", "matched-at": "dora.incubateur.net", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "\"v=spf1 include:_spf.alwaysdata.com ~all\"", + "\"google-site-verification=pzLwiBmOclJJjykziVUJGBTmjDxe9cX4AXPyXnevrig\"" ], - "timestamp": "2024-01-07T15:30:11.866742063Z", + "timestamp": "2024-01-14T15:01:40.491030757Z", "matcher-status": true }, { @@ -413148,8 +410040,8 @@ "extracted-results": [ "GET, HEAD, OPTIONS" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:30:22.414096934Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:01:52.196334486Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413189,8 +410081,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:30:30.865343635Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:02:02.116210449Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413216,8 +410108,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:31:11.299853009Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:02:40.774402184Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413249,12 +410141,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:31:25.264154942Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:02:53.778117527Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413286,12 +410178,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:31:25.264209114Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:02:53.778168532Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413323,12 +410215,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:31:25.264220084Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:02:53.778185594Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413360,12 +410252,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:31:25.264228931Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:02:53.77819929Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413397,12 +410289,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:31:25.264244741Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:02:53.778213006Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413434,12 +410326,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:31:25.264258146Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:02:53.778279636Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net'", "matcher-status": true }, @@ -413466,8 +410358,8 @@ "type": "http", "host": "https://dora.incubateur.net", "matched-at": "https://dora.incubateur.net/robots.txt", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:31:41.742513038Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:03:08.800377556Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net/robots.txt'", "matcher-status": true }, @@ -413503,8 +410395,8 @@ "extracted-results": [ "https://plausible.io/js/plausible.js" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:31:54.803482963Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:03:19.776369745Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: dora.incubateur.net' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.incubateur.net/'", "matcher-status": true }, @@ -413534,8 +410426,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:37:59.816737766Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:09:24.565526493Z", "matcher-status": true }, { @@ -413564,8 +410456,8 @@ "extracted-results": [ "dora.incubateur.net" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:37:59.816872589Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:09:24.565633272Z", "matcher-status": true }, { @@ -413595,8 +410487,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:38:02.311118304Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:09:26.679346581Z", "matcher-status": true }, { @@ -413626,8 +410518,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:38:02.619942778Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:09:27.010790828Z", "matcher-status": true } ], @@ -413635,7 +410527,7 @@ { "requestedUrl": "https://dora.incubateur.net/", "finalUrl": "https://dora.incubateur.net/", - "fetchTime": "2024-01-07T15:20:51.852Z", + "fetchTime": "2024-01-14T14:52:36.255Z", "runWarnings": [], "categories": { "performance": { @@ -413698,53 +410590,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4169, + "numericValue": 4032, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2631, - "firstMeaningfulPaint": 2631, - "largestContentfulPaint": 2631, - "interactive": 4169, - "speedIndex": 3505, - "totalBlockingTime": 486, - "maxPotentialFID": 508, + "firstContentfulPaint": 2851, + "firstMeaningfulPaint": 2851, + "largestContentfulPaint": 2851, + "interactive": 4032, + "speedIndex": 3726, + "totalBlockingTime": 158, + "maxPotentialFID": 145, "cumulativeLayoutShift": 0.017020824856228304, "cumulativeLayoutShiftMainFrame": 0.017020824856228304, "totalCumulativeLayoutShift": 0.017020824856228304, "observedTimeOrigin": 0, - "observedTimeOriginTs": 255294509, + "observedTimeOriginTs": 275289770, "observedNavigationStart": 0, - "observedNavigationStartTs": 255294509, - "observedFirstPaint": 986, - "observedFirstPaintTs": 256280948, - "observedFirstContentfulPaint": 986, - "observedFirstContentfulPaintTs": 256280948, - "observedFirstContentfulPaintAllFrames": 986, - "observedFirstContentfulPaintAllFramesTs": 256280948, - "observedFirstMeaningfulPaint": 986, - "observedFirstMeaningfulPaintTs": 256280948, - "observedLargestContentfulPaint": 986, - "observedLargestContentfulPaintTs": 256280948, - "observedLargestContentfulPaintAllFrames": 986, - "observedLargestContentfulPaintAllFramesTs": 256280948, - "observedTraceEnd": 4745, - "observedTraceEndTs": 260039254, - "observedLoad": 1596, - "observedLoadTs": 256890395, - "observedDomContentLoaded": 963, - "observedDomContentLoadedTs": 256257629, + "observedNavigationStartTs": 275289770, + "observedFirstPaint": 1219, + "observedFirstPaintTs": 276509002, + "observedFirstContentfulPaint": 1219, + "observedFirstContentfulPaintTs": 276509002, + "observedFirstContentfulPaintAllFrames": 1219, + "observedFirstContentfulPaintAllFramesTs": 276509002, + "observedFirstMeaningfulPaint": 1219, + "observedFirstMeaningfulPaintTs": 276509002, + "observedLargestContentfulPaint": 1219, + "observedLargestContentfulPaintTs": 276509002, + "observedLargestContentfulPaintAllFrames": 1219, + "observedLargestContentfulPaintAllFramesTs": 276509002, + "observedTraceEnd": 6343, + "observedTraceEndTs": 281632722, + "observedLoad": 2170, + "observedLoadTs": 277459766, + "observedDomContentLoaded": 1218, + "observedDomContentLoadedTs": 276507858, "observedCumulativeLayoutShift": 0.017020824856228304, "observedCumulativeLayoutShiftMainFrame": 0.017020824856228304, "observedTotalCumulativeLayoutShift": 0.017020824856228304, - "observedFirstVisualChange": 978, - "observedFirstVisualChangeTs": 256272509, - "observedLastVisualChange": 2345, - "observedLastVisualChangeTs": 257639509, - "observedSpeedIndex": 1043, - "observedSpeedIndexTs": 256337913 + "observedFirstVisualChange": 1215, + "observedFirstVisualChangeTs": 276504770, + "observedLastVisualChange": 2315, + "observedLastVisualChangeTs": 277604770, + "observedSpeedIndex": 1264, + "observedSpeedIndexTs": 276553771 }, { "lcpInvalidated": false @@ -413766,19 +410658,19 @@ "numScripts": 63, "numStylesheets": 7, "numFonts": 2, - "numTasks": 1268, + "numTasks": 1275, "numTasksOver10ms": 7, - "numTasksOver25ms": 3, + "numTasksOver25ms": 2, "numTasksOver50ms": 1, - "numTasksOver100ms": 1, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.6269999999999998, - "throughput": 7462645.925341026, - "maxRtt": 148.899, - "maxServerLatency": 283.644, - "totalByteWeight": 497418, - "totalTaskTime": 511.85899999999884, - "mainDocumentTransferSize": 21353 + "rtt": 8.741999999999999, + "throughput": 6405014.969582206, + "maxRtt": 147.11800000000005, + "maxServerLatency": 429.85, + "totalByteWeight": 501676, + "totalTaskTime": 307.5569999999989, + "mainDocumentTransferSize": 22921 } ] } @@ -413910,7 +410802,7 @@ "http": { "url": "https://dora.fabrique.social.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 15:35:53 GMT", + "end_time": "Sun, 14 Jan 2024 15:14:46 GMT", "grade": "A-", "hidden": false, "likelihood_indicator": "LOW", @@ -413918,22 +410810,22 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 15:35:52 GMT", + "Date": "Sun, 14 Jan 2024 15:14:44 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "471de722-7819-4bf7-a488-52a2b2efac60", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-85ziN2cMcsNn8YTNLYy6OA=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", - "etag": "W/\"8vabwh\"", - "link": "<./_app/immutable/assets/0.c8ccb48e.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.88c131fb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.5344b2b9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.3342b7b4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.cb994c94.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4c8c3712.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.087244ab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.faa4abac.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.00f962c9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.3889828b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.d4c8f938.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.f670d881.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.da4f00df.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.7d488c05.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.3b91b954.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.3df7e13d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.bbec2d47.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.f71cfdc7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.3f128581.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.4e9ae1e8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.62eea12c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.46aa5871.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.8d603b71.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.ad6cea00.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.45f9a33a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.e334c245.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.90adffbc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.ec397739.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.43717e50.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.efae3a52.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.4d0f820a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.7c098f4a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.a8964274.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.cc59272a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", + "X-Request-ID": "a9957e4b-8a41-4aae-9449-f383e4b62c98", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-P5nYhPWeiiuduOofWQFRWg=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "etag": "W/\"n0fj40\"", + "link": "<./_app/immutable/assets/0.8b75e5ae.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.268de203.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.66ff6eb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.a9dc4f42.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.76c8300d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.c80bd42c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.2937e8a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.9df53bfe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.c26e23aa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.2da424ba.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.73061641.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.06b21b35.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.35d6e639.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.26660c89.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.631fd62f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.8a500a24.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.8ada430a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.8eb3d068.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.1c42130e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.1a7d223b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.93eccfe4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.b0a52ced.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.179ff440.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.2ccd769c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.5cf60651.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.990a4e1d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.d491adcb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.98bcb577.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.74d4ac4e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.85742a05.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.6f06ab31.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.b1f2435c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.5a1d8130.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.0c2f5d38.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", "referrer-policy": "strict-origin", "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-sveltekit-page": "true", "x-xss-protection": "1; mode=block" }, - "scan_id": 46235450, + "scan_id": 46482021, "score": 85, - "start_time": "Sun, 07 Jan 2024 15:35:47 GMT", + "start_time": "Sun, 14 Jan 2024 15:14:39 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -413949,23 +410841,23 @@ "'self'" ], "child-src": [ - "https://plausible.io", + "https://tally.so", "https://aide.dora.inclusion.beta.gouv.fr/", "https://metabase.dora.inclusion.beta.gouv.fr", - "https://tally.so" + "https://plausible.io" ], "connect-src": [ - "https://*.sentry.gip-inclusion.cloud-ed.fr", - "https://sentry.gip-inclusion.cloud-ed.fr", "https://api-adresse.data.gouv.fr/", - "https://plausible.io/api/event", - "https://sentry.gip-inclusion.org", - "'self'", "https://api.dora.inclusion.beta.gouv.fr", - "https://matomo.inclusion.beta.gouv.fr", + "https://sentry.gip-inclusion.org", + "https://*.sentry.gip-inclusion.cloud-ed.fr", "https://openmaptiles.github.io/osm-bright-gl-style/", "https://openmaptiles.geo.data.gouv.fr/", - "https://*.sentry.gip-inclusion.org" + "'self'", + "https://matomo.inclusion.beta.gouv.fr", + "https://sentry.gip-inclusion.cloud-ed.fr", + "https://*.sentry.gip-inclusion.org", + "https://plausible.io/api/event" ], "default-src": [ "'none'" @@ -413978,13 +410870,13 @@ "'self'" ], "script-src": [ - "'nonce-85zin2cmcsnn8ytnlyy6oa=='", + "'nonce-p5nyhpweiiuduoofwqfrwg=='", "'strict-dynamic'" ], "style-src": [ "https://tally.so/widgets/embed.js", - "'self'", - "'unsafe-inline'" + "'unsafe-inline'", + "'self'" ], "worker-src": [ "blob:", @@ -414191,77 +411083,77 @@ "testssl": [ { "id": "service", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -414269,7 +411161,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -414277,7 +411169,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -414285,7 +411177,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -414293,7 +411185,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -414301,7 +411193,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -414309,483 +411201,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-30 15:32" }, { "id": "cert_notAfter", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-29 15:32" }, { "id": "cert_extlifeSpan", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704641844" + "finding": "1705245383" }, { "id": "HSTS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -414793,7 +411685,7 @@ }, { "id": "heartbleed", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -414802,7 +411694,7 @@ }, { "id": "CCS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -414811,7 +411703,7 @@ }, { "id": "ticketbleed", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -414820,7 +411712,7 @@ }, { "id": "ROBOT", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -414829,7 +411721,7 @@ }, { "id": "secure_renego", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -414837,7 +411729,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -414846,7 +411738,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -414855,7 +411747,7 @@ }, { "id": "BREACH", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -414864,7 +411756,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -414873,14 +411765,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -414889,7 +411781,7 @@ }, { "id": "FREAK", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -414898,7 +411790,7 @@ }, { "id": "DROWN", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -414907,7 +411799,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -414916,7 +411808,7 @@ }, { "id": "LOGJAM", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -414925,7 +411817,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -414934,7 +411826,7 @@ }, { "id": "BEAST", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -414943,7 +411835,7 @@ }, { "id": "LUCKY13", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -414952,7 +411844,7 @@ }, { "id": "winshock", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -414961,7 +411853,7 @@ }, { "id": "RC4", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -414970,399 +411862,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -415370,7 +412262,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -415378,7 +412270,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -415386,7 +412278,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -415394,7 +412286,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -415402,7 +412294,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -415410,483 +412302,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-30 15:32" }, { "id": "cert_notAfter", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-29 15:32" }, { "id": "cert_extlifeSpan", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704641895" + "finding": "1705245437" }, { "id": "HSTS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -415894,7 +412786,7 @@ }, { "id": "heartbleed", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -415903,7 +412795,7 @@ }, { "id": "CCS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -415912,7 +412804,7 @@ }, { "id": "ticketbleed", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -415921,7 +412813,7 @@ }, { "id": "ROBOT", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -415930,7 +412822,7 @@ }, { "id": "secure_renego", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -415938,7 +412830,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -415947,7 +412839,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -415956,7 +412848,7 @@ }, { "id": "BREACH", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -415965,7 +412857,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -415974,14 +412866,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -415990,7 +412882,7 @@ }, { "id": "FREAK", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -415999,7 +412891,7 @@ }, { "id": "DROWN", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -416008,7 +412900,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -416017,7 +412909,7 @@ }, { "id": "LOGJAM", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -416026,7 +412918,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -416035,7 +412927,7 @@ }, { "id": "BEAST", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -416044,7 +412936,7 @@ }, { "id": "LUCKY13", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -416053,7 +412945,7 @@ }, { "id": "winshock", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -416062,7 +412954,7 @@ }, { "id": "RC4", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -416071,399 +412963,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416471,7 +413363,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416479,7 +413371,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416487,7 +413379,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -416495,7 +413387,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -416503,7 +413395,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -416511,483 +413403,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-30 15:32" }, { "id": "cert_notAfter", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-29 15:32" }, { "id": "cert_extlifeSpan", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704641946" + "finding": "1705245494" }, { "id": "HSTS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -416995,7 +413887,7 @@ }, { "id": "heartbleed", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -417004,7 +413896,7 @@ }, { "id": "CCS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -417013,7 +413905,7 @@ }, { "id": "ticketbleed", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -417022,7 +413914,7 @@ }, { "id": "ROBOT", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -417031,7 +413923,7 @@ }, { "id": "secure_renego", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -417039,7 +413931,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -417048,7 +413940,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -417057,7 +413949,7 @@ }, { "id": "BREACH", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -417066,7 +413958,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -417075,14 +413967,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -417091,7 +413983,7 @@ }, { "id": "FREAK", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -417100,7 +413992,7 @@ }, { "id": "DROWN", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -417109,7 +414001,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -417118,7 +414010,7 @@ }, { "id": "LOGJAM", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -417127,7 +414019,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -417136,7 +414028,7 @@ }, { "id": "BEAST", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -417145,7 +414037,7 @@ }, { "id": "LUCKY13", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -417154,7 +414046,7 @@ }, { "id": "winshock", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -417163,7 +414055,7 @@ }, { "id": "RC4", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -417172,399 +414064,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417572,7 +414464,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417580,7 +414472,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417588,7 +414480,7 @@ }, { "id": "cipherlist_LOW", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -417596,7 +414488,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -417604,7 +414496,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -417612,483 +414504,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-30 15:32" }, { "id": "cert_notAfter", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-29 15:32" }, { "id": "cert_extlifeSpan", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704641997" + "finding": "1705245550" }, { "id": "HSTS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -418096,7 +414988,7 @@ }, { "id": "heartbleed", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -418105,7 +414997,7 @@ }, { "id": "CCS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -418114,7 +415006,7 @@ }, { "id": "ticketbleed", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -418123,7 +415015,7 @@ }, { "id": "ROBOT", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -418132,7 +415024,7 @@ }, { "id": "secure_renego", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -418140,7 +415032,7 @@ }, { "id": "secure_client_renego", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -418149,7 +415041,7 @@ }, { "id": "CRIME_TLS", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -418158,7 +415050,7 @@ }, { "id": "BREACH", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -418167,7 +415059,7 @@ }, { "id": "POODLE_SSL", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -418176,14 +415068,14 @@ }, { "id": "fallback_SCSV", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -418192,7 +415084,7 @@ }, { "id": "FREAK", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -418201,7 +415093,7 @@ }, { "id": "DROWN", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -418210,7 +415102,7 @@ }, { "id": "DROWN_hint", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -418219,7 +415111,7 @@ }, { "id": "LOGJAM", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -418228,7 +415120,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -418237,7 +415129,7 @@ }, { "id": "BEAST", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -418246,7 +415138,7 @@ }, { "id": "LUCKY13", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -418255,7 +415147,7 @@ }, { "id": "winshock", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -418264,7 +415156,7 @@ }, { "id": "RC4", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -418273,332 +415165,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "208" + "finding": "225" } ], "thirdparties": { @@ -418618,7 +415510,7 @@ "value": "1", "domain": "dora.inclusion.beta.gouv.fr", "path": "/", - "expires": 1704643584, + "expires": 1705247118, "size": 17, "httpOnly": false, "secure": false, @@ -418630,10 +415522,10 @@ }, { "name": "_pk_id.211.396b", - "value": "3fe9cf330a1c667f.1704641784.", + "value": "2d633418c330300d.1705245319.", "domain": "dora.inclusion.beta.gouv.fr", "path": "/", - "expires": 1738596984, + "expires": 1739200519, "size": 43, "httpOnly": false, "secure": false, @@ -418646,23 +415538,23 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-pCopm31LppRNtzE+nfpQOQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", + "content-security-policy": "child-src https://aide.dora.inclusion.beta.gouv.fr/ https://metabase.dora.inclusion.beta.gouv.fr https://plausible.io https://tally.so; default-src 'none'; worker-src 'self' blob:; connect-src 'self' https://api.dora.inclusion.beta.gouv.fr https://*.sentry.gip-inclusion.org https://*.sentry.gip-inclusion.cloud-ed.fr https://sentry.gip-inclusion.org https://sentry.gip-inclusion.cloud-ed.fr https://api-adresse.data.gouv.fr/ https://plausible.io/api/event https://openmaptiles.geo.data.gouv.fr/ https://openmaptiles.github.io/osm-bright-gl-style/ https://matomo.inclusion.beta.gouv.fr; font-src 'self'; img-src 'self' data:; script-src 'self' 'strict-dynamic' 'unsafe-inline' https://plausible.io/js/ https://tally.so/widgets/embed.js 'nonce-34g0+DMesAGsOlupZBrhpQ=='; style-src 'self' https://tally.so/widgets/embed.js 'unsafe-inline'; base-uri 'self'", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 15:36:23 GMT", - "etag": "W/\"iio40h\"", - "link": "<./_app/immutable/assets/0.c8ccb48e.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.88c131fb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.5344b2b9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.3342b7b4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.cb994c94.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4c8c3712.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.087244ab.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.faa4abac.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.00f962c9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.3889828b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.d4c8f938.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.f670d881.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.da4f00df.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.7d488c05.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.3b91b954.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.3df7e13d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.bbec2d47.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.f71cfdc7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.3f128581.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.4e9ae1e8.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.62eea12c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.46aa5871.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.8d603b71.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.ad6cea00.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.45f9a33a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.e334c245.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.90adffbc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.ec397739.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.43717e50.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.efae3a52.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.4d0f820a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.7c098f4a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.a8964274.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.cc59272a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", + "date": "Sun, 14 Jan 2024 15:15:17 GMT", + "etag": "W/\"1eqzaub\"", + "link": "<./_app/immutable/assets/0.8b75e5ae.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/field-wrapper.770240a4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/radio-buttons.aa2b85d5.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/modal.e97d9274.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/service-search.2d6b81cc.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select-field.99c9dbe4.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/select.4437908b.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.268de203.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.dd1fa91a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/utils.37346d63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.66ff6eb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.e2da76f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.a9dc4f42.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.f5b05b5f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.76c8300d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.c80bd42c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/request.a49c140e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.7ca870d6.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/env.2937e8a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry-release-injection-file.9df53bfe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fdb7f3fc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/0.c26e23aa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/load.8e644f3d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.2da424ba.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.3158323b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/cgu.73061641.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/version.06b21b35.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/centered-grid.35d6e639.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/link-button.26660c89.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/navigation.631fd62f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-down-s-line.10f60dd3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/arrow-up-s-line.4a8beeb3.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/misc.8a500a24.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/random.8ada430a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.0a2551f9.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/star-smile-line.e04ae524.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-fill.a76e604f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/external-link-line.6154df70.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/each.c8249f62.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/home-smile-2-line.be595578.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/check-line.e3e602d5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/search-line.e99ab055.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/form.8eb3d068.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/validation.1c42130e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/schema-utils.1a7d223b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/button.08a35cdf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons-field.93eccfe4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/field-wrapper.b0a52ced.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/radio-buttons.179ff440.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/modal.2ccd769c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stats.5cf60651.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/nodes/7.990a4e1d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/services.d491adcb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/saved-search.98bcb577.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-search.74d4ac4e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select-field.85742a05.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/choice.6f06ab31.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/city-search.b1f2435c.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/select.5a1d8130.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/close-circle-fill.0f4b1da4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/list-check-2.2b8bc97b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/map-pin-2-line.41e9f6c7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service.0c2f5d38.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/service-line.c5962e67.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/partner-list.745245b6.js>; rel=\"modulepreload\"; nopush", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "ba0a8592-e0a5-4e52-b0db-c5af28e3cdd7", + "x-request-id": "32857635-c69d-41ce-a02b-5ca56f0fc942", "x-sveltekit-page": "true", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "dora.fabrique.social.gouv.fr", - "ip": "80.247.13.145", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -418718,13 +415610,19 @@ }, { "hostname": "plausible.io", - "ip": "37.19.207.34", + "ip": "185.93.1.251", "geoip": { "city": { - "geoname_id": 4744870, + "geoname_id": 4887398, "names": { - "en": "Ashburn", - "ru": "Ашберн" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -418745,7 +415643,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -418757,39 +415655,41 @@ }, "location": { "accuracy_radius": 20, - "latitude": 39.0469, - "longitude": -77.4903, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 41.8874, + "longitude": -87.6318, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "20149" + "code": "60602" }, "registered_country": { - "geoname_id": 2635167, - "iso_code": "GB", + "geoname_id": 3077311, + "is_in_european_union": true, + "iso_code": "CZ", "names": { - "de": "Vereinigtes Königreich", - "en": "United Kingdom", - "es": "Reino Unido", - "fr": "Royaume Uni", - "ja": "英国", - "pt-BR": "Reino Unido", - "ru": "Британия", - "zh-CN": "英国" + "de": "Tschechien", + "en": "Czechia", + "es": "Chequia", + "fr": "Tchéquie", + "ja": "チェコ共和国", + "pt-BR": "Chéquia", + "ru": "Чехия", + "zh-CN": "捷克" } }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -418851,7 +415751,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -418899,7 +415799,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 15:35:22", + "@generated": "Sun, 14 Jan 2024 15:14:14", "site": [ { "@name": "https://dora.fabrique.social.gouv.fr", @@ -419011,22 +415911,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -419042,30 +415942,27 @@ "type": "dns", "host": "dora.fabrique.social.gouv.fr.", "matched-at": "dora.fabrique.social.gouv.fr", - "extracted-results": [ - "\"google-site-verification=6a9NClTDGepWluUlXLJQyH00SwE5GyMsjmHBs5Mc9iU\"", - "\"v=spf1 include:_spf.alwaysdata.com include:spf.tipimail.com ?all\"" - ], - "timestamp": "2024-01-07T15:41:18.445767841Z", + "timestamp": "2024-01-14T15:20:36.525528396Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -419075,33 +415972,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "dora.fabrique.social.gouv.fr.", - "matched-at": "dora.fabrique.social.gouv.fr", - "timestamp": "2024-01-07T15:41:18.613547398Z", + "matched-at": "_dmarc.dora.fabrique.social.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; pct=100; rua=mailto:re+x2tqgwij8so@dmarc.postmarkapp.com; sp=none; aspf=r;\"" + ], + "timestamp": "2024-01-14T15:20:36.882685615Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -419118,10 +416018,10 @@ "host": "dora.fabrique.social.gouv.fr.", "matched-at": "dora.fabrique.social.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "\"v=spf1 include:_spf.alwaysdata.com include:spf.tipimail.com ?all\"", + "\"google-site-verification=6a9NClTDGepWluUlXLJQyH00SwE5GyMsjmHBs5Mc9iU\"" ], - "timestamp": "2024-01-07T15:41:18.73983232Z", + "timestamp": "2024-01-14T15:20:37.408875664Z", "matcher-status": true }, { @@ -419154,30 +416054,30 @@ "host": "dora.fabrique.social.gouv.fr.", "matched-at": "dora.fabrique.social.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T15:41:19.503165403Z", + "timestamp": "2024-01-14T15:20:37.515832516Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -419187,17 +416087,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "dora.fabrique.social.gouv.fr.", - "matched-at": "_dmarc.dora.fabrique.social.gouv.fr", + "matched-at": "dora.fabrique.social.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none; pct=100; rua=mailto:re+x2tqgwij8so@dmarc.postmarkapp.com; sp=none; aspf=r;\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T15:41:19.600529963Z", + "timestamp": "2024-01-14T15:20:37.642987697Z", "matcher-status": true }, { @@ -419232,8 +416132,8 @@ "extracted-results": [ "https://plausible.io/js/plausible.js" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T15:42:16.658816463Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T15:21:46.278787Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: dora.fabrique.social.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dora.fabrique.social.gouv.fr/'", "matcher-status": true }, @@ -419263,8 +416163,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T15:48:02.942605509Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T15:27:37.690280339Z", "matcher-status": true }, { @@ -419293,8 +416193,8 @@ "extracted-results": [ "dora.fabrique.social.gouv.fr" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T15:48:02.942757171Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T15:27:37.690405664Z", "matcher-status": true }, { @@ -419324,8 +416224,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T15:48:04.386369557Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T15:27:39.321999331Z", "matcher-status": true }, { @@ -419355,8 +416255,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T15:48:04.563156542Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T15:27:39.570386951Z", "matcher-status": true } ], @@ -419364,7 +416264,7 @@ { "requestedUrl": "https://dora.fabrique.social.gouv.fr/", "finalUrl": "https://dora.inclusion.beta.gouv.fr/", - "fetchTime": "2024-01-07T15:35:36.433Z", + "fetchTime": "2024-01-14T15:14:28.484Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://dora.fabrique.social.gouv.fr/) was redirected to https://dora.inclusion.beta.gouv.fr/. Try testing the second URL directly." ], @@ -419429,53 +416329,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4651, + "numericValue": 4575, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3222, - "firstMeaningfulPaint": 3222, - "largestContentfulPaint": 3222, - "interactive": 4651, - "speedIndex": 3485, - "totalBlockingTime": 566, - "maxPotentialFID": 492, - "cumulativeLayoutShift": 0.015490164438883463, - "cumulativeLayoutShiftMainFrame": 0.015490164438883463, - "totalCumulativeLayoutShift": 0.015490164438883463, + "firstContentfulPaint": 4355, + "firstMeaningfulPaint": 4480, + "largestContentfulPaint": 4736, + "interactive": 4575, + "speedIndex": 4355, + "totalBlockingTime": 21, + "maxPotentialFID": 72, + "cumulativeLayoutShift": 0.017394731309678824, + "cumulativeLayoutShiftMainFrame": 0.017394731309678824, + "totalCumulativeLayoutShift": 0.017394731309678824, "observedTimeOrigin": 0, - "observedTimeOriginTs": 203401231, + "observedTimeOriginTs": 196546304, "observedNavigationStart": 0, - "observedNavigationStartTs": 203401231, - "observedFirstPaint": 736, - "observedFirstPaintTs": 204137525, - "observedFirstContentfulPaint": 736, - "observedFirstContentfulPaintTs": 204137525, - "observedFirstContentfulPaintAllFrames": 736, - "observedFirstContentfulPaintAllFramesTs": 204137525, - "observedFirstMeaningfulPaint": 736, - "observedFirstMeaningfulPaintTs": 204137525, - "observedLargestContentfulPaint": 736, - "observedLargestContentfulPaintTs": 204137525, - "observedLargestContentfulPaintAllFrames": 736, - "observedLargestContentfulPaintAllFramesTs": 204137525, - "observedTraceEnd": 3870, - "observedTraceEndTs": 207271365, - "observedLoad": 1080, - "observedLoadTs": 204481148, - "observedDomContentLoaded": 713, - "observedDomContentLoadedTs": 204114479, - "observedCumulativeLayoutShift": 0.015490164438883463, - "observedCumulativeLayoutShiftMainFrame": 0.015490164438883463, - "observedTotalCumulativeLayoutShift": 0.015490164438883463, - "observedFirstVisualChange": 723, - "observedFirstVisualChangeTs": 204124231, - "observedLastVisualChange": 1573, - "observedLastVisualChangeTs": 204974231, - "observedSpeedIndex": 763, - "observedSpeedIndexTs": 204164000 + "observedNavigationStartTs": 196546304, + "observedFirstPaint": 1220, + "observedFirstPaintTs": 197766390, + "observedFirstContentfulPaint": 1220, + "observedFirstContentfulPaintTs": 197766390, + "observedFirstContentfulPaintAllFrames": 1220, + "observedFirstContentfulPaintAllFramesTs": 197766390, + "observedFirstMeaningfulPaint": 1220, + "observedFirstMeaningfulPaintTs": 197766390, + "observedLargestContentfulPaint": 1220, + "observedLargestContentfulPaintTs": 197766390, + "observedLargestContentfulPaintAllFrames": 1220, + "observedLargestContentfulPaintAllFramesTs": 197766390, + "observedTraceEnd": 4331, + "observedTraceEndTs": 200876985, + "observedLoad": 1739, + "observedLoadTs": 198285334, + "observedDomContentLoaded": 1193, + "observedDomContentLoadedTs": 197739689, + "observedCumulativeLayoutShift": 0.017394731309678824, + "observedCumulativeLayoutShiftMainFrame": 0.017394731309678824, + "observedTotalCumulativeLayoutShift": 0.017394731309678824, + "observedFirstVisualChange": 1212, + "observedFirstVisualChangeTs": 197758304, + "observedLastVisualChange": 1812, + "observedLastVisualChangeTs": 198358304, + "observedSpeedIndex": 1231, + "observedSpeedIndexTs": 197776922 }, { "lcpInvalidated": false @@ -419497,19 +416397,19 @@ "numScripts": 63, "numStylesheets": 7, "numFonts": 2, - "numTasks": 1287, - "numTasksOver10ms": 7, + "numTasks": 1320, + "numTasksOver10ms": 8, "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.8969999999999994, - "throughput": 11000373.71794437, - "maxRtt": 85.41899999999998, - "maxServerLatency": 141.19600000000003, - "totalByteWeight": 496830, - "totalTaskTime": 516.5049999999993, - "mainDocumentTransferSize": 20041 + "rtt": 1.454999999999984, + "throughput": 14393968.605673702, + "maxRtt": 101.227, + "maxServerLatency": 116.069, + "totalByteWeight": 500326, + "totalTaskTime": 299.78099999999796, + "mainDocumentTransferSize": 20892 } ] } @@ -419652,7 +416552,7 @@ "http": { "url": "https://api.dora.incubateur.net/ping/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 15:40:06 GMT", + "end_time": "Sun, 14 Jan 2024 15:20:42 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -419662,17 +416562,17 @@ "Content-Security-Policy": "default-src 'self'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 15:40:05 GMT", + "Date": "Sun, 14 Jan 2024 15:20:41 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Vary": "origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "4e4b37dd-410f-489b-b543-7114c0a482ac" + "X-Request-ID": "af0ddfc8-a967-456c-b243-b17569471235" }, - "scan_id": 46235540, + "scan_id": 46482539, "score": 110, - "start_time": "Sun, 07 Jan 2024 15:40:02 GMT", + "start_time": "Sun, 14 Jan 2024 15:20:39 GMT", "state": "FINISHED", "status_code": 404, "tests_failed": 0, @@ -420227,7 +417127,7 @@ "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", - "finding": "83 >= 30 days" + "finding": "76 >= 30 days" }, { "id": "cert_notBefore", @@ -420430,7 +417330,7 @@ "ip": "api.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704642088" + "finding": "1705245761" }, { "id": "HSTS_time", @@ -421011,77 +417911,77 @@ }, { "id": "service", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421089,7 +417989,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421097,7 +417997,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421105,7 +418005,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -421113,7 +418013,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -421121,7 +418021,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -421129,518 +418029,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "76 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-01-01 10:37" }, { "id": "cert_notAfter", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-31 10:37" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704642139" + "finding": "1705245857" }, { "id": "HSTS_time", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -421648,7 +418548,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -421657,7 +418557,7 @@ }, { "id": "CCS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -421666,7 +418566,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -421675,7 +418575,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -421684,7 +418584,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -421692,7 +418592,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -421701,7 +418601,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -421710,7 +418610,7 @@ }, { "id": "BREACH", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -421719,7 +418619,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -421728,14 +418628,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -421744,7 +418644,7 @@ }, { "id": "FREAK", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -421753,7 +418653,7 @@ }, { "id": "DROWN", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -421762,7 +418662,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -421771,7 +418671,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -421780,7 +418680,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -421789,7 +418689,7 @@ }, { "id": "BEAST", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -421798,7 +418698,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -421807,7 +418707,7 @@ }, { "id": "winshock", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -421816,7 +418716,7 @@ }, { "id": "RC4", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -421825,315 +418725,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.incubateur.net/80.247.12.255", + "ip": "api.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" @@ -422338,7 +419238,7 @@ "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -422485,7 +419385,7 @@ "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", - "finding": "83 >= 30 days" + "finding": "76 >= 30 days" }, { "id": "cert_notBefore", @@ -422688,7 +419588,7 @@ "ip": "api.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704642191" + "finding": "1705245954" }, { "id": "HSTS_time", @@ -423269,77 +420169,77 @@ }, { "id": "service", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -423347,7 +420247,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -423355,7 +420255,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -423363,7 +420263,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -423371,7 +420271,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -423379,7 +420279,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -423387,518 +420287,518 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "76 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-01-01 10:37" }, { "id": "cert_notAfter", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-31 10:37" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704642243" + "finding": "1705246050" }, { "id": "HSTS_time", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self'" }, { "id": "Referrer-Policy", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -423906,7 +420806,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -423915,7 +420815,7 @@ }, { "id": "CCS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -423924,7 +420824,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -423933,7 +420833,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -423942,7 +420842,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -423950,7 +420850,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -423959,7 +420859,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -423968,7 +420868,7 @@ }, { "id": "BREACH", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -423977,7 +420877,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -423986,14 +420886,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -424002,7 +420902,7 @@ }, { "id": "FREAK", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -424011,7 +420911,7 @@ }, { "id": "DROWN", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -424020,7 +420920,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -424029,7 +420929,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -424038,7 +420938,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -424047,7 +420947,7 @@ }, { "id": "BEAST", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -424056,7 +420956,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -424065,7 +420965,7 @@ }, { "id": "winshock", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -424074,7 +420974,7 @@ }, { "id": "RC4", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -424083,325 +420983,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "api.dora.incubateur.net/80.247.13.145", + "ip": "api.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "208" + "finding": "390" } ], "thirdparties": { @@ -424413,13 +421313,13 @@ "content-security-policy": "default-src 'self'", "content-type": "application/json", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 15:40:39 GMT", + "date": "Sun, 14 Jan 2024 15:21:13 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "origin", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "1b3a230f-6846-4f42-85b2-5ccfe389ff52" + "x-request-id": "19f5b405-3af4-49d2-afb8-5d5acee42b27" }, "endpoints": [ { @@ -424509,7 +421409,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 15:39:56", + "@generated": "Sun, 14 Jan 2024 15:20:32", "site": [ { "@name": "https://api.dora.incubateur.net", @@ -424610,7 +421510,7 @@ "type": "dns", "host": "api.dora.incubateur.net.", "matched-at": "api.dora.incubateur.net", - "timestamp": "2024-01-07T15:45:23.410985581Z", + "timestamp": "2024-01-14T15:29:18.074395356Z", "matcher-status": true }, { @@ -424645,7 +421545,7 @@ "extracted-results": [ "dora-back-staging.osc-secnum-fr1.scalingo.io." ], - "timestamp": "2024-01-07T15:45:23.450752445Z", + "timestamp": "2024-01-14T15:29:18.490230122Z", "matcher-status": true }, { @@ -424673,8 +421573,8 @@ "extracted-results": [ "OPTIONS, GET" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:45:29.61093982Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:29:29.493550029Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424706,12 +421606,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:46:04.8375304Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:30:29.682489966Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424743,12 +421643,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:46:04.837578821Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:30:29.682540671Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424780,12 +421680,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:46:04.837603476Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:30:29.682564996Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424817,12 +421717,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:46:04.837624496Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:30:29.682611182Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424854,12 +421754,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://api.dora.incubateur.net/ping/", "matched-at": "https://api.dora.incubateur.net/ping/", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:46:04.837641738Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:30:29.682638293Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api.dora.incubateur.net/ping/'", "matcher-status": true }, @@ -424889,8 +421789,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:52:05.677061216Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:37:00.191279412Z", "matcher-status": true }, { @@ -424919,8 +421819,8 @@ "extracted-results": [ "api.dora.incubateur.net" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:52:05.67716491Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:37:00.191409114Z", "matcher-status": true }, { @@ -424950,8 +421850,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:52:06.864468889Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:37:02.744848109Z", "matcher-status": true }, { @@ -424981,8 +421881,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T15:52:07.052937598Z", + "ip": "80.247.12.255", + "timestamp": "2024-01-14T15:37:03.053068622Z", "matcher-status": true } ], @@ -425099,7 +421999,7 @@ "http": { "url": "https://api.dora.fabrique.social.gouv.fr/ping/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 15:52:28 GMT", + "end_time": "Sun, 14 Jan 2024 15:20:35 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -425109,17 +422009,17 @@ "Content-Security-Policy": "default-src 'self'", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 15:52:27 GMT", + "Date": "Sun, 14 Jan 2024 15:20:34 GMT", "Referrer-Policy": "same-origin", "Strict-Transport-Security": "max-age=31536000", "Vary": "origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "ec17d917-8fb7-4beb-a43b-e426a1c1e88a" + "X-Request-ID": "406aa711-41c6-4415-bdb3-b4b5001f859d" }, - "scan_id": 46235621, + "scan_id": 46482525, "score": 100, - "start_time": "Sun, 07 Jan 2024 15:52:24 GMT", + "start_time": "Sun, 14 Jan 2024 15:20:29 GMT", "state": "FINISHED", "status_code": 404, "tests_failed": 1, @@ -425330,77 +422230,77 @@ "testssl": [ { "id": "service", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -425408,7 +422308,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -425416,7 +422316,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -425424,7 +422324,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -425432,7 +422332,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -425440,7 +422340,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -425448,483 +422348,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-30 15:19" }, { "id": "cert_notAfter", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-29 15:19" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704642831" + "finding": "1705245716" }, { "id": "HSTS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -425932,7 +422832,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -425941,7 +422841,7 @@ }, { "id": "CCS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -425950,7 +422850,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -425959,7 +422859,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -425968,7 +422868,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -425976,7 +422876,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -425985,7 +422885,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -425994,7 +422894,7 @@ }, { "id": "BREACH", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -426003,7 +422903,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -426012,14 +422912,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -426028,7 +422928,7 @@ }, { "id": "FREAK", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -426037,7 +422937,7 @@ }, { "id": "DROWN", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -426046,7 +422946,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -426055,7 +422955,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -426064,7 +422964,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -426073,7 +422973,7 @@ }, { "id": "BEAST", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -426082,7 +422982,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -426091,7 +422991,7 @@ }, { "id": "winshock", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -426100,7 +423000,7 @@ }, { "id": "RC4", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -426109,399 +423009,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426509,7 +423409,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426517,7 +423417,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426525,7 +423425,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -426533,7 +423433,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -426541,7 +423441,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -426549,483 +423449,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-30 15:19" }, { "id": "cert_notAfter", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-29 15:19" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704642882" + "finding": "1705245768" }, { "id": "HSTS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -427033,7 +423933,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -427042,7 +423942,7 @@ }, { "id": "CCS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -427051,7 +423951,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -427060,7 +423960,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -427069,7 +423969,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -427077,7 +423977,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -427086,7 +423986,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -427095,7 +423995,7 @@ }, { "id": "BREACH", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -427104,7 +424004,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -427113,14 +424013,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -427129,7 +424029,7 @@ }, { "id": "FREAK", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -427138,7 +424038,7 @@ }, { "id": "DROWN", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -427147,7 +424047,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -427156,7 +424056,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -427165,7 +424065,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -427174,7 +424074,7 @@ }, { "id": "BEAST", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -427183,7 +424083,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -427192,7 +424092,7 @@ }, { "id": "winshock", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -427201,7 +424101,7 @@ }, { "id": "RC4", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -427210,399 +424110,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427610,7 +424510,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427618,7 +424518,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427626,7 +424526,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -427634,7 +424534,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -427642,7 +424542,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -427650,483 +424550,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-30 15:19" }, { "id": "cert_notAfter", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-29 15:19" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704642933" + "finding": "1705245821" }, { "id": "HSTS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -428134,7 +425034,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -428143,7 +425043,7 @@ }, { "id": "CCS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -428152,7 +425052,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -428161,7 +425061,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -428170,7 +425070,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -428178,7 +425078,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -428187,7 +425087,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -428196,7 +425096,7 @@ }, { "id": "BREACH", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -428205,7 +425105,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -428214,14 +425114,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -428230,7 +425130,7 @@ }, { "id": "FREAK", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -428239,7 +425139,7 @@ }, { "id": "DROWN", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -428248,7 +425148,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -428257,7 +425157,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -428266,7 +425166,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -428275,7 +425175,7 @@ }, { "id": "BEAST", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -428284,7 +425184,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -428293,7 +425193,7 @@ }, { "id": "winshock", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -428302,7 +425202,7 @@ }, { "id": "RC4", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -428311,399 +425211,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "api.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -428711,7 +425611,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -428719,7 +425619,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -428727,7 +425627,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -428735,7 +425635,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -428743,7 +425643,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -428751,483 +425651,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-30 15:19" }, { "id": "cert_notAfter", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-29 15:19" }, { "id": "cert_extlifeSpan", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704642985" + "finding": "1705245872" }, { "id": "HSTS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -429235,7 +426135,7 @@ }, { "id": "heartbleed", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -429244,7 +426144,7 @@ }, { "id": "CCS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -429253,7 +426153,7 @@ }, { "id": "ticketbleed", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -429262,7 +426162,7 @@ }, { "id": "ROBOT", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -429271,7 +426171,7 @@ }, { "id": "secure_renego", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -429279,7 +426179,7 @@ }, { "id": "secure_client_renego", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -429288,7 +426188,7 @@ }, { "id": "CRIME_TLS", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -429297,7 +426197,7 @@ }, { "id": "BREACH", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -429306,7 +426206,7 @@ }, { "id": "POODLE_SSL", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -429315,14 +426215,14 @@ }, { "id": "fallback_SCSV", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -429331,7 +426231,7 @@ }, { "id": "FREAK", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -429340,7 +426240,7 @@ }, { "id": "DROWN", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -429349,7 +426249,7 @@ }, { "id": "DROWN_hint", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -429358,7 +426258,7 @@ }, { "id": "LOGJAM", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -429367,7 +426267,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -429376,7 +426276,7 @@ }, { "id": "BEAST", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -429385,7 +426285,7 @@ }, { "id": "LUCKY13", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -429394,7 +426294,7 @@ }, { "id": "winshock", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -429403,7 +426303,7 @@ }, { "id": "RC4", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -429412,355 +426312,355 @@ }, { "id": "clientsimulation-android_60", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "api.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "api.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "208" + "finding": "211" } ], "thirdparties": { "trackers": [], "cookies": [], "headers": { - "allow": "OPTIONS, GET", + "allow": "GET, OPTIONS", "content-length": "4", "content-security-policy": "default-src 'self'", "content-type": "application/json", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 15:53:00 GMT", + "date": "Sun, 14 Jan 2024 15:21:05 GMT", "referrer-policy": "same-origin", "strict-transport-security": "max-age=31536000", "vary": "origin", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "d702233b-0987-4cff-a221-03f9e7960db1" + "x-request-id": "a1a7a2ac-e6bb-4a61-9a73-92dde345712f" }, "endpoints": [ { "hostname": "api.dora.fabrique.social.gouv.fr", - "ip": "80.247.13.145", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -429828,7 +426728,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 15:52:18", + "@generated": "Sun, 14 Jan 2024 15:20:23", "site": [ { "@name": "https://api.dora.fabrique.social.gouv.fr", @@ -429836,6 +426736,13 @@ "@port": "443", "@ssl": "true", "alerts": [ + { + "name": "CSP: Wildcard Directive", + "riskcode": "2", + "confidence": "3", + "riskdesc": "Medium (High)", + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + }, { "name": "Permissions Policy Header Not Set", "riskcode": "1", @@ -429898,73 +426805,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "api.dora.fabrique.social.gouv.fr.", "matched-at": "api.dora.fabrique.social.gouv.fr", - "extracted-results": [ - "dora-back-prod.osc-secnum-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T15:57:45.682392698Z", + "timestamp": "2024-01-14T15:25:53.409782755Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "api.dora.fabrique.social.gouv.fr.", "matched-at": "api.dora.fabrique.social.gouv.fr", - "timestamp": "2024-01-07T15:57:46.592468772Z", + "extracted-results": [ + "dora-back-prod.osc-secnum-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T15:25:54.450957647Z", "matcher-status": true }, { @@ -429993,8 +426900,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:04:29.448280923Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:32:37.030239628Z", "matcher-status": true }, { @@ -430023,8 +426930,8 @@ "extracted-results": [ "api.dora.fabrique.social.gouv.fr" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:04:29.448408459Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:32:37.030350336Z", "matcher-status": true }, { @@ -430054,8 +426961,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:04:30.710594751Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:32:38.185303045Z", "matcher-status": true }, { @@ -430085,8 +426992,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:04:30.899557388Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:32:38.372807772Z", "matcher-status": true } ], @@ -430203,7 +427110,7 @@ "http": { "url": "https://pdf.dora.incubateur.net/ping", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 15:59:34 GMT", + "end_time": "Sun, 14 Jan 2024 15:38:55 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -430211,14 +427118,14 @@ "Connection": "keep-alive", "Content-Encoding": "identity", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 15:59:33 GMT", + "Date": "Sun, 14 Jan 2024 15:38:54 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "c23706ea-f3f2-41b6-932b-38de0b7a09d4" + "X-Request-ID": "81f64353-e5a8-4724-bf3d-e7557829ec67" }, - "scan_id": 46235655, + "scan_id": 46483889, "score": 40, - "start_time": "Sun, 07 Jan 2024 15:59:30 GMT", + "start_time": "Sun, 14 Jan 2024 15:38:51 GMT", "state": "FINISHED", "status_code": 503, "tests_failed": 4, @@ -430412,77 +427319,77 @@ "testssl": [ { "id": "service", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -430490,7 +427397,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -430498,7 +427405,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -430506,7 +427413,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -430514,7 +427421,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -430522,7 +427429,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -430530,497 +427437,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-30 08:58" }, { "id": "cert_notAfter", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-29 08:58" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704643261" + "finding": "1705246823" }, { "id": "HSTS_time", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -431028,7 +427935,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -431037,7 +427944,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -431046,7 +427953,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -431055,7 +427962,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -431064,7 +427971,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -431072,7 +427979,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -431081,7 +427988,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -431090,7 +427997,7 @@ }, { "id": "BREACH", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -431099,7 +428006,7 @@ }, { "id": "POODLE_SSL", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -431108,14 +428015,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -431124,7 +428031,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -431133,7 +428040,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -431142,7 +428049,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -431151,7 +428058,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -431160,7 +428067,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -431169,7 +428076,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -431178,7 +428085,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -431187,7 +428094,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -431196,7 +428103,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -431205,392 +428112,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.incubateur.net/148.253.96.193", + "ip": "pdf.dora.incubateur.net/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -431598,7 +428505,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -431606,7 +428513,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -431614,7 +428521,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -431622,7 +428529,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -431630,7 +428537,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -431638,497 +428545,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-30 08:58" }, { "id": "cert_notAfter", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-29 08:58" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704643322" + "finding": "1705246882" }, { "id": "HSTS_time", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -432136,7 +429043,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -432145,7 +429052,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -432154,7 +429061,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -432163,7 +429070,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -432172,7 +429079,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -432180,7 +429087,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -432189,7 +429096,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -432198,7 +429105,7 @@ }, { "id": "BREACH", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -432207,7 +429114,7 @@ }, { "id": "POODLE_SSL", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -432216,14 +429123,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -432232,7 +429139,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -432241,7 +429148,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -432250,7 +429157,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -432259,7 +429166,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -432268,7 +429175,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -432277,7 +429184,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -432286,7 +429193,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -432295,7 +429202,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -432304,7 +429211,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -432313,392 +429220,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.incubateur.net/80.247.13.145", + "ip": "pdf.dora.incubateur.net/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432706,7 +429613,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432714,7 +429621,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432722,7 +429629,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -432730,7 +429637,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -432738,7 +429645,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -432746,497 +429653,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-30 08:58" }, { "id": "cert_notAfter", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-29 08:58" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704643382" + "finding": "1705246942" }, { "id": "HSTS_time", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -433244,7 +430151,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -433253,7 +430160,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -433262,7 +430169,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -433271,7 +430178,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -433280,7 +430187,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -433288,7 +430195,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -433297,7 +430204,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -433306,7 +430213,7 @@ }, { "id": "BREACH", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -433315,7 +430222,7 @@ }, { "id": "POODLE_SSL", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -433324,14 +430231,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -433340,7 +430247,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -433349,7 +430256,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -433358,7 +430265,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -433367,7 +430274,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -433376,7 +430283,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -433385,7 +430292,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -433394,7 +430301,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -433403,7 +430310,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -433412,7 +430319,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -433421,392 +430328,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.incubateur.net/80.247.12.255", + "ip": "pdf.dora.incubateur.net/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -433814,7 +430721,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -433822,7 +430729,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -433830,7 +430737,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -433838,7 +430745,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -433846,7 +430753,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -433854,497 +430761,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-30 08:58" }, { "id": "cert_notAfter", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-29 08:58" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704643442" + "finding": "1705247001" }, { "id": "HSTS_time", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -434352,7 +431259,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -434361,7 +431268,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -434370,7 +431277,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -434379,7 +431286,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -434388,7 +431295,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -434396,7 +431303,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -434405,7 +431312,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -434414,7 +431321,7 @@ }, { "id": "BREACH", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -434423,7 +431330,7 @@ }, { "id": "POODLE_SSL", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -434432,14 +431339,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -434448,7 +431355,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -434457,7 +431364,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -434466,7 +431373,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -434475,7 +431382,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -434484,7 +431391,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -434493,7 +431400,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -434502,7 +431409,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -434511,7 +431418,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -434520,7 +431427,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -434529,325 +431436,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "pdf.dora.incubateur.net/185.21.194.105", + "ip": "pdf.dora.incubateur.net/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "241" + "finding": "240" } ], "thirdparties": { @@ -434856,14 +431763,14 @@ "headers": { "content-encoding": "identity", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 16:00:07 GMT", + "date": "Sun, 14 Jan 2024 15:39:29 GMT", "strict-transport-security": "max-age=31536000", - "x-request-id": "4e86b17a-3346-44e0-b92e-a4c47c5504da" + "x-request-id": "eb8c6f4b-dc62-4cc0-9382-90c31b620104" }, "endpoints": [ { "hostname": "pdf.dora.incubateur.net", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -434948,7 +431855,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 15:59:24", + "@generated": "Sun, 14 Jan 2024 15:38:44", "site": [ { "@name": "https://pdf.dora.incubateur.net", @@ -435011,73 +431918,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "pdf.dora.incubateur.net.", "matched-at": "pdf.dora.incubateur.net", - "timestamp": "2024-01-07T16:05:31.688248773Z", + "extracted-results": [ + "dora-pdf-staging.osc-secnum-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T15:44:52.169586068Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "pdf.dora.incubateur.net.", "matched-at": "pdf.dora.incubateur.net", - "extracted-results": [ - "dora-pdf-staging.osc-secnum-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T16:05:32.756572006Z", + "timestamp": "2024-01-14T15:44:52.174962779Z", "matcher-status": true }, { @@ -435108,12 +432015,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.087087511Z", + "timestamp": "2024-01-14T15:45:56.347910179Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435145,12 +432052,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.08712923Z", + "timestamp": "2024-01-14T15:45:56.347968147Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435182,12 +432089,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.087147174Z", + "timestamp": "2024-01-14T15:45:56.347987663Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435219,12 +432126,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.087162372Z", + "timestamp": "2024-01-14T15:45:56.348005546Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435256,12 +432163,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.087175026Z", + "timestamp": "2024-01-14T15:45:56.348022338Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435293,12 +432200,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.087187149Z", + "timestamp": "2024-01-14T15:45:56.348038457Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435330,12 +432237,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-frame-options", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.087200464Z", + "timestamp": "2024-01-14T15:45:56.348053966Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435367,12 +432274,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.087215893Z", + "timestamp": "2024-01-14T15:45:56.348073182Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435404,12 +432311,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.08723021Z", + "timestamp": "2024-01-14T15:45:56.348090815Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435446,7 +432353,7 @@ "host": "https://pdf.dora.incubateur.net/ping", "matched-at": "https://pdf.dora.incubateur.net/ping", "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:06:35.087242874Z", + "timestamp": "2024-01-14T15:45:56.348106854Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.incubateur.net/ping'", "matcher-status": true }, @@ -435477,7 +432384,7 @@ "Let's Encrypt" ], "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:12:57.662847096Z", + "timestamp": "2024-01-14T15:52:19.882994522Z", "matcher-status": true }, { @@ -435507,7 +432414,7 @@ "pdf.dora.incubateur.net" ], "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:12:57.662976269Z", + "timestamp": "2024-01-14T15:52:19.883109505Z", "matcher-status": true }, { @@ -435538,7 +432445,7 @@ "tls12" ], "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:12:59.265801712Z", + "timestamp": "2024-01-14T15:52:21.562529202Z", "matcher-status": true }, { @@ -435569,7 +432476,7 @@ "tls13" ], "ip": "185.21.194.105", - "timestamp": "2024-01-07T16:12:59.480559845Z", + "timestamp": "2024-01-14T15:52:21.777894454Z", "matcher-status": true } ], @@ -435686,68 +432593,42 @@ "http": { "url": "https://pdf.dora.fabrique.social.gouv.fr/ping", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 16:03:38 GMT", - "grade": "A+", + "end_time": "Sun, 14 Jan 2024 15:43:51 GMT", + "grade": "D+", "hidden": false, - "likelihood_indicator": "LOW", + "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", - "Content-Length": "139", - "Content-Security-Policy": "default-src 'none'", - "Content-Type": "text/html; charset=utf-8", - "Cross-Origin-Opener-Policy": "same-origin", - "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 16:03:37 GMT", - "Origin-Agent-Cluster": "?1", - "Referrer-Policy": "no-referrer", + "Content-Encoding": "identity", + "Content-Type": "text/html", + "Date": "Sun, 14 Jan 2024 15:43:50 GMT", "Strict-Transport-Security": "max-age=31536000", - "X-Content-Type-Options": "nosniff", - "X-DNS-Prefetch-Control": "off", - "X-Download-Options": "noopen", - "X-Frame-Options": "SAMEORIGIN", - "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "c4a2b024-9e8c-4d44-93d6-b82dfe339f67", - "X-XSS-Protection": "0" + "Transfer-Encoding": "chunked", + "X-Request-ID": "2ffdc3e1-00da-4b5c-9972-9a93e531fc86" }, - "scan_id": 46235667, - "score": 115, - "start_time": "Sun, 07 Jan 2024 16:03:35 GMT", + "scan_id": 46484258, + "score": 40, + "start_time": "Sun, 14 Jan 2024 15:43:47 GMT", "state": "FINISHED", - "status_code": 404, - "tests_failed": 0, - "tests_passed": 12, + "status_code": 503, + "tests_failed": 4, + "tests_passed": 8, "tests_quantity": 12, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "default-src": [ - "'none'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": false, - "defaultNone": true, - "insecureBaseUri": true, - "insecureFormAction": true, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": false, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, - "pass": true, - "result": "csp-implemented-with-no-unsafe-default-src-none", - "score_description": "Content Security Policy (CSP) implemented with default-src 'none' and no 'unsafe'", - "score_modifier": 10 + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "contribute": { "expectation": "contribute-json-only-required-on-mozilla-properties", @@ -435823,14 +432704,14 @@ "expectation": "referrer-policy-private", "name": "referrer-policy", "output": { - "data": "no-referrer", - "http": true, + "data": null, + "http": false, "meta": false }, "pass": true, - "result": "referrer-policy-private", - "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", - "score_modifier": 5 + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 }, "strict-transport-security": { "expectation": "hsts-implemented-max-age-at-least-six-months", @@ -435862,34 +432743,34 @@ "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff" + "data": null }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", "name": "x-frame-options", "output": { - "data": "SAMEORIGIN" + "data": null }, - "pass": true, - "result": "x-frame-options-sameorigin-or-deny", - "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", - "score_modifier": 0 + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 }, "x-xss-protection": { "expectation": "x-xss-protection-1-mode-block", "name": "x-xss-protection", "output": { - "data": "0" + "data": null }, - "pass": true, - "result": "x-xss-protection-not-needed-due-to-csp", - "score_description": "X-XSS-Protection header not needed due to strong Content Security Policy (CSP) header", - "score_modifier": 0 + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 } } }, @@ -435921,77 +432802,77 @@ "testssl": [ { "id": "service", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -435999,7 +432880,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436007,7 +432888,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436015,7 +432896,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -436023,7 +432904,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -436031,7 +432912,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -436039,525 +432920,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-30 14:01" }, { "id": "cert_notAfter", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-29 14:01" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "404 Not Found ('/')" + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704643537" + "finding": "1705247151" }, { "id": "HSTS_time", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "id": "security_headers", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -436565,7 +433418,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -436574,7 +433427,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -436583,7 +433436,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -436592,7 +433445,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -436601,7 +433454,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -436609,7 +433462,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -436618,7 +433471,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -436627,16 +433480,16 @@ }, { "id": "BREACH", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -436645,14 +433498,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -436661,7 +433514,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -436670,7 +433523,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -436679,7 +433532,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -436688,7 +433541,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -436697,7 +433550,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -436706,7 +433559,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -436715,7 +433568,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -436724,7 +433577,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -436733,7 +433586,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -436742,392 +433595,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -437135,7 +433988,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -437143,7 +433996,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -437151,7 +434004,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -437159,7 +434012,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -437167,7 +434020,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -437175,525 +434028,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-30 14:01" }, { "id": "cert_notAfter", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-29 14:01" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "404 Not Found ('/')" + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704643630" + "finding": "1705247251" }, { "id": "HSTS_time", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "id": "security_headers", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -437701,7 +434526,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -437710,7 +434535,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -437719,7 +434544,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -437728,7 +434553,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -437737,7 +434562,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -437745,7 +434570,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -437754,7 +434579,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -437763,16 +434588,16 @@ }, { "id": "BREACH", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -437781,14 +434606,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -437797,7 +434622,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -437806,7 +434631,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -437815,7 +434640,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -437824,7 +434649,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -437833,7 +434658,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -437842,7 +434667,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -437851,7 +434676,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -437860,7 +434685,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -437869,7 +434694,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -437878,392 +434703,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.13.145", + "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438271,7 +435096,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438279,7 +435104,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438287,7 +435112,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -438295,7 +435120,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -438303,7 +435128,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -438311,525 +435136,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-30 14:01" }, { "id": "cert_notAfter", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-29 14:01" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "404 Not Found ('/')" + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704643724" + "finding": "1705247351" }, { "id": "HSTS_time", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "id": "security_headers", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -438837,7 +435634,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -438846,7 +435643,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -438855,7 +435652,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -438864,7 +435661,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -438873,7 +435670,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -438881,7 +435678,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -438890,7 +435687,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -438899,16 +435696,16 @@ }, { "id": "BREACH", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -438917,14 +435714,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -438933,7 +435730,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -438942,7 +435739,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -438951,7 +435748,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -438960,7 +435757,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -438969,7 +435766,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -438978,7 +435775,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -438987,7 +435784,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -438996,7 +435793,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -439005,7 +435802,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -439014,392 +435811,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", + "ip": "pdf.dora.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -439407,7 +436204,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -439415,7 +436212,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -439423,7 +436220,7 @@ }, { "id": "cipherlist_LOW", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -439431,7 +436228,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -439439,7 +436236,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -439447,525 +436244,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "74 >= 30 days" }, { "id": "cert_notBefore", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-30 14:01" }, { "id": "cert_notAfter", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-29 14:01" }, { "id": "cert_extlifeSpan", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "404 Not Found ('/')" + "severity": "WARN", + "finding": "Unexpected 503 Service Temporarily Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704643817" + "finding": "1705247451" }, { "id": "HSTS_time", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { - "id": "X-Frame-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "X-XSS-Protection", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "id": "security_headers", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", - "severity": "INFO", - "finding": "no-referrer" + "severity": "MEDIUM", + "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -439973,7 +436742,7 @@ }, { "id": "heartbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -439982,7 +436751,7 @@ }, { "id": "CCS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -439991,7 +436760,7 @@ }, { "id": "ticketbleed", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -440000,7 +436769,7 @@ }, { "id": "ROBOT", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -440009,7 +436778,7 @@ }, { "id": "secure_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -440017,7 +436786,7 @@ }, { "id": "secure_client_renego", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -440026,7 +436795,7 @@ }, { "id": "CRIME_TLS", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -440035,16 +436804,16 @@ }, { "id": "BREACH", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "cve": "CVE-2013-3587", "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + "finding": "potentially VULNERABLE, identity gzip deflate compress br HTTP compression detected - only supplied '/' tested" }, { "id": "POODLE_SSL", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -440053,14 +436822,14 @@ }, { "id": "fallback_SCSV", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -440069,7 +436838,7 @@ }, { "id": "FREAK", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -440078,7 +436847,7 @@ }, { "id": "DROWN", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -440087,7 +436856,7 @@ }, { "id": "DROWN_hint", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -440096,7 +436865,7 @@ }, { "id": "LOGJAM", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -440105,7 +436874,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -440114,7 +436883,7 @@ }, { "id": "BEAST", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -440123,7 +436892,7 @@ }, { "id": "LUCKY13", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -440132,7 +436901,7 @@ }, { "id": "winshock", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -440141,7 +436910,7 @@ }, { "id": "RC4", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -440150,348 +436919,336 @@ }, { "id": "clientsimulation-android_60", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "pdf.dora.fabrique.social.gouv.fr/80.247.12.255", + "ip": "pdf.dora.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "377" + "finding": "406" } ], "thirdparties": { "trackers": [], "cookies": [], "headers": { - "content-length": "2", - "content-security-policy": "default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests", - "content-type": "text/html; charset=utf-8", - "cross-origin-opener-policy": "same-origin", - "cross-origin-resource-policy": "same-origin", - "date": "Sun, 07 Jan 2024 16:04:11 GMT", - "etag": "W/\"2-eoX0dku9ba8cNUXvu/DyeabcC+s\"", - "origin-agent-cluster": "?1", - "referrer-policy": "no-referrer", + "content-encoding": "identity", + "content-type": "text/html", + "date": "Sun, 14 Jan 2024 15:44:22 GMT", "strict-transport-security": "max-age=31536000", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-request-id": "9314bf80-2f89-44b2-a9b9-f21d52a34081", - "x-xss-protection": "0" + "x-request-id": "132daf01-b0a0-427a-94da-886c58d1a335" }, "endpoints": [ { @@ -440555,7 +437312,7 @@ "wappalyzer": { "urls": { "https://pdf.dora.fabrique.social.gouv.fr/ping": { - "status": 200 + "status": 503 } }, "technologies": [ @@ -440581,7 +437338,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 16:03:28", + "@generated": "Sun, 14 Jan 2024 15:43:41", "site": [ { "@name": "https://pdf.dora.fabrique.social.gouv.fr", @@ -440590,18 +437347,11 @@ "@ssl": "true", "alerts": [ { - "name": "CSP: Wildcard Directive", - "riskcode": "2", - "confidence": "3", - "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" - }, - { - "name": "CSP: style-src unsafe-inline", + "name": "Content Security Policy (CSP) Header Not Set", "riskcode": "2", "confidence": "3", "riskdesc": "Medium (High)", - "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks. Including (but not limited to) Cross Site Scripting (XSS), and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" + "desc": "

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement or distribution of malware. CSP provides a set of standard HTTP headers that allow website owners to declare approved sources of content that browsers should be allowed to load on that page — covered types are JavaScript, CSS, HTML frames, fonts, images and embeddable objects such as Java applets, ActiveX, audio and video files.

" }, { "name": "Permissions Policy Header Not Set", @@ -440611,11 +437361,11 @@ "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, { - "name": "Re-examine Cache-control Directives", + "name": "Non-Storable Content", "riskcode": "0", - "confidence": "1", - "riskdesc": "Informational (Low)", - "desc": "

The cache-control header has not been set properly or is missing, allowing the browser and proxies to cache content. For static assets like css, js, or image files this might be intended, however, the resources should be reviewed to ensure that no sensitive content will be cached.

" + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are not storable by caching components such as proxy servers. If the response does not contain sensitive, personal or user-specific information, it may benefit from being stored and cached, to improve performance.

" }, { "name": "Sec-Fetch-Dest Header is Missing", @@ -440644,19 +437394,47 @@ "confidence": "3", "riskdesc": "Informational (High)", "desc": "

Specifies if a navigation request was initiated by a user.

" - }, - { - "name": "Storable and Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" } ] } ] }, "nuclei": [ + { + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "info": { + "name": "DNS SaaS Service Detection", + "author": [ + "noah @thesubtlety", + "pdteam" + ], + "tags": [ + "dns", + "service" + ], + "description": "A CNAME DNS record was discovered", + "reference": [ + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "dns", + "host": "pdf.dora.fabrique.social.gouv.fr.", + "matched-at": "pdf.dora.fabrique.social.gouv.fr", + "extracted-results": [ + "dora-pdf-prod.osc-secnum-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T15:52:43.364117356Z", + "matcher-status": true + }, { "template": "dns/caa-fingerprint.yaml", "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", @@ -440689,72 +437467,81 @@ "type": "dns", "host": "pdf.dora.fabrique.social.gouv.fr.", "matched-at": "pdf.dora.fabrique.social.gouv.fr", - "timestamp": "2024-01-07T16:12:01.819665954Z", + "timestamp": "2024-01-14T15:52:43.7257012Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "HTTP Missing Security Headers", "author": [ - "noah @thesubtlety", - "pdteam" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "dns", - "service" - ], - "description": "A CNAME DNS record was discovered", - "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "misconfig", + "headers", + "generic" ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { "max-request": 1 } }, - "type": "dns", - "host": "pdf.dora.fabrique.social.gouv.fr.", - "matched-at": "pdf.dora.fabrique.social.gouv.fr", - "extracted-results": [ - "dora-pdf-prod.osc-secnum-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T16:12:02.659031319Z", + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", + "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.46767312Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, { - "template": "http/miscellaneous/options-method.yaml", - "template-url": "https://templates.nuclei.sh/public/options-method", - "template-id": "options-method", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/options-method.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "Allowed Options Method", + "name": "HTTP Missing Security Headers", "author": [ - "pdteam" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "misc", + "misconfig", + "headers", "generic" ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { "max-request": 1 } }, + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "extracted-results": [ - "GET,HEAD" - ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:12:12.026393958Z", - "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.467716121Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, { @@ -440785,12 +437572,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.714899265Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.467734746Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -440826,8 +437613,8 @@ "type": "http", "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.71495015Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.467751166Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -440859,12 +437646,49 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.714967562Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.467763299Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", + "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.467775392Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -440900,119 +437724,8 @@ "type": "http", "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.714982129Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.714995024Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.715008839Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.715024047Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.467787124Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -441048,8 +437761,8 @@ "type": "http", "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.715037623Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.467801832Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -441081,12 +437794,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.715051509Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.467815497Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -441118,12 +437831,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://pdf.dora.fabrique.social.gouv.fr/ping", "matched-at": "https://pdf.dora.fabrique.social.gouv.fr/ping", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:13:10.715064633Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T15:54:17.467828712Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://pdf.dora.fabrique.social.gouv.fr/ping'", "matcher-status": true }, @@ -441153,8 +437866,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:19:33.725834569Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:01:09.914970728Z", "matcher-status": true }, { @@ -441183,8 +437896,8 @@ "extracted-results": [ "pdf.dora.fabrique.social.gouv.fr" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:19:33.725956326Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:01:09.915092907Z", "matcher-status": true }, { @@ -441214,8 +437927,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:19:35.712191286Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:01:12.476096031Z", "matcher-status": true }, { @@ -441245,8 +437958,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T16:19:36.103617791Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:01:12.78475983Z", "matcher-status": true } ], @@ -441324,7 +438037,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "A+", + "httpGrade": "D+", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", @@ -441418,7 +438131,7 @@ "type": "dns", "host": "app.eva.beta.gouv.fr.", "matched-at": "app.eva.beta.gouv.fr", - "timestamp": "2024-01-07T16:28:52.667975404Z", + "timestamp": "2024-01-14T16:01:59.295050478Z", "matcher-status": true } ], @@ -441530,7 +438243,7 @@ "http": { "url": "https://api.app.eva.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 16:24:56 GMT", + "end_time": "Sun, 14 Jan 2024 16:04:17 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -441539,12 +438252,12 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 16:24:53 GMT", - "etag": "W/\"7cceac1a94c3daba6646386101bbd6e9\"", + "date": "Sun, 14 Jan 2024 16:04:14 GMT", + "etag": "W/\"2e24bde750585822a59e4f5b92aac235\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", "server": "Apache", - "set-cookie": "_session_id=z515%2By%2BjWTgUnqP1tBogbQuHblNQd6CDOut%2BYjl8akONXEBrL54p4brln4%2BIhdQ3ixrDLGr4EaKaeSw3uJeINJwYxClSU%2B6YuffKMqpQm9EUtdynYIoaqJuw3eTkRmHhs643BxGwOtBY7oinb1VgV5JuMtg4rLkIYo33W8K1d%2BMuw1dCEHf2IhI1LHiSNNFh5l17Y8TlOeCkr%2BGsViUuqpokWH4hiG9JK0a5igcnLvBWedIWrNgQgUVtU%2BBqeG80Md2AP%2Bg%2FsXg90fRrad4JkfhLlQ%3D%3D--QwiMNdpWf3dmoCyv--Ol24CvxzXzYt3iHN1SY1tA%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", + "set-cookie": "_session_id=lVlDMf8eEsJ0FChhRj1oBykx7Yw6PJaIgIIW1vm4Oi2n2R1pGBbeasCyPgUv42rZGTK0eH4Dg5l%2FYGBelN8n%2FJZLukx7P5DLa%2FgF5UNDk1gWQ7XQh2kJBBgfMBkx4gcm%2FN2y0H3PaqsO%2FzsM3Plc1AZGdXlnQTYA14V59Yds2O%2Fa1GYQLh8MN6cIlif%2BznZ8Lybl70XH3QcAXOrBw%2BWShaF6i6C4qnFoC3%2F18L8IFF%2BwEj1NajPCxNld5zytTOsY0fLr%2BphTgouXPX7lUbFLb4W4UQ%3D%3D--CnCWsMhBrqAcgh%2Fd--K4K9jfmg5dKPF9EjW59gIw%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", "strict-transport-security": "max-age=63072000; includeSubDomains", "transfer-encoding": "chunked", "vary": "Accept,Origin", @@ -441553,13 +438266,13 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "1b35ebbf-50b3-4df9-aced-e097da3c87f1, 1b35ebbf-50b3-4df9-aced-e097da3c87f1", - "x-runtime": "0.020805", + "x-request-id": "08c3ceed-f539-43b8-822d-32eab8fcf2ae, 08c3ceed-f539-43b8-822d-32eab8fcf2ae", + "x-runtime": "0.016983", "x-xss-protection": "0" }, - "scan_id": 46235831, + "scan_id": 46486096, "score": 60, - "start_time": "Sun, 07 Jan 2024 16:24:49 GMT", + "start_time": "Sun, 14 Jan 2024 16:04:09 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -441759,8 +438472,8 @@ "email:934467329", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T16:28:40Z", - "next_check_at": "2024-01-07T17:28:36Z", + "last_check_at": "2024-01-14T15:36:04Z", + "next_check_at": "2024-01-14T16:35:54Z", "created_at": "2021-04-22T21:33:37Z", "mute_until": "forever", "favicon_url": "https://eva.beta.gouv.fr/favicon.ico", @@ -441768,7 +438481,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T10:30:18Z", + "tested_at": "2024-01-14T11:37:47Z", "expires_at": "2024-03-04T07:32:35Z", "valid": true, "error": null @@ -442003,7 +438716,7 @@ "ip": "api.app.eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -442150,7 +438863,7 @@ "ip": "api.app.eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "OK", - "finding": "56 >= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", @@ -442353,7 +439066,7 @@ "ip": "api.app.eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "1704644771" + "finding": "1705248328" }, { "id": "HSTS", @@ -442909,7 +439622,7 @@ "ip": "api.app.eva.beta.gouv.fr/185.31.40.19", "port": "443", "severity": "INFO", - "finding": "55" + "finding": "54" } ], "thirdparties": { @@ -442928,15 +439641,15 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/f69a6d97-fd72-455d-826c-f04d4d228c03/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-16-25" + "url": "https://client.crisp.chat/settings/website/f69a6d97-fd72-455d-826c-f04d4d228c03/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-16-4" }, { "type": "unknown", @@ -442944,13 +439657,13 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/en.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/en.js?e0efffc" } ], "cookies": [ { "name": "_session_id", - "value": "%2FLTLyRcwXvq%2FW6GYTEmF%2BN5yZSUq2kXz6cMDW16SxoGN4PxAZj%2FeZ7YtZPj3tZRc3VDkwY3YEci7Rx8jOMAMIrJ8radOwYoP9XbYmVHEvA7nFzB%2FxhZFbS2l58LpaYLg8RwYzXmfIg1C3d2%2BxEGNImf%2FUJKh61xyJrmAe41Bi9KJcX%2BdiThHHzvh1FykKGNH4d3zln2MbBfbG01WssMMC%2Fu8L3Wep9g6xt5BFr71%2BoJ4l8L049OV2zIGvAYFfJNkVlbhekIreNTXlKbjjExr3Ife0g%3D%3D--TGyQDxecnk3UT%2BFz--2AwbPwvRAivFHDlHbqtV8A%3D%3D", + "value": "PerCT7b%2FKR%2Fb6XO4OiWeUrt9B5%2BzdGnz4WMOikJr5q1W2mN2IBcfaxmCve%2FL8e4RoZRQvY8TBQPJNjCIiJ34ijpAkDSLOcwnfnBGLzh3BmzZUyivq7Uz2RwIVlbYA1pV2LSROkPMsnMVECC0Hq03XPaf%2BRj31a3UjNHrdVh%2FXK1W1a%2BiZgqtbpqxs310VgAZZTjwPPLUlf8kUSKj4ZzptXlgYkXFOwjdxDPmhuqwwjF7%2BNuAfksEF%2BcLyKfevtRYuwmw%2BG5t2wK7p0B3lq0MmWImkw%3D%3D--pW4qGMdYaqh58waF--0iM5AhP0Y%2F5nx0ho1xs9Zg%3D%3D", "domain": "eva.beta.gouv.fr", "path": "/", "expires": -1, @@ -442968,12 +439681,12 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 16:25:25 GMT", - "etag": "W/\"54822b5c99f00a77f7b5e534a2f3590a\"", + "date": "Sun, 14 Jan 2024 16:04:44 GMT", + "etag": "W/\"c459329a0b82bab3b90120bcac08a136\"", "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", "server": "Apache", - "set-cookie": "_session_id=%2FLTLyRcwXvq%2FW6GYTEmF%2BN5yZSUq2kXz6cMDW16SxoGN4PxAZj%2FeZ7YtZPj3tZRc3VDkwY3YEci7Rx8jOMAMIrJ8radOwYoP9XbYmVHEvA7nFzB%2FxhZFbS2l58LpaYLg8RwYzXmfIg1C3d2%2BxEGNImf%2FUJKh61xyJrmAe41Bi9KJcX%2BdiThHHzvh1FykKGNH4d3zln2MbBfbG01WssMMC%2Fu8L3Wep9g6xt5BFr71%2BoJ4l8L049OV2zIGvAYFfJNkVlbhekIreNTXlKbjjExr3Ife0g%3D%3D--TGyQDxecnk3UT%2BFz--2AwbPwvRAivFHDlHbqtV8A%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", + "set-cookie": "_session_id=PerCT7b%2FKR%2Fb6XO4OiWeUrt9B5%2BzdGnz4WMOikJr5q1W2mN2IBcfaxmCve%2FL8e4RoZRQvY8TBQPJNjCIiJ34ijpAkDSLOcwnfnBGLzh3BmzZUyivq7Uz2RwIVlbYA1pV2LSROkPMsnMVECC0Hq03XPaf%2BRj31a3UjNHrdVh%2FXK1W1a%2BiZgqtbpqxs310VgAZZTjwPPLUlf8kUSKj4ZzptXlgYkXFOwjdxDPmhuqwwjF7%2BNuAfksEF%2BcLyKfevtRYuwmw%2BG5t2wK7p0B3lq0MmWImkw%3D%3D--pW4qGMdYaqh58waF--0iM5AhP0Y%2F5nx0ho1xs9Zg%3D%3D; path=/; HttpOnly; SameSite=Lax; secure", "strict-transport-security": "max-age=63072000; includeSubDomains", "vary": "Origin", "via": "1.1 eva.beta.gouv.fr, 2.0 alproxy", @@ -442981,8 +439694,8 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "3e69461c-32aa-4fc2-85a4-332666bc0231\n3e69461c-32aa-4fc2-85a4-332666bc0231", - "x-runtime": "0.017041", + "x-request-id": "f145fe31-1fb1-44dd-a1a0-e53178914af8\nf145fe31-1fb1-44dd-a1a0-e53178914af8", + "x-runtime": "0.016944", "x-xss-protection": "0" }, "endpoints": [ @@ -443044,7 +439757,7 @@ }, { "hostname": "code.jquery.com", - "ip": "151.101.2.137", + "ip": "151.101.130.137", "geoip": { "continent": { "code": "NA", @@ -443064,7 +439777,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -443084,7 +439797,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -443118,7 +439831,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -443138,7 +439851,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -443183,7 +439896,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 16:24:23", + "@generated": "Sun, 14 Jan 2024 16:03:44", "site": [ { "@name": "https://api.app.eva.beta.gouv.fr", @@ -443312,7 +440025,7 @@ { "requestedUrl": "https://api.app.eva.beta.gouv.fr/", "finalUrl": "https://eva.beta.gouv.fr/pro/admin/login", - "fetchTime": "2024-01-07T16:24:38.037Z", + "fetchTime": "2024-01-14T16:03:58.632Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://api.app.eva.beta.gouv.fr/) was redirected to https://eva.beta.gouv.fr/pro/admin/login. Try testing the second URL directly." ], @@ -443377,53 +440090,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7765, + "numericValue": 7881, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 6514, - "firstMeaningfulPaint": 6752, - "largestContentfulPaint": 7446, - "interactive": 7765, - "speedIndex": 6870, - "totalBlockingTime": 19, - "maxPotentialFID": 87, - "cumulativeLayoutShift": 0.0004923381686297182, - "cumulativeLayoutShiftMainFrame": 0.0004923381686297182, - "totalCumulativeLayoutShift": 0.0004923381686297182, + "firstContentfulPaint": 6583, + "firstMeaningfulPaint": 6820, + "largestContentfulPaint": 7520, + "interactive": 7881, + "speedIndex": 6970, + "totalBlockingTime": 39, + "maxPotentialFID": 128, + "cumulativeLayoutShift": 0.0022066405692419367, + "cumulativeLayoutShiftMainFrame": 0.0022066405692419367, + "totalCumulativeLayoutShift": 0.0022066405692419367, "observedTimeOrigin": 0, - "observedTimeOriginTs": 202793790, + "observedTimeOriginTs": 253588492, "observedNavigationStart": 0, - "observedNavigationStartTs": 202793790, - "observedFirstPaint": 1625, - "observedFirstPaintTs": 204418743, - "observedFirstContentfulPaint": 1625, - "observedFirstContentfulPaintTs": 204418743, - "observedFirstContentfulPaintAllFrames": 1625, - "observedFirstContentfulPaintAllFramesTs": 204418743, - "observedFirstMeaningfulPaint": 1780, - "observedFirstMeaningfulPaintTs": 204573628, - "observedLargestContentfulPaint": 1722, - "observedLargestContentfulPaintTs": 204515294, - "observedLargestContentfulPaintAllFrames": 1722, - "observedLargestContentfulPaintAllFramesTs": 204515294, - "observedTraceEnd": 4253, - "observedTraceEndTs": 207047034, - "observedLoad": 1769, - "observedLoadTs": 204563222, - "observedDomContentLoaded": 1617, - "observedDomContentLoadedTs": 204410956, - "observedCumulativeLayoutShift": 0.0004923381686297182, - "observedCumulativeLayoutShiftMainFrame": 0.0004923381686297182, - "observedTotalCumulativeLayoutShift": 0.0004923381686297182, - "observedFirstVisualChange": 1631, - "observedFirstVisualChangeTs": 204424790, - "observedLastVisualChange": 2098, - "observedLastVisualChangeTs": 204891790, - "observedSpeedIndex": 1688, - "observedSpeedIndexTs": 204481820 + "observedNavigationStartTs": 253588492, + "observedFirstPaint": 1662, + "observedFirstPaintTs": 255250564, + "observedFirstContentfulPaint": 1662, + "observedFirstContentfulPaintTs": 255250564, + "observedFirstContentfulPaintAllFrames": 1662, + "observedFirstContentfulPaintAllFramesTs": 255250564, + "observedFirstMeaningfulPaint": 1823, + "observedFirstMeaningfulPaintTs": 255411580, + "observedLargestContentfulPaint": 1740, + "observedLargestContentfulPaintTs": 255328890, + "observedLargestContentfulPaintAllFrames": 1740, + "observedLargestContentfulPaintAllFramesTs": 255328890, + "observedTraceEnd": 4219, + "observedTraceEndTs": 257807240, + "observedLoad": 1814, + "observedLoadTs": 255402025, + "observedDomContentLoaded": 1633, + "observedDomContentLoadedTs": 255221862, + "observedCumulativeLayoutShift": 0.0022066405692419367, + "observedCumulativeLayoutShiftMainFrame": 0.0022066405692419367, + "observedTotalCumulativeLayoutShift": 0.0022066405692419367, + "observedFirstVisualChange": 1651, + "observedFirstVisualChangeTs": 255239492, + "observedLastVisualChange": 2251, + "observedLastVisualChangeTs": 255839492, + "observedSpeedIndex": 1721, + "observedSpeedIndexTs": 255309287 }, { "lcpInvalidated": false @@ -443445,19 +440158,19 @@ "numScripts": 10, "numStylesheets": 3, "numFonts": 2, - "numTasks": 578, - "numTasksOver10ms": 4, - "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numTasks": 586, + "numTasksOver10ms": 5, + "numTasksOver25ms": 3, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.256, - "throughput": 8257454.761077761, - "maxRtt": 86.54899999999999, - "maxServerLatency": 125.753, - "totalByteWeight": 912570, - "totalTaskTime": 208.24599999999924, - "mainDocumentTransferSize": 4604 + "rtt": 1.597, + "throughput": 8562911.956704454, + "maxRtt": 85.217, + "maxServerLatency": 124.20900000000002, + "totalByteWeight": 912579, + "totalTaskTime": 268.9109999999994, + "mainDocumentTransferSize": 4561 } ] } @@ -443583,20 +440296,20 @@ "http": { "url": "https://disinfo.quaidorsay.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 16:32:08 GMT", + "end_time": "Sun, 14 Jan 2024 16:12:42 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Accept-Ranges": "bytes", "Access-Control-Allow-Origin": "*", - "Age": "131", + "Age": "129", "Cache-Control": "max-age=600", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Length": "1313", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 16:32:06 GMT", + "Date": "Sun, 14 Jan 2024 16:12:40 GMT", "ETag": "W/\"64faf83f-a05\"", "Last-Modified": "Fri, 08 Sep 2023 10:32:31 GMT", "Server": "nginx/1.18.0", @@ -443605,17 +440318,17 @@ "Via": "1.1 varnish", "X-Cache": "HIT", "X-Cache-Hits": "1", - "X-Fastly-Request-ID": "d3bec60f83431b3d518e7e14702fb2c835767bf6", - "X-GitHub-Request-Id": "6550:216DA0:8233AE1:8453D5D:659A07BF", - "X-Served-By": "cache-lcy-eglc8600065-LCY", - "X-Timer": "S1704645127.974798,VS0,VE1", - "expires": "Sun, 07 Jan 2024 02:19:04 GMT", + "X-Fastly-Request-ID": "7b806c42838b7bdd415ab5f4d100f8e9a456ed37", + "X-GitHub-Request-Id": "CF8A:2E0F96:73586FB:7517F5B:65A3DF3C", + "X-Served-By": "cache-lcy-eglc8600038-LCY", + "X-Timer": "S1705248761.978143,VS0,VE1", + "expires": "Sun, 14 Jan 2024 13:28:52 GMT", "permissions-policy": "interest-cohort=()", "x-proxy-cache": "MISS" }, - "scan_id": 46235885, + "scan_id": 46486785, "score": 40, - "start_time": "Sun, 07 Jan 2024 16:32:04 GMT", + "start_time": "Sun, 14 Jan 2024 16:12:38 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -443796,8 +440509,8 @@ "vulnerabilities": [ { "cvss": "5.0", - "is_exploit": "false", "id": "PRION:CVE-2016-20012", + "is_exploit": "false", "type": "prion" } ] @@ -444182,7 +440895,7 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "OK", - "finding": "77 >= 30 days" + "finding": "70 >= 30 days" }, { "id": "cert_notBefore", @@ -444378,21 +441091,21 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "+165 seconds from localtime" + "finding": "+167 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "1704645247" + "finding": "1705248884" }, { "id": "HTTP_headerAge", "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "165 seconds" + "finding": "167 seconds" }, { "id": "HSTS_time", @@ -444462,7 +441175,7 @@ "ip": "disinfo.quaidorsay.fr/198.244.157.26", "port": "443", "severity": "INFO", - "finding": "cache-lcy-eglc8600040-LCY" + "finding": "cache-lcy-eglc8600052-LCY" }, { "id": "Cache-Control", @@ -444987,7 +441700,7 @@ "value": "1", "domain": "disinfo.quaidorsay.fr", "path": "/", - "expires": 1704646960, + "expires": 1705250595, "size": 16, "httpOnly": false, "secure": false, @@ -444999,10 +441712,10 @@ }, { "name": "_pk_id.89.7763", - "value": "186bdce39fef9333.1704645160.", + "value": "b97f5298b2ec1aa8.1705248796.", "domain": "disinfo.quaidorsay.fr", "path": "/", - "expires": 1738600360, + "expires": 1739203996, "size": 42, "httpOnly": false, "secure": false, @@ -445021,9 +441734,9 @@ "content-encoding": "gzip", "content-length": "24565", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 16:32:39 GMT", + "date": "Sun, 14 Jan 2024 16:13:14 GMT", "etag": "W/\"64faf83f-10d49\"", - "expires": "Sun, 07 Jan 2024 16:39:56 GMT", + "expires": "Sun, 14 Jan 2024 16:20:32 GMT", "last-modified": "Fri, 08 Sep 2023 10:32:31 GMT", "permissions-policy": "interest-cohort=()", "server": "nginx/1.18.0", @@ -445032,11 +441745,11 @@ "via": "1.1 varnish", "x-cache": "HIT", "x-cache-hits": "1", - "x-fastly-request-id": "dc3533381502cd0fc7b0cdb4ec260a45c2ec7983", - "x-github-request-id": "BD90:3CB921:484EC27:497F663:659AD184", + "x-fastly-request-id": "ecb7fe319602dd7c6ccd54497eeee65ac14fbc45", + "x-github-request-id": "70AC:14A0FC:A04A195:A2BCA15:65A40775", "x-proxy-cache": "MISS", - "x-served-by": "cache-lcy-eglc8600073-LCY", - "x-timer": "S1704645159.905931,VS0,VE109" + "x-served-by": "cache-lcy-eglc8600055-LCY", + "x-timer": "S1705248794.369272,VS0,VE119" }, "endpoints": [ { @@ -445074,10 +441787,10 @@ "geoname_id": 2635167, "iso_code": "GB", "names": { - "de": "Vereinigtes Königreich", + "de": "UK", "en": "United Kingdom", "es": "Reino Unido", - "fr": "Royaume Uni", + "fr": "Royaume-Uni", "ja": "英国", "pt-BR": "Reino Unido", "ru": "Британия", @@ -445235,7 +441948,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 16:31:38", + "@generated": "Sun, 14 Jan 2024 16:12:13", "site": [ { "@name": "https://disinfo.quaidorsay.fr", @@ -445441,7 +442154,7 @@ "type": "dns", "host": "disinfo.quaidorsay.fr.", "matched-at": "disinfo.quaidorsay.fr", - "timestamp": "2024-01-07T16:35:27.966382894Z", + "timestamp": "2024-01-14T16:16:04.068894668Z", "matcher-status": true }, { @@ -445472,7 +442185,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:35:54.648551433Z", + "timestamp": "2024-01-14T16:16:31.143140938Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445504,7 +442217,7 @@ "nginx/1.18.0" ], "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:35:54.654460188Z", + "timestamp": "2024-01-14T16:16:31.149336417Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445531,7 +442244,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:36:41.544068885Z", + "timestamp": "2024-01-14T16:17:18.946672065Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445563,12 +442276,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:02.255002745Z", + "timestamp": "2024-01-14T16:17:39.69307458Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445600,12 +442313,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:02.255062817Z", + "timestamp": "2024-01-14T16:17:39.693132478Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445637,12 +442350,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:02.255087293Z", + "timestamp": "2024-01-14T16:17:39.693152074Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445674,12 +442387,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:02.255108373Z", + "timestamp": "2024-01-14T16:17:39.693167122Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445711,12 +442424,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:02.25512839Z", + "timestamp": "2024-01-14T16:17:39.693179625Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445748,12 +442461,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:02.255147626Z", + "timestamp": "2024-01-14T16:17:39.693193801Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445785,12 +442498,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:02.255165049Z", + "timestamp": "2024-01-14T16:17:39.693205904Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445822,12 +442535,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:02.255181349Z", + "timestamp": "2024-01-14T16:17:39.693218607Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445859,12 +442572,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:02.255198061Z", + "timestamp": "2024-01-14T16:17:39.693231151Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr'", "matcher-status": true }, @@ -445893,7 +442606,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr/Gemfile", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:17.280538777Z", + "timestamp": "2024-01-14T16:17:54.682671156Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr/Gemfile'", "matcher-status": true }, @@ -445922,7 +442635,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr/Gemfile.lock", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:17.848061711Z", + "timestamp": "2024-01-14T16:17:55.270902907Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr/Gemfile.lock'", "matcher-status": true }, @@ -445962,7 +442675,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr/", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:57.985508582Z", + "timestamp": "2024-01-14T16:18:35.699469531Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: disinfo.quaidorsay.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr/'", "matcher-status": true }, @@ -446002,7 +442715,7 @@ "host": "https://disinfo.quaidorsay.fr", "matched-at": "https://disinfo.quaidorsay.fr/", "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:37:57.985551963Z", + "timestamp": "2024-01-14T16:18:35.699509174Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: disinfo.quaidorsay.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://disinfo.quaidorsay.fr/'", "matcher-status": true }, @@ -446052,7 +442765,41 @@ "SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3" ], "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:38:42.296180765Z", + "timestamp": "2024-01-14T16:19:20.53342069Z", + "matcher-status": true + }, + { + "template": "network/jarm/c2/generic-c2-jarm.yaml", + "template-url": "https://templates.nuclei.sh/public/generic-c2-jarm", + "template-id": "generic-c2-jarm", + "template-path": "/home/runner/nuclei-templates/network/jarm/c2/generic-c2-jarm.yaml", + "info": { + "name": "Generic C2 JARM - Detect", + "author": [ + "pussycat0x" + ], + "tags": [ + "network", + "jarm", + "c2", + "ir", + "osint", + "cti" + ], + "description": "Detect C2 Servers with JARM Hashes\n", + "reference": [ + "https://github.com/michaelkoczwara/c2jarm" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "tcp", + "host": "disinfo.quaidorsay.fr:443", + "matched-at": "disinfo.quaidorsay.fr:443", + "ip": "198.244.157.26", + "timestamp": "2024-01-14T16:19:23.291543436Z", "matcher-status": true }, { @@ -446082,7 +442829,7 @@ "Let's Encrypt" ], "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:38:45.847069375Z", + "timestamp": "2024-01-14T16:19:23.969303055Z", "matcher-status": true }, { @@ -446112,41 +442859,7 @@ "disinfo.quaidorsay.fr" ], "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:38:45.847201422Z", - "matcher-status": true - }, - { - "template": "network/jarm/c2/generic-c2-jarm.yaml", - "template-url": "https://templates.nuclei.sh/public/generic-c2-jarm", - "template-id": "generic-c2-jarm", - "template-path": "/home/runner/nuclei-templates/network/jarm/c2/generic-c2-jarm.yaml", - "info": { - "name": "Generic C2 JARM - Detect", - "author": [ - "pussycat0x" - ], - "tags": [ - "network", - "jarm", - "c2", - "ir", - "osint", - "cti" - ], - "description": "Detect C2 Servers with JARM Hashes\n", - "reference": [ - "https://github.com/michaelkoczwara/c2jarm" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "tcp", - "host": "disinfo.quaidorsay.fr:443", - "matched-at": "disinfo.quaidorsay.fr:443", - "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:38:46.378645547Z", + "timestamp": "2024-01-14T16:19:23.969417328Z", "matcher-status": true }, { @@ -446177,7 +442890,7 @@ "tls12" ], "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:38:48.578495866Z", + "timestamp": "2024-01-14T16:19:26.02196451Z", "matcher-status": true }, { @@ -446208,7 +442921,7 @@ "tls13" ], "ip": "198.244.157.26", - "timestamp": "2024-01-07T16:38:48.878146301Z", + "timestamp": "2024-01-14T16:19:26.443958194Z", "matcher-status": true } ], @@ -446216,7 +442929,7 @@ { "requestedUrl": "https://disinfo.quaidorsay.fr/", "finalUrl": "https://disinfo.quaidorsay.fr/fr", - "fetchTime": "2024-01-07T16:31:52.628Z", + "fetchTime": "2024-01-14T16:12:27.679Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://disinfo.quaidorsay.fr/) was redirected to https://disinfo.quaidorsay.fr/fr. Try testing the second URL directly." ], @@ -446281,53 +442994,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2567, + "numericValue": 2094, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1470, - "firstMeaningfulPaint": 1770, - "largestContentfulPaint": 1620, - "interactive": 2567, - "speedIndex": 2161, - "totalBlockingTime": 395, - "maxPotentialFID": 520, + "firstContentfulPaint": 1359, + "firstMeaningfulPaint": 1659, + "largestContentfulPaint": 1659, + "interactive": 2094, + "speedIndex": 1631, + "totalBlockingTime": 67, + "maxPotentialFID": 184, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 373942768, + "observedTimeOriginTs": 201430258, "observedNavigationStart": 0, - "observedNavigationStartTs": 373942768, - "observedFirstPaint": 877, - "observedFirstPaintTs": 374819507, - "observedFirstContentfulPaint": 877, - "observedFirstContentfulPaintTs": 374819507, - "observedFirstContentfulPaintAllFrames": 877, - "observedFirstContentfulPaintAllFramesTs": 374819507, - "observedFirstMeaningfulPaint": 1167, - "observedFirstMeaningfulPaintTs": 375109494, - "observedLargestContentfulPaint": 1150, - "observedLargestContentfulPaintTs": 375092952, - "observedLargestContentfulPaintAllFrames": 1150, - "observedLargestContentfulPaintAllFramesTs": 375092952, - "observedTraceEnd": 3927, - "observedTraceEndTs": 377869478, - "observedLoad": 1619, - "observedLoadTs": 375561509, - "observedDomContentLoaded": 873, - "observedDomContentLoadedTs": 374815920, + "observedNavigationStartTs": 201430258, + "observedFirstPaint": 627, + "observedFirstPaintTs": 202057136, + "observedFirstContentfulPaint": 627, + "observedFirstContentfulPaintTs": 202057136, + "observedFirstContentfulPaintAllFrames": 627, + "observedFirstContentfulPaintAllFramesTs": 202057136, + "observedFirstMeaningfulPaint": 769, + "observedFirstMeaningfulPaintTs": 202199735, + "observedLargestContentfulPaint": 769, + "observedLargestContentfulPaintTs": 202199735, + "observedLargestContentfulPaintAllFrames": 769, + "observedLargestContentfulPaintAllFramesTs": 202199735, + "observedTraceEnd": 3560, + "observedTraceEndTs": 204990165, + "observedLoad": 1252, + "observedLoadTs": 202682483, + "observedDomContentLoaded": 600, + "observedDomContentLoadedTs": 202029823, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 875, - "observedFirstVisualChangeTs": 374817768, - "observedLastVisualChange": 1175, - "observedLastVisualChangeTs": 375117768, - "observedSpeedIndex": 1040, - "observedSpeedIndexTs": 374982333 + "observedFirstVisualChange": 628, + "observedFirstVisualChangeTs": 202058258, + "observedLastVisualChange": 778, + "observedLastVisualChangeTs": 202208258, + "observedSpeedIndex": 712, + "observedSpeedIndexTs": 202142581 }, { "lcpInvalidated": false @@ -446349,18 +443062,18 @@ "numScripts": 1, "numStylesheets": 2, "numFonts": 2, - "numTasks": 202, + "numTasks": 193, "numTasksOver10ms": 2, "numTasksOver25ms": 1, - "numTasksOver50ms": 1, - "numTasksOver100ms": 1, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 146.134, - "throughput": 5137566.17306609, - "maxRtt": 151.507, - "maxServerLatency": 120.16, - "totalByteWeight": 382854, - "totalTaskTime": 188.64099999999988, + "rtt": 142.985, + "throughput": 6838107.785233869, + "maxRtt": 149.554, + "maxServerLatency": 9.09299999999999, + "totalByteWeight": 382793, + "totalTaskTime": 101.52199999999998, "mainDocumentTransferSize": 1844 } ] @@ -446484,17 +443197,17 @@ "http": { "url": "https://opentermsarchive.org", "algorithm_version": 2, - "end_time": "Sat, 06 Jan 2024 19:33:00 GMT", + "end_time": "Sat, 13 Jan 2024 19:30:27 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Type": "text/html; charset=utf-8", - "Date": "Sat, 06 Jan 2024 19:32:57 GMT", + "Date": "Sat, 13 Jan 2024 19:30:25 GMT", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; includeSubDomains; preload", "Transfer-Encoding": "chunked", - "X-Request-ID": "612071ed-006e-474d-ae62-a8c65f6ad503", + "X-Request-ID": "67c97ff8-5587-45b1-a563-23de0ac74b68", "cache-control": "s-maxage=31536000, stale-while-revalidate", "content-encoding": "gzip", "content-security-policy": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr", @@ -446506,9 +443219,9 @@ "x-powered-by": "Next.js", "x-xss-protection": "1; mode=block" }, - "scan_id": 46221143, + "scan_id": 46430160, "score": 70, - "start_time": "Sat, 06 Jan 2024 19:32:54 GMT", + "start_time": "Sat, 13 Jan 2024 19:30:22 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -446532,21 +443245,21 @@ "'self'" ], "img-src": [ - "https://media-exp1.licdn.com", - "https://sibyll.in", + "data:", + "https://pbs.twimg.com", "'self'", - "https://www.gravatar.com", "https://avatars.githubusercontent.com", - "https://pbs.twimg.com", - "data:" + "https://media-exp1.licdn.com", + "https://www.gravatar.com", + "https://sibyll.in" ], "object-src": [ "'none'" ], "script-src": [ "https://stats.data.gouv.fr", - "'unsafe-eval'", - "'self'" + "'self'", + "'unsafe-eval'" ], "style-src": [ "'unsafe-inline'", @@ -446727,7 +443440,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-01T10:48:01Z", + "up_since": "2024-01-08T14:05:23Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -446739,8 +443452,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T16:50:47Z", - "next_check_at": "2024-01-07T16:55:47Z", + "last_check_at": "2024-01-14T16:26:26Z", + "next_check_at": "2024-01-14T16:31:25Z", "created_at": "2022-06-28T12:50:59Z", "mute_until": null, "favicon_url": "https://opentermsarchive.org/favicon-16x16.png", @@ -446748,7 +443461,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T16:25:54Z", + "tested_at": "2024-01-14T15:56:35Z", "expires_at": "2024-03-19T03:56:09Z", "valid": true, "error": null @@ -446757,11 +443470,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 360, - "connection": 138, - "handshake": 145, - "response": 148, - "total": 791 + "namelookup": 119, + "connection": 153, + "handshake": 166, + "response": 164, + "total": 602 } }, "uptimeGrade": "A", @@ -447139,7 +443852,7 @@ "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "OK", - "finding": "71 >= 30 days" + "finding": "64 >= 30 days" }, { "id": "cert_notBefore", @@ -447342,7 +444055,7 @@ "ip": "opentermsarchive.org/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704645675" + "finding": "1705249051" }, { "id": "HSTS_multiple", @@ -447937,77 +444650,77 @@ }, { "id": "service", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448015,7 +444728,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448023,7 +444736,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448031,7 +444744,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -448039,7 +444752,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -448047,7 +444760,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -448055,532 +444768,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "64 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-20 03:56" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-19 03:56" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704645730" + "finding": "1705249106" }, { "id": "HSTS_multiple", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "x-powered-by: Next.js" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -448588,7 +445301,7 @@ }, { "id": "heartbleed", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -448597,7 +445310,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -448606,7 +445319,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -448615,7 +445328,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -448624,7 +445337,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -448632,7 +445345,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -448641,7 +445354,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -448650,7 +445363,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -448659,7 +445372,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -448668,14 +445381,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -448684,7 +445397,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -448693,7 +445406,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -448702,7 +445415,7 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -448711,7 +445424,7 @@ }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -448720,7 +445433,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -448729,7 +445442,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -448738,7 +445451,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -448747,7 +445460,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -448756,7 +445469,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -448765,315 +445478,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/148.253.96.193", + "ip": "opentermsarchive.org/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" @@ -449425,7 +446138,7 @@ "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "OK", - "finding": "71 >= 30 days" + "finding": "64 >= 30 days" }, { "id": "cert_notBefore", @@ -449628,7 +446341,7 @@ "ip": "opentermsarchive.org/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704645784" + "finding": "1705249160" }, { "id": "HSTS_multiple", @@ -450223,77 +446936,77 @@ }, { "id": "service", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -450301,7 +447014,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -450309,7 +447022,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -450317,7 +447030,7 @@ }, { "id": "cipherlist_LOW", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -450325,7 +447038,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -450333,7 +447046,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -450341,532 +447054,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "64 >= 30 days" }, { "id": "cert_notBefore", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-20 03:56" }, { "id": "cert_notAfter", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-19 03:56" }, { "id": "cert_extlifeSpan", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704645839" + "finding": "1705249216" }, { "id": "HSTS_multiple", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "x-powered-by: Next.js" }, { "id": "cookie_count", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr" }, { "id": "X-XSS-Protection", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Cache-Control", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "s-maxage=31536000, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -450874,7 +447587,7 @@ }, { "id": "heartbleed", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -450883,7 +447596,7 @@ }, { "id": "CCS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -450892,7 +447605,7 @@ }, { "id": "ticketbleed", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -450901,7 +447614,7 @@ }, { "id": "ROBOT", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -450910,7 +447623,7 @@ }, { "id": "secure_renego", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -450918,7 +447631,7 @@ }, { "id": "secure_client_renego", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -450927,7 +447640,7 @@ }, { "id": "CRIME_TLS", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -450936,7 +447649,7 @@ }, { "id": "BREACH", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -450945,7 +447658,7 @@ }, { "id": "POODLE_SSL", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -450954,14 +447667,14 @@ }, { "id": "fallback_SCSV", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -450970,7 +447683,7 @@ }, { "id": "FREAK", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -450979,7 +447692,7 @@ }, { "id": "DROWN", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -450988,7 +447701,7 @@ }, { "id": "DROWN_hint", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -450997,7 +447710,7 @@ }, { "id": "LOGJAM", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -451006,7 +447719,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -451015,7 +447728,7 @@ }, { "id": "BEAST", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -451024,7 +447737,7 @@ }, { "id": "LUCKY13", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -451033,7 +447746,7 @@ }, { "id": "winshock", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -451042,7 +447755,7 @@ }, { "id": "RC4", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -451051,325 +447764,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "opentermsarchive.org/80.247.13.145", + "ip": "opentermsarchive.org/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "221" + "finding": "222" } ], "thirdparties": { @@ -451380,7 +448093,7 @@ "value": "1", "domain": "opentermsarchive.org", "path": "/", - "expires": 1704647418, + "expires": 1705250794, "size": 17, "httpOnly": false, "secure": false, @@ -451392,10 +448105,10 @@ }, { "name": "_pk_id.179.cd52", - "value": "95d773d605580d5a.1704645618.", + "value": "a8505943357d9450.1705248994.", "domain": "opentermsarchive.org", "path": "/", - "expires": 1738600818, + "expires": 1739204194, "size": 43, "httpOnly": false, "secure": false, @@ -451411,7 +448124,7 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; script-src 'self' 'unsafe-eval' https://stats.data.gouv.fr; object-src 'none'; style-src 'self' 'unsafe-inline'; connect-src 'self' https://stats.data.gouv.fr; img-src 'self' data: https://media-exp1.licdn.com https://www.gravatar.com https://avatars.githubusercontent.com https://pbs.twimg.com https://sibyll.in; frame-src 'self' https://stats.data.gouv.fr", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 16:40:17 GMT", + "date": "Sun, 14 Jan 2024 16:16:33 GMT", "etag": "\"h756mn5f8c1yrl\"", "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains; preload", "vary": "Accept-Encoding", @@ -451419,13 +448132,13 @@ "x-frame-options": "DENY", "x-nextjs-cache": "HIT", "x-powered-by": "Next.js", - "x-request-id": "be8fd9e6-2187-4665-b215-fc7773c9752e", + "x-request-id": "105e3220-4ae2-43de-aff2-d13dc279411d", "x-xss-protection": "1; mode=block" }, "endpoints": [ { "hostname": "opentermsarchive.org", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -451707,7 +448420,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 16:39:37", + "@generated": "Sun, 14 Jan 2024 16:15:52", "site": [ { "@name": "https://opentermsarchive.org", @@ -451847,22 +448560,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -451878,11 +448591,7 @@ "type": "dns", "host": "opentermsarchive.org.", "matched-at": "opentermsarchive.org", - "extracted-results": [ - "\"v=spf1 include:mx.ovh.com ~all\"", - "\"1|www.opentermsarchive.org\"" - ], - "timestamp": "2024-01-07T16:45:23.320299368Z", + "timestamp": "2024-01-14T16:21:40.282081531Z", "matcher-status": true }, { @@ -451919,30 +448628,33 @@ "host": "opentermsarchive.org.", "matched-at": "opentermsarchive.org", "extracted-results": [ + "40 mx4.mail.ovh.net.", "100 mx3.mail.ovh.net.", "50 mx2.mail.ovh.net.", - "5 mx1.mail.ovh.net.", - "40 mx4.mail.ovh.net.", - "1 mx0.mail.ovh.net." + "1 mx0.mail.ovh.net.", + "5 mx1.mail.ovh.net." ], - "timestamp": "2024-01-07T16:45:23.620591625Z", + "timestamp": "2024-01-14T16:21:40.502719932Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -451958,30 +448670,27 @@ "host": "opentermsarchive.org.", "matched-at": "opentermsarchive.org", "extracted-results": [ - "ns102.ovh.net.", - "dns102.ovh.net." + "\"1|www.opentermsarchive.org\"", + "\"v=spf1 include:mx.ovh.com ~all\"" ], - "timestamp": "2024-01-07T16:45:23.648759108Z", + "timestamp": "2024-01-14T16:21:41.247693048Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -451996,7 +448705,11 @@ "type": "dns", "host": "opentermsarchive.org.", "matched-at": "opentermsarchive.org", - "timestamp": "2024-01-07T16:45:24.304943484Z", + "extracted-results": [ + "ns102.ovh.net.", + "dns102.ovh.net." + ], + "timestamp": "2024-01-14T16:21:41.257414909Z", "matcher-status": true }, { @@ -452024,8 +448737,8 @@ "extracted-results": [ "GET, HEAD" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:45:30.278638123Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:21:47.369588449Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -452055,8 +448768,8 @@ "extracted-results": [ "contact@opentermsarchive.org" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:45:35.188299415Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:21:52.44311026Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -452096,8 +448809,8 @@ "extracted-results": [ "1; mode=block" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:45:35.279644801Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:21:52.533271949Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -452123,119 +448836,8 @@ "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:01.926858687Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://opentermsarchive.org", - "matched-at": "https://opentermsarchive.org", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:07.269743522Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://opentermsarchive.org", - "matched-at": "https://opentermsarchive.org", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:07.26980081Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://opentermsarchive.org", - "matched-at": "https://opentermsarchive.org", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:07.269818352Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:19.891882781Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -452271,8 +448873,8 @@ "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:07.269832228Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:25.295963934Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -452308,45 +448910,45 @@ "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:07.269873675Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://opentermsarchive.org", - "matched-at": "https://opentermsarchive.org", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:07.269893853Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:25.296010491Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://opentermsarchive.org", + "matched-at": "https://opentermsarchive.org", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:25.296023285Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -452382,8 +448984,119 @@ "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:07.26991377Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:25.296032403Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://opentermsarchive.org", + "matched-at": "https://opentermsarchive.org", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:25.296042271Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://opentermsarchive.org", + "matched-at": "https://opentermsarchive.org", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:25.296056818Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://opentermsarchive.org", + "matched-at": "https://opentermsarchive.org", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:25.296071676Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org'", "matcher-status": true }, @@ -452410,8 +449123,8 @@ "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org/robots.txt", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:16.723748459Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:34.959388373Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org/robots.txt'", "matcher-status": true }, @@ -452449,16 +449162,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantAddress", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "dns102.ovh.net", - "ns102.ovh.net" + "84", + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T16:46:17.725391394Z", + "timestamp": "2024-01-14T16:22:35.585160152Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452496,15 +449209,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantCountry", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "false" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T16:46:17.725428935Z", + "timestamp": "2024-01-14T16:22:35.585195759Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452542,16 +449255,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "nameServers", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "client transfer prohibited", - "client delete prohibited" + "dns102.ovh.net", + "ns102.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T16:46:17.725446167Z", + "timestamp": "2024-01-14T16:22:35.585213903Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452589,15 +449302,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "secureDNS", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "2021-02-17T09:50:19.265Z" + "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T16:46:17.725462287Z", + "timestamp": "2024-01-14T16:22:35.585231867Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452635,15 +449348,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "status", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "2023-11-28T13:20:00.875Z" + "client delete prohibited", + "client transfer prohibited" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T16:46:17.725479158Z", + "timestamp": "2024-01-14T16:22:35.585247366Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452681,15 +449395,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "registrationDate", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "2025-02-17T09:50:19.265Z" + "2021-02-17T09:50:19.265Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T16:46:17.725493285Z", + "timestamp": "2024-01-14T16:22:35.585262244Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452727,16 +449441,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "84", - "FR" + "2023-11-28T13:20:00.875Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T16:46:17.725509185Z", + "timestamp": "2024-01-14T16:22:35.58527624Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452774,15 +449487,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "expirationDate", "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://rdap.publicinterestregistry.org/rdap/domain/opentermsarchive.org", "extracted-results": [ - "FR" + "2025-02-17T09:50:19.265Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T16:46:17.725656179Z", + "timestamp": "2024-01-14T16:22:35.585293823Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/opentermsarchive.org'", "matcher-status": true }, @@ -452821,8 +449534,8 @@ "type": "http", "host": "https://opentermsarchive.org", "matched-at": "https://opentermsarchive.org/", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:46:29.855504792Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:22:48.474637662Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: opentermsarchive.org' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://opentermsarchive.org/'", "matcher-status": true }, @@ -452852,8 +449565,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:52:09.338399033Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:28:28.578472931Z", "matcher-status": true }, { @@ -452882,8 +449595,8 @@ "extracted-results": [ "opentermsarchive.org" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:52:09.338518867Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:28:28.578597995Z", "matcher-status": true }, { @@ -452913,8 +449626,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:52:10.690017367Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:28:29.949896715Z", "matcher-status": true }, { @@ -452944,8 +449657,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.96.193", - "timestamp": "2024-01-07T16:52:10.879982825Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T16:28:30.139792846Z", "matcher-status": true } ], @@ -452953,7 +449666,7 @@ { "requestedUrl": "https://opentermsarchive.org/", "finalUrl": "https://opentermsarchive.org/", - "fetchTime": "2024-01-07T16:39:50.991Z", + "fetchTime": "2024-01-14T16:16:06.740Z", "runWarnings": [], "categories": { "performance": { @@ -453016,53 +449729,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5226, + "numericValue": 5162, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1034, - "firstMeaningfulPaint": 1034, - "largestContentfulPaint": 1034, - "interactive": 5226, - "speedIndex": 1133, - "totalBlockingTime": 260, - "maxPotentialFID": 150, + "firstContentfulPaint": 1029, + "firstMeaningfulPaint": 1029, + "largestContentfulPaint": 1087, + "interactive": 5162, + "speedIndex": 1984, + "totalBlockingTime": 241, + "maxPotentialFID": 204, "cumulativeLayoutShift": 0.00007340929243299697, "cumulativeLayoutShiftMainFrame": 0.00007340929243299697, "totalCumulativeLayoutShift": 0.00007340929243299697, "observedTimeOrigin": 0, - "observedTimeOriginTs": 284000242, + "observedTimeOriginTs": 210550510, "observedNavigationStart": 0, - "observedNavigationStartTs": 284000242, - "observedFirstPaint": 468, - "observedFirstPaintTs": 284468023, - "observedFirstContentfulPaint": 468, - "observedFirstContentfulPaintTs": 284468023, - "observedFirstContentfulPaintAllFrames": 468, - "observedFirstContentfulPaintAllFramesTs": 284468023, - "observedFirstMeaningfulPaint": 468, - "observedFirstMeaningfulPaintTs": 284468023, - "observedLargestContentfulPaint": 468, - "observedLargestContentfulPaintTs": 284468023, - "observedLargestContentfulPaintAllFrames": 468, - "observedLargestContentfulPaintAllFramesTs": 284468023, - "observedTraceEnd": 3364, - "observedTraceEndTs": 287363993, - "observedLoad": 1056, - "observedLoadTs": 285055845, - "observedDomContentLoaded": 634, - "observedDomContentLoadedTs": 284634552, + "observedNavigationStartTs": 210550510, + "observedFirstPaint": 477, + "observedFirstPaintTs": 211027339, + "observedFirstContentfulPaint": 477, + "observedFirstContentfulPaintTs": 211027339, + "observedFirstContentfulPaintAllFrames": 477, + "observedFirstContentfulPaintAllFramesTs": 211027339, + "observedFirstMeaningfulPaint": 477, + "observedFirstMeaningfulPaintTs": 211027339, + "observedLargestContentfulPaint": 477, + "observedLargestContentfulPaintTs": 211027339, + "observedLargestContentfulPaintAllFrames": 477, + "observedLargestContentfulPaintAllFramesTs": 211027339, + "observedTraceEnd": 3236, + "observedTraceEndTs": 213786865, + "observedLoad": 704, + "observedLoadTs": 211254362, + "observedDomContentLoaded": 643, + "observedDomContentLoadedTs": 211193131, "observedCumulativeLayoutShift": 0.00007340929243299697, "observedCumulativeLayoutShiftMainFrame": 0.00007340929243299697, "observedTotalCumulativeLayoutShift": 0.00007340929243299697, - "observedFirstVisualChange": 471, - "observedFirstVisualChangeTs": 284471242, - "observedLastVisualChange": 755, - "observedLastVisualChangeTs": 284755242, - "observedSpeedIndex": 489, - "observedSpeedIndexTs": 284488953 + "observedFirstVisualChange": 457, + "observedFirstVisualChangeTs": 211007510, + "observedLastVisualChange": 741, + "observedLastVisualChangeTs": 211291510, + "observedSpeedIndex": 475, + "observedSpeedIndexTs": 211025225 }, { "lcpInvalidated": false @@ -453084,19 +449797,19 @@ "numScripts": 20, "numStylesheets": 3, "numFonts": 1, - "numTasks": 504, - "numTasksOver10ms": 6, - "numTasksOver25ms": 3, - "numTasksOver50ms": 0, + "numTasks": 502, + "numTasksOver10ms": 7, + "numTasksOver25ms": 4, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.051, - "throughput": 12582185.32026971, - "maxRtt": 82.643, - "maxServerLatency": 80.82399999999998, - "totalByteWeight": 777016, - "totalTaskTime": 269.87299999999937, - "mainDocumentTransferSize": 18190 + "rtt": 81.104, + "throughput": 13031593.331741283, + "maxRtt": 84.015, + "maxServerLatency": 72.82200000000002, + "totalByteWeight": 777214, + "totalTaskTime": 282.14499999999947, + "mainDocumentTransferSize": 18181 } ] } @@ -453226,7 +449939,7 @@ "http": { "url": "https://open-collectivites.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 16:51:33 GMT", + "end_time": "Sun, 14 Jan 2024 16:32:08 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -453234,7 +449947,7 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 16:51:31 GMT", + "Date": "Sun, 14 Jan 2024 16:32:07 GMT", "Referrer-Policy": "same-origin", "Server": "nginx/1.24.0", "Transfer-Encoding": "chunked", @@ -453242,9 +449955,9 @@ "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY" }, - "scan_id": 46235971, + "scan_id": 46488348, "score": 45, - "start_time": "Sun, 07 Jan 2024 16:51:28 GMT", + "start_time": "Sun, 14 Jan 2024 16:32:03 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -453425,129 +450138,123 @@ "vulnerabilities": [ { "is_exploit": "true", + "type": "exploitpack", "cvss": "5.8", - "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19", - "type": "exploitpack" + "id": "EXPLOITPACK:98FE96309F9524B8C84C508837551A19" }, { "is_exploit": "true", + "type": "exploitpack", "cvss": "5.8", - "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97", - "type": "exploitpack" + "id": "EXPLOITPACK:5330EA02EBDE345BFC9D6DDDD97F9E97" }, { "is_exploit": "true", + "type": "exploitdb", "cvss": "5.8", - "id": "EDB-ID:46516", - "type": "exploitdb" + "id": "EDB-ID:46516" }, { "is_exploit": "true", + "type": "exploitdb", "cvss": "5.8", - "id": "EDB-ID:46193", - "type": "exploitdb" + "id": "EDB-ID:46193" }, { "is_exploit": "false", + "type": "cve", "cvss": "5.8", - "id": "CVE-2019-6111", - "type": "cve" + "id": "CVE-2019-6111" }, { "is_exploit": "true", + "type": "zdt", "cvss": "5.8", - "id": "1337DAY-ID-32328", - "type": "zdt" + "id": "1337DAY-ID-32328" }, { "is_exploit": "true", + "type": "zdt", "cvss": "5.8", - "id": "1337DAY-ID-32009", - "type": "zdt" + "id": "1337DAY-ID-32009" }, { "is_exploit": "true", + "type": "canvas", "cvss": "5.0", - "id": "SSH_ENUM", - "type": "canvas" + "id": "SSH_ENUM" }, { "is_exploit": "false", + "type": "prion", "cvss": "5.0", - "id": "PRION:CVE-2018-15919", - "type": "prion" + "id": "PRION:CVE-2018-15919" }, { "is_exploit": "false", + "type": "prion", "cvss": "5.0", - "id": "PRION:CVE-2018-15473", - "type": "prion" - }, - { - "is_exploit": "true", - "cvss": "5.0", - "id": "PACKETSTORM:150621", - "type": "packetstorm" + "id": "PRION:CVE-2018-15473" }, { "is_exploit": "true", + "type": "packetstorm", "cvss": "5.0", - "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0", - "type": "exploitpack" + "id": "PACKETSTORM:150621" }, { "is_exploit": "true", + "type": "exploitpack", "cvss": "5.0", - "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283", - "type": "exploitpack" + "id": "EXPLOITPACK:F957D7E8A0CC1E23C3C649B764E13FB0" }, { "is_exploit": "true", + "type": "exploitpack", "cvss": "5.0", - "id": "EDB-ID:45939", - "type": "exploitdb" + "id": "EXPLOITPACK:EBDBC5685E3276D648B4D14B75563283" }, { "is_exploit": "true", + "type": "exploitdb", "cvss": "5.0", - "id": "EDB-ID:45233", - "type": "exploitdb" + "id": "EDB-ID:45939" }, { "is_exploit": "false", + "type": "cve", "cvss": "5.0", - "id": "CVE-2018-15919", - "type": "cve" + "id": "CVE-2018-15919" }, { "is_exploit": "false", + "type": "cve", "cvss": "5.0", - "id": "CVE-2018-15473", - "type": "cve" + "id": "CVE-2018-15473" }, { "is_exploit": "true", + "type": "zdt", "cvss": "5.0", - "id": "1337DAY-ID-31730", - "type": "zdt" + "id": "1337DAY-ID-31730" }, { "is_exploit": "true", + "type": "packetstorm", "cvss": "0.0", - "id": "PACKETSTORM:151227", - "type": "packetstorm" + "id": "PACKETSTORM:151227" }, { "is_exploit": "true", + "type": "metasploit", "cvss": "0.0", - "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-", - "type": "metasploit" + "id": "MSF:AUXILIARY-SCANNER-SSH-SSH_ENUMUSERS-" }, { "is_exploit": "true", + "type": "zdt", "cvss": "0.0", - "id": "1337DAY-ID-30937", - "type": "zdt" + "id": "1337DAY-ID-30937" } ] } @@ -453578,7 +450285,7 @@ } } ], - "grade": "F" + "grade": "E" }, "dependabot": null, "codescan": null, @@ -453951,7 +450658,7 @@ "ip": "open-collectivites.fr/5.39.67.78", "port": "443", "severity": "OK", - "finding": "74 >= 30 days" + "finding": "67 >= 30 days" }, { "id": "cert_notBefore", @@ -454147,14 +450854,14 @@ "ip": "open-collectivites.fr/5.39.67.78", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "open-collectivites.fr/5.39.67.78", "port": "443", "severity": "INFO", - "finding": "1704646414" + "finding": "1705250017" }, { "id": "HSTS", @@ -454747,7 +451454,7 @@ "ip": "open-collectivites.fr/5.39.67.78", "port": "443", "severity": "INFO", - "finding": "142" + "finding": "75" } ], "thirdparties": { @@ -454771,7 +451478,7 @@ "value": "1", "domain": "open-collectivites.fr", "path": "/", - "expires": 1704648125, + "expires": 1705251759, "size": 17, "httpOnly": false, "secure": false, @@ -454783,10 +451490,10 @@ }, { "name": "_pk_id.175.481d", - "value": "a924def3356ddb1c.1704646326.", + "value": "efa053298385bf0e.1705249960.", "domain": "open-collectivites.fr", "path": "/", - "expires": 1738601526, + "expires": 1739205160, "size": 43, "httpOnly": false, "secure": false, @@ -454801,7 +451508,7 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 16:52:04 GMT", + "date": "Sun, 14 Jan 2024 16:32:38 GMT", "referrer-policy": "same-origin", "server": "nginx/1.24.0", "transfer-encoding": "chunked", @@ -454815,15 +451522,11 @@ "ip": "5.39.67.78", "geoip": { "city": { - "geoname_id": 2980916, + "geoname_id": 3002401, "names": { - "de": "Saint-Denis", - "en": "Saint-Denis", - "es": "Saint-Denis", - "fr": "Saint-Denis", - "ja": "サン=ドニ", - "pt-BR": "Saint-Denis", - "ru": "Сен-Дени" + "en": "Le Raincy", + "fr": "Le Raincy", + "ja": "ル・ランシー" } }, "continent": { @@ -454856,13 +451559,13 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 48.9275, - "longitude": 2.3623, + "accuracy_radius": 500, + "latitude": 48.9029, + "longitude": 2.529, "time_zone": "Europe/Paris" }, "postal": { - "code": "93200" + "code": "93340" }, "registered_country": { "geoname_id": 3017382, @@ -454888,7 +451591,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -454909,15 +451614,11 @@ "ip": "5.39.67.78", "geoip": { "city": { - "geoname_id": 2980916, + "geoname_id": 3002401, "names": { - "de": "Saint-Denis", - "en": "Saint-Denis", - "es": "Saint-Denis", - "fr": "Saint-Denis", - "ja": "サン=ドニ", - "pt-BR": "Saint-Denis", - "ru": "Сен-Дени" + "en": "Le Raincy", + "fr": "Le Raincy", + "ja": "ル・ランシー" } }, "continent": { @@ -454950,13 +451651,13 @@ } }, "location": { - "accuracy_radius": 1000, - "latitude": 48.9275, - "longitude": 2.3623, + "accuracy_radius": 500, + "latitude": 48.9029, + "longitude": 2.529, "time_zone": "Europe/Paris" }, "postal": { - "code": "93200" + "code": "93340" }, "registered_country": { "geoname_id": 3017382, @@ -454982,7 +451683,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -455200,7 +451903,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 16:51:01", + "@generated": "Sun, 14 Jan 2024 16:29:37", "site": [ { "@name": "https://open-collectivites.fr", @@ -455364,28 +452067,24 @@ "type": "dns", "host": "open-collectivites.fr.", "matched-at": "open-collectivites.fr", - "timestamp": "2024-01-07T16:55:49.452793028Z", + "timestamp": "2024-01-14T16:35:06.668431912Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -455401,27 +452100,31 @@ "host": "open-collectivites.fr.", "matched-at": "open-collectivites.fr", "extracted-results": [ - "1 mx4.mail.ovh.net.", - "10 mx3.mail.ovh.net." + "ns101.ovh.net.", + "dns101.ovh.net." ], - "timestamp": "2024-01-07T16:55:50.275310293Z", + "timestamp": "2024-01-14T16:35:07.586856004Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -455437,10 +452140,10 @@ "host": "open-collectivites.fr.", "matched-at": "open-collectivites.fr", "extracted-results": [ - "ns101.ovh.net.", - "dns101.ovh.net." + "10 mx3.mail.ovh.net.", + "1 mx4.mail.ovh.net." ], - "timestamp": "2024-01-07T16:55:50.275749951Z", + "timestamp": "2024-01-14T16:35:07.662409731Z", "matcher-status": true }, { @@ -455471,7 +452174,7 @@ "nginx/1.24.0" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:56:16.011934732Z", + "timestamp": "2024-01-14T16:35:23.110365512Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455498,7 +452201,7 @@ "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:08.863380514Z", + "timestamp": "2024-01-14T16:35:56.950423763Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455530,12 +452233,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:30.532343544Z", + "timestamp": "2024-01-14T16:36:10.188377032Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455567,12 +452270,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:30.53240043Z", + "timestamp": "2024-01-14T16:36:10.188418981Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455604,12 +452307,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:30.532418744Z", + "timestamp": "2024-01-14T16:36:10.188436814Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455641,12 +452344,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:30.532436747Z", + "timestamp": "2024-01-14T16:36:10.18844547Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455678,12 +452381,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:30.532455302Z", + "timestamp": "2024-01-14T16:36:10.188459326Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455715,12 +452418,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:30.532471943Z", + "timestamp": "2024-01-14T16:36:10.188593867Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455752,12 +452455,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:30.532482342Z", + "timestamp": "2024-01-14T16:36:10.188610609Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455789,12 +452492,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:30.532492361Z", + "timestamp": "2024-01-14T16:36:10.188623984Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, @@ -455824,10 +452527,567 @@ "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:57:30.533858022Z", + "timestamp": "2024-01-14T16:36:10.190055346Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr'", "matcher-status": true }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantCountry", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "FR" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173373008Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "secureDNS", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "false" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173413403Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "lastChangeDate", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "2024-01-05T11:54:02.282144Z" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173429384Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantOrg", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "DGCL" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173445343Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantEmail", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "4c3hbdbcsnslde99s7ak@u.o-w-o.info" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173463918Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantPhone", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "+33.149273723" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173477864Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantAddress", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "FR", + "2 place des Saussaies", + "Paris", + "75008" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173490087Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "nameServers", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "dns101.ovh.net", + "ns101.ovh.net" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173633274Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "status", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "active", + "auto renew period" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.1736523Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrationDate", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "2021-01-05T11:51:50Z" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173669101Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "expirationDate", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "2025-01-05T11:51:50Z" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.173685502Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantName", + "type": "http", + "host": "https://open-collectivites.fr", + "matched-at": "https://rdap.nic.fr/domain/open-collectivites.fr", + "extracted-results": [ + "DGCL" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T16:36:25.17370064Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/open-collectivites.fr'", + "matcher-status": true + }, { "template": "http/technologies/waf-detect.yaml", "template-url": "https://templates.nuclei.sh/public/waf-detect", @@ -455864,7 +453124,7 @@ "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr/", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:58:25.531790381Z", + "timestamp": "2024-01-14T16:36:43.828800563Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: open-collectivites.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr/'", "matcher-status": true }, @@ -455904,7 +453164,7 @@ "host": "https://open-collectivites.fr", "matched-at": "https://open-collectivites.fr/", "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:58:25.531855492Z", + "timestamp": "2024-01-14T16:36:43.828843533Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: open-collectivites.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://open-collectivites.fr/'", "matcher-status": true }, @@ -455954,55 +453214,54 @@ "SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T16:59:40.213906503Z", + "timestamp": "2024-01-14T16:37:41.596418965Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam", - "pussycat0x" + "lingtren" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "open-collectivites.fr", "matched-at": "open-collectivites.fr:443", "extracted-results": [ - "tls10" + "Let's Encrypt" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T17:00:30.786921881Z", + "timestamp": "2024-01-14T16:38:31.564590815Z", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "SSL DNS Names", "author": [ - "lingtren" + "pdteam" ], "tags": [ "ssl", "tls" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { "max-request": 1 @@ -456012,10 +453271,43 @@ "host": "open-collectivites.fr", "matched-at": "open-collectivites.fr:443", "extracted-results": [ - "Let's Encrypt" + "dev.open-collectivites.fr", + "open-collectivites.fr", + "www.open-collectivites.fr" + ], + "ip": "5.39.67.78", + "timestamp": "2024-01-14T16:38:31.564714095Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "open-collectivites.fr", + "matched-at": "open-collectivites.fr:443", + "extracted-results": [ + "tls10" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T17:00:30.910535119Z", + "timestamp": "2024-01-14T16:38:31.56664196Z", "matcher-status": true }, { @@ -456051,39 +453343,38 @@ "[tls10 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA]" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T17:00:30.910656785Z", + "timestamp": "2024-01-14T16:38:31.609642296Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "SSL DNS Names", + "name": "TLS Version - Detect", "author": [ - "pdteam" + "pdteam", + "pussycat0x" ], "tags": [ "ssl", "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "open-collectivites.fr", "matched-at": "open-collectivites.fr:443", "extracted-results": [ - "dev.open-collectivites.fr", - "open-collectivites.fr", - "www.open-collectivites.fr" + "tls11" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T17:00:30.910737784Z", + "timestamp": "2024-01-14T16:38:31.853723002Z", "matcher-status": true }, { @@ -456119,74 +453410,74 @@ "tls10" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T17:00:30.98204421Z", + "timestamp": "2024-01-14T16:38:31.856164562Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Weak Cipher Suites Detection", "author": [ - "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls" + "tls", + "misconfig" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" + ], + "severity": "low", "metadata": { "max-request": 4 } }, + "matcher-name": "tls-1.1", "type": "ssl", "host": "open-collectivites.fr", "matched-at": "open-collectivites.fr:443", "extracted-results": [ - "tls11" + "[tls11 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA]" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T17:00:31.25082585Z", + "timestamp": "2024-01-14T16:38:31.899467972Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "TLS Version - Detect", "author": [ + "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "tls" ], - "severity": "low", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", "metadata": { "max-request": 4 } }, - "matcher-name": "tls-1.1", "type": "ssl", "host": "open-collectivites.fr", "matched-at": "open-collectivites.fr:443", "extracted-results": [ - "[tls11 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA]" + "tls12" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T17:00:31.366818594Z", + "timestamp": "2024-01-14T16:38:32.143125202Z", "matcher-status": true }, { @@ -456222,38 +453513,7 @@ "tls11" ], "ip": "5.39.67.78", - "timestamp": "2024-01-07T17:00:31.44434169Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "open-collectivites.fr", - "matched-at": "open-collectivites.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "5.39.67.78", - "timestamp": "2024-01-07T17:00:31.704173284Z", + "timestamp": "2024-01-14T16:38:32.144483113Z", "matcher-status": true } ], @@ -456261,7 +453521,7 @@ { "requestedUrl": "https://open-collectivites.fr/", "finalUrl": "https://open-collectivites.fr/", - "fetchTime": "2024-01-07T16:51:16.846Z", + "fetchTime": "2024-01-14T16:31:53.228Z", "runWarnings": [], "categories": { "performance": { @@ -456324,53 +453584,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5944, + "numericValue": 6103, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3175, - "firstMeaningfulPaint": 3175, - "largestContentfulPaint": 3482, - "interactive": 5944, - "speedIndex": 4117, - "totalBlockingTime": 3, - "maxPotentialFID": 55, - "cumulativeLayoutShift": 0.044512552897135425, - "cumulativeLayoutShiftMainFrame": 0.044512552897135425, - "totalCumulativeLayoutShift": 0.044512552897135425, + "firstContentfulPaint": 3633, + "firstMeaningfulPaint": 3633, + "largestContentfulPaint": 4915, + "interactive": 6103, + "speedIndex": 3747, + "totalBlockingTime": 2, + "maxPotentialFID": 54, + "cumulativeLayoutShift": 0.0024618055555555556, + "cumulativeLayoutShiftMainFrame": 0.0024618055555555556, + "totalCumulativeLayoutShift": 0.0024618055555555556, "observedTimeOrigin": 0, - "observedTimeOriginTs": 314995298, + "observedTimeOriginTs": 485767881, "observedNavigationStart": 0, - "observedNavigationStartTs": 314995298, - "observedFirstPaint": 1256, - "observedFirstPaintTs": 316250866, - "observedFirstContentfulPaint": 1256, - "observedFirstContentfulPaintTs": 316250866, - "observedFirstContentfulPaintAllFrames": 1256, - "observedFirstContentfulPaintAllFramesTs": 316250866, - "observedFirstMeaningfulPaint": 1256, - "observedFirstMeaningfulPaintTs": 316250866, - "observedLargestContentfulPaint": 1256, - "observedLargestContentfulPaintTs": 316250866, - "observedLargestContentfulPaintAllFrames": 1256, - "observedLargestContentfulPaintAllFramesTs": 316250866, - "observedTraceEnd": 4616, - "observedTraceEndTs": 319611419, - "observedLoad": 2309, - "observedLoadTs": 317304039, - "observedDomContentLoaded": 1641, - "observedDomContentLoadedTs": 316636217, - "observedCumulativeLayoutShift": 0.044512552897135425, - "observedCumulativeLayoutShiftMainFrame": 0.044512552897135425, - "observedTotalCumulativeLayoutShift": 0.044512552897135425, - "observedFirstVisualChange": 1258, - "observedFirstVisualChangeTs": 316253298, - "observedLastVisualChange": 1692, - "observedLastVisualChangeTs": 316687298, - "observedSpeedIndex": 1291, - "observedSpeedIndexTs": 316286015 + "observedNavigationStartTs": 485767881, + "observedFirstPaint": 876, + "observedFirstPaintTs": 486644258, + "observedFirstContentfulPaint": 876, + "observedFirstContentfulPaintTs": 486644258, + "observedFirstContentfulPaintAllFrames": 876, + "observedFirstContentfulPaintAllFramesTs": 486644258, + "observedFirstMeaningfulPaint": 876, + "observedFirstMeaningfulPaintTs": 486644258, + "observedLargestContentfulPaint": 876, + "observedLargestContentfulPaintTs": 486644258, + "observedLargestContentfulPaintAllFrames": 876, + "observedLargestContentfulPaintAllFramesTs": 486644258, + "observedTraceEnd": 3696, + "observedTraceEndTs": 489464171, + "observedLoad": 1388, + "observedLoadTs": 487155604, + "observedDomContentLoaded": 1029, + "observedDomContentLoadedTs": 486796944, + "observedCumulativeLayoutShift": 0.0024618055555555556, + "observedCumulativeLayoutShiftMainFrame": 0.0024618055555555556, + "observedTotalCumulativeLayoutShift": 0.0024618055555555556, + "observedFirstVisualChange": 879, + "observedFirstVisualChangeTs": 486646881, + "observedLastVisualChange": 1212, + "observedLastVisualChangeTs": 486979881, + "observedSpeedIndex": 895, + "observedSpeedIndexTs": 486662533 }, { "lcpInvalidated": false @@ -456392,18 +453652,18 @@ "numScripts": 8, "numStylesheets": 4, "numFonts": 3, - "numTasks": 1137, + "numTasks": 1100, "numTasksOver10ms": 5, "numTasksOver25ms": 2, - "numTasksOver50ms": 1, + "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 142.712, - "throughput": 7645311.613046288, - "maxRtt": 150.989, - "maxServerLatency": 146.26300000000003, + "rtt": 76.992, + "throughput": 13418731.701823944, + "maxRtt": 84.839, + "maxServerLatency": 85.52199999999996, "totalByteWeight": 1025155, - "totalTaskTime": 258.46899999999806, + "totalTaskTime": 228.3939999999988, "mainDocumentTransferSize": 7458 } ] @@ -456461,7 +453721,7 @@ "sonarcloud": null, "summary": { "httpGrade": "C-", - "nmapGrade": "F", + "nmapGrade": "E", "nmapOpenPortsCount": 4, "nmapOpenPortsGrade": "F", "testsslExpireSoon": false, @@ -456500,7 +453760,7 @@ "http": { "url": "https://mon-suivi-justice.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 16:57:36 GMT", + "end_time": "Sun, 14 Jan 2024 16:34:53 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -456509,11 +453769,11 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 16:57:35 GMT", - "ETag": "W/\"abcff667ed59dea4b4230f578c6e3def\"", - "Link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", + "Date": "Sun, 14 Jan 2024 16:34:52 GMT", + "ETag": "W/\"c5173c6d4c84f5343d365f355fc145ca\"", + "Link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_mon_suivi_justice_public_session=Q3SPEdRM3JTzL6oBFHTtfYrKy%2FdpY8bAb5OHsGbiE5BK9W1e9uc9gEJBWJppvbeaUw93Lbe%2BoNsjP3lFvML%2BS1ASTG%2FNgfBje6mL%2FjgWB4%2FktUrIvjX4LWrNGtop8gisq7FYBH3gnWI3%2BsOFm5XhRRSa%2FtEVditGQVMSVKt%2Bd36lVMkwrz7bKgweqHbV3gtKNuoWaE5E8BQcmdqcDvZjvDW4ex%2FusfxbSNoBSDdnjdzIdF1KV4k%2F0zaGcZlIB6liCi7DBoq8f5xPBDNgPnE99enCCK7ByOtfDXcHEKAIff455p8hL%2BwJaIg%3D--EM3uT9rjrt%2B9x6vf--K6605SC43tlQBU5SHH0nLw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_mon_suivi_justice_public_session=2gBCjNimpANhsodxAXbSctN9TJ7T%2F9oso5wzhyTkfGVmF669LwaPcy0ncGOeOqlD8kAndqKBTg2%2BiMwma04VYER3wgVh7F4ts2JSrW8PPo2rKe6yNiiWq5GFr87IQngDSLJXdZki4Q%2FK0AhzXeLMLhBSpvpPO%2FqdezQ5p4wXPXsmBNJJhCLpdMYUIEKpIb%2B%2By4WW%2BaYnqviiDS9t5JS4s%2FisuZAkx3FRaAZ3c7Kz4E%2BTAaTefB6cCGY0GqY2kPQbPZF2LgK2GiB7yCaTd2QvxMWMjI7NyVX7D3M%2BvwhXtESQKMT8pyGzgPo%3D--INzRp0um67aEJW8Z--DIAW5KjGuBwzZyFLuQ6btg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; includeSubDomains", "Transfer-Encoding": "chunked", "Vary": "Accept", @@ -456521,13 +453781,13 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "b5e559fd-3def-49bb-93c8-1c65d532a481, b5e559fd-3def-49bb-93c8-1c65d532a481", - "X-Runtime": "0.012906", + "X-Request-ID": "031c7bd8-b02f-4547-b0f3-03ff5e2a4ee6, 031c7bd8-b02f-4547-b0f3-03ff5e2a4ee6", + "X-Runtime": "0.016562", "X-XSS-Protection": "0" }, - "scan_id": 46235986, + "scan_id": 46488582, "score": 45, - "start_time": "Sun, 07 Jan 2024 16:57:32 GMT", + "start_time": "Sun, 14 Jan 2024 16:34:49 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -456724,8 +453984,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T16:18:17Z", - "next_check_at": "2024-01-07T17:17:58Z", + "last_check_at": "2024-01-14T16:24:39Z", + "next_check_at": "2024-01-14T17:24:37Z", "created_at": "2021-11-20T13:58:53Z", "mute_until": null, "favicon_url": "https://mon-suivi-justice.beta.gouv.fr/packs/media/images/favicon-7358ba85.ico", @@ -456733,7 +453993,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T10:20:32Z", + "tested_at": "2024-01-14T11:26:35Z", "expires_at": "2024-03-18T08:39:15Z", "valid": true, "error": null @@ -456766,1163 +454026,6 @@ "dependabot": null, "codescan": null, "testssl": [ - { - "id": "service", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2023-12-19 08:39" - }, - { - "id": "cert_notAfter", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2024-03-18 08:39" - }, - { - "id": "cert_extlifeSpan", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1704646788" - }, - { - "id": "HSTS_multiple", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "MEDIUM", - "finding": "Multiple HSTS headers. Using first header: max-age=31536000" - }, - { - "id": "HSTS_time", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No application banner found" - }, - { - "id": "cookie_count", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1 at '/'" - }, - { - "id": "cookie_secure", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as secure" - }, - { - "id": "cookie_httponly", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "All (1) at '/' marked as HttpOnly" - }, - { - "id": "X-Frame-Options", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "X-Content-Type-Options", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "X-XSS-Protection", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0" - }, - { - "id": "Referrer-Policy", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "strict-origin-when-cross-origin" - }, - { - "id": "Cache-Control", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "max-age=0, private, must-revalidate" - }, - { - "id": "banner_reverseproxy", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D14A5E7D64F993035891AC4A8811E556563498AE98F10E7957C9C2495BB4DF7" - }, - { - "id": "LOGJAM", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" - }, { "id": "service", "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", @@ -458270,7 +454373,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "70 >= 30 days" + "finding": "63 >= 30 days" }, { "id": "cert_notBefore", @@ -458473,7 +454576,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704646887" + "finding": "1705250184" }, { "id": "HSTS_multiple", @@ -459427,7 +455530,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "70 >= 30 days" + "finding": "63 >= 30 days" }, { "id": "cert_notBefore", @@ -459630,7 +455733,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704646987" + "finding": "1705250239" }, { "id": "HSTS_multiple", @@ -460584,7 +456687,7 @@ "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "70 >= 30 days" + "finding": "63 >= 30 days" }, { "id": "cert_notBefore", @@ -460780,14 +456883,14 @@ "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704647087" + "finding": "1705250293" }, { "id": "HSTS_multiple", @@ -461394,12 +457497,1169 @@ "severity": "OK", "finding": "A+" }, + { + "id": "service", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2023-12-19 08:39" + }, + { + "id": "cert_notAfter", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2024-03-18 08:39" + }, + { + "id": "cert_extlifeSpan", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1705250349" + }, + { + "id": "HSTS_multiple", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "MEDIUM", + "finding": "Multiple HSTS headers. Using first header: max-age=31536000" + }, + { + "id": "HSTS_time", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No application banner found" + }, + { + "id": "cookie_count", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1 at '/'" + }, + { + "id": "cookie_secure", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as secure" + }, + { + "id": "cookie_httponly", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "All (1) at '/' marked as HttpOnly" + }, + { + "id": "X-Frame-Options", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "X-Content-Type-Options", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "X-XSS-Protection", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0" + }, + { + "id": "Referrer-Policy", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "strict-origin-when-cross-origin" + }, + { + "id": "Cache-Control", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "max-age=0, private, must-revalidate" + }, + { + "id": "banner_reverseproxy", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=2D14A5E7D64F993035891AC4A8811E556563498AE98F10E7957C9C2495BB4DF7" + }, + { + "id": "LOGJAM", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A+" + }, { "id": "scanTime", - "ip": "mon-suivi-justice.beta.gouv.fr/185.21.194.105", + "ip": "mon-suivi-justice.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "403" + "finding": "222" } ], "thirdparties": { @@ -461407,11 +458667,11 @@ "cookies": [ { "name": "_mon_suivi_justice_public_session", - "value": "8OiCi3y5vaj4nYCHFUR%2BF832UdDR9olA22JHQKfF4fiSHTq8Xl7mZInZW8XBb94UKmwWo5cEfiQX3Pb%2Fm2YyDUQI9m%2BuKnZU2p8wi0PBqhDBZ8EbeDMRF6Abc%2BHHnIawWGReBPj2%2FEA%2F7uMyKzxJbc1uFNUwl4yeUdPFoVl2C0N6sSaEt%2BA93sEDwEzOpETY26CvMVYFRogwYGhU52yPhbBb%2BtHFessqHmzUpq1ubpqQuO3oCo7cAUpSXdq4h06OeleqzxKmMY62wrXhv67dIYg6as4AvA5k%2FSc9PhLb6CgDVJXdu8hy57M%3D--%2FYBl5P8JLwXgUn13--g3sztTmShTjFo3kjsVawzw%3D%3D", + "value": "ISq8zZGJT8Ky%2FTTYt4ncpWIZIiaziwlFkicAdUB9djywpZCc003x0rTCtZPVqfagfSQ9PqYbN3kTfucT2RSVUq6keSlYwai2DzGdhEXJb7C4V5pOhdk%2BuIFyKhIJouCq13ng9ZCHtuf3GudUDsFwpDttSyeMGEj87fBAPZ%2BWeJuYRBGJvgixd5sxFdkiyKjmtFKWNIUe%2BFzlHW2ZPOK4ZwCJGLcR4uspLlcn3vMPEI3igr%2FwiCdM1pQ1YcDa1cTLZG%2F0x%2FAof6UCCiM2JyB%2FOMBbq1GgYKOzFw4B1nj0%2B%2FcrXc%2BV5U%2FHlC8%3D--MVb6nG5y8ZUOPrAV--8KlAxHZwHFoTBmyPANESCQ%3D%3D", "domain": "mon-suivi-justice.beta.gouv.fr", "path": "/", "expires": -1, - "size": 415, + "size": 419, "httpOnly": true, "secure": true, "session": true, @@ -461425,18 +458685,18 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 16:58:12 GMT", - "etag": "W/\"fc0f969d79fbdf1d8afc2574776b6884\"", - "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", + "date": "Sun, 14 Jan 2024 16:35:25 GMT", + "etag": "W/\"e9f259d50ad3bab13a143276be9f111f\"", + "link": "; rel=preload; as=style; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_mon_suivi_justice_public_session=8OiCi3y5vaj4nYCHFUR%2BF832UdDR9olA22JHQKfF4fiSHTq8Xl7mZInZW8XBb94UKmwWo5cEfiQX3Pb%2Fm2YyDUQI9m%2BuKnZU2p8wi0PBqhDBZ8EbeDMRF6Abc%2BHHnIawWGReBPj2%2FEA%2F7uMyKzxJbc1uFNUwl4yeUdPFoVl2C0N6sSaEt%2BA93sEDwEzOpETY26CvMVYFRogwYGhU52yPhbBb%2BtHFessqHmzUpq1ubpqQuO3oCo7cAUpSXdq4h06OeleqzxKmMY62wrXhv67dIYg6as4AvA5k%2FSc9PhLb6CgDVJXdu8hy57M%3D--%2FYBl5P8JLwXgUn13--g3sztTmShTjFo3kjsVawzw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_mon_suivi_justice_public_session=ISq8zZGJT8Ky%2FTTYt4ncpWIZIiaziwlFkicAdUB9djywpZCc003x0rTCtZPVqfagfSQ9PqYbN3kTfucT2RSVUq6keSlYwai2DzGdhEXJb7C4V5pOhdk%2BuIFyKhIJouCq13ng9ZCHtuf3GudUDsFwpDttSyeMGEj87fBAPZ%2BWeJuYRBGJvgixd5sxFdkiyKjmtFKWNIUe%2BFzlHW2ZPOK4ZwCJGLcR4uspLlcn3vMPEI3igr%2FwiCdM1pQ1YcDa1cTLZG%2F0x%2FAof6UCCiM2JyB%2FOMBbq1GgYKOzFw4B1nj0%2B%2FcrXc%2BV5U%2FHlC8%3D--MVb6nG5y8ZUOPrAV--8KlAxHZwHFoTBmyPANESCQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "e98306d4-1bfa-4c52-a1b8-b19b96b5e46a\ne98306d4-1bfa-4c52-a1b8-b19b96b5e46a", - "x-runtime": "0.015540", + "x-request-id": "44834fb0-aa9f-4cf5-9518-f1eb2eb0600e\n44834fb0-aa9f-4cf5-9518-f1eb2eb0600e", + "x-runtime": "0.017191", "x-xss-protection": "0" }, "endpoints": [ @@ -461576,6 +458836,24 @@ ], "rootPath": true }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ], + "rootPath": true + }, { "slug": "sendinblue", "name": "Sendinblue", @@ -461599,24 +458877,6 @@ ], "rootPath": true }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ], - "rootPath": true - }, { "slug": "webpack", "name": "Webpack", @@ -461640,7 +458900,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 16:57:07", + "@generated": "Sun, 14 Jan 2024 16:34:25", "site": [ { "@name": "https://mon-suivi-justice.beta.gouv.fr", @@ -461773,22 +459033,23 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -461805,30 +459066,30 @@ "host": "mon-suivi-justice.beta.gouv.fr.", "matched-at": "mon-suivi-justice.beta.gouv.fr", "extracted-results": [ - "\"Sendinblue-code:aa0242da3881fa910a302178893d437f\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"", - "\"brevo-code:6a4eccf98af09a99d68fd8f855ab3e7e\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T17:06:38.752053823Z", + "timestamp": "2024-01-14T16:40:34.351162149Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "CAA Record", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "caa" + "dmarc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -461838,30 +459099,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "mon-suivi-justice.beta.gouv.fr.", - "matched-at": "mon-suivi-justice.beta.gouv.fr", - "timestamp": "2024-01-07T17:06:38.913495888Z", + "matched-at": "_dmarc.mon-suivi-justice.beta.gouv.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + ], + "timestamp": "2024-01-14T16:40:34.35257751Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -461876,31 +459144,26 @@ "type": "dns", "host": "mon-suivi-justice.beta.gouv.fr.", "matched-at": "mon-suivi-justice.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2024-01-07T17:06:39.147151304Z", + "timestamp": "2024-01-14T16:40:34.371849189Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "DNS TXT Record Detected", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "txt" ], - "description": "DNS DMARC information was detected.\n", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -461910,38 +459173,35 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "mon-suivi-justice.beta.gouv.fr.", - "matched-at": "_dmarc.mon-suivi-justice.beta.gouv.fr", + "matched-at": "mon-suivi-justice.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + "\"v=spf1 include:spf.sendinblue.com mx ~all\"", + "\"brevo-code:6a4eccf98af09a99d68fd8f855ab3e7e\"", + "\"Sendinblue-code:aa0242da3881fa910a302178893d437f\"" ], - "timestamp": "2024-01-07T17:06:39.895734577Z", + "timestamp": "2024-01-14T16:40:34.583357092Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -461957,49 +459217,10 @@ "host": "mon-suivi-justice.beta.gouv.fr.", "matched-at": "mon-suivi-justice.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2024-01-07T17:06:40.049907449Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/httponly-cookie-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/httponly-cookie-detect", - "template-id": "httponly-cookie-detect", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/httponly-cookie-detect.yaml", - "info": { - "name": "HttpOnly Cookie - Detect", - "author": [ - "mr. bobo hp" - ], - "tags": [ - "misconfig", - "http", - "cookie", - "generic" - ], - "description": "Checks whether cookies in the HTTP response contain the HttpOnly attribute. If the HttpOnly flag is set, it means that the cookie is HTTP-only\n", - "reference": [ - "https://stackoverflow.com/questions/4316539/how-do-i-test-httponly-cookie-flag" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": null, - "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "type": "http", - "host": "https://mon-suivi-justice.beta.gouv.fr", - "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:06:58.610835028Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", + "timestamp": "2024-01-14T16:40:34.59041181Z", "matcher-status": true }, { @@ -462030,12 +459251,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:07:54.496113844Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:41:32.757249028Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462067,12 +459288,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:07:54.496162304Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:41:32.757289845Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462104,12 +459325,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:07:54.496172813Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:41:32.757300424Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462141,12 +459362,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:07:54.496187761Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:41:32.757309371Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462178,12 +459399,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "permissions-policy", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:07:54.496205564Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:41:32.757322826Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462215,12 +459436,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mon-suivi-justice.beta.gouv.fr", "matched-at": "https://mon-suivi-justice.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:07:54.496223147Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:41:32.757339778Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon-suivi-justice.beta.gouv.fr'", "matcher-status": true }, @@ -462250,8 +459471,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:14:27.223911013Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:47:45.921349032Z", "matcher-status": true }, { @@ -462280,8 +459501,8 @@ "extracted-results": [ "mon-suivi-justice.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:14:27.224021198Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:47:45.921475107Z", "matcher-status": true }, { @@ -462311,8 +459532,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:14:29.871076338Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:47:50.473584378Z", "matcher-status": true }, { @@ -462342,8 +459563,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:14:30.180108755Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:47:50.661353609Z", "matcher-status": true } ], @@ -462351,7 +459572,7 @@ { "requestedUrl": "https://mon-suivi-justice.beta.gouv.fr/", "finalUrl": "https://mon-suivi-justice.beta.gouv.fr/", - "fetchTime": "2024-01-07T16:57:21.701Z", + "fetchTime": "2024-01-14T16:34:39.537Z", "runWarnings": [], "categories": { "performance": { @@ -462414,53 +459635,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1753, + "numericValue": 1732, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1753, - "firstMeaningfulPaint": 1753, - "largestContentfulPaint": 1941, - "interactive": 1753, - "speedIndex": 2616, + "firstContentfulPaint": 1732, + "firstMeaningfulPaint": 1732, + "largestContentfulPaint": 1917, + "interactive": 1732, + "speedIndex": 2398, "totalBlockingTime": 0, - "maxPotentialFID": 41, + "maxPotentialFID": 40, "cumulativeLayoutShift": 0.010546875, "cumulativeLayoutShiftMainFrame": 0.010546875, "totalCumulativeLayoutShift": 0.010546875, "observedTimeOrigin": 0, - "observedTimeOriginTs": 238431438, + "observedTimeOriginTs": 193819910, "observedNavigationStart": 0, - "observedNavigationStartTs": 238431438, - "observedFirstPaint": 987, - "observedFirstPaintTs": 239418162, - "observedFirstContentfulPaint": 987, - "observedFirstContentfulPaintTs": 239418162, - "observedFirstContentfulPaintAllFrames": 987, - "observedFirstContentfulPaintAllFramesTs": 239418162, - "observedFirstMeaningfulPaint": 987, - "observedFirstMeaningfulPaintTs": 239418162, - "observedLargestContentfulPaint": 987, - "observedLargestContentfulPaintTs": 239418162, - "observedLargestContentfulPaintAllFrames": 987, - "observedLargestContentfulPaintAllFramesTs": 239418162, - "observedTraceEnd": 3874, - "observedTraceEndTs": 242304951, - "observedLoad": 1566, - "observedLoadTs": 239997047, - "observedDomContentLoaded": 985, - "observedDomContentLoadedTs": 239416673, + "observedNavigationStartTs": 193819910, + "observedFirstPaint": 848, + "observedFirstPaintTs": 194667775, + "observedFirstContentfulPaint": 848, + "observedFirstContentfulPaintTs": 194667775, + "observedFirstContentfulPaintAllFrames": 848, + "observedFirstContentfulPaintAllFramesTs": 194667775, + "observedFirstMeaningfulPaint": 848, + "observedFirstMeaningfulPaintTs": 194667775, + "observedLargestContentfulPaint": 848, + "observedLargestContentfulPaintTs": 194667775, + "observedLargestContentfulPaintAllFrames": 848, + "observedLargestContentfulPaintAllFramesTs": 194667775, + "observedTraceEnd": 3494, + "observedTraceEndTs": 197313736, + "observedLoad": 1185, + "observedLoadTs": 195004861, + "observedDomContentLoaded": 846, + "observedDomContentLoadedTs": 194666166, "observedCumulativeLayoutShift": 0.010546875, "observedCumulativeLayoutShiftMainFrame": 0.010546875, "observedTotalCumulativeLayoutShift": 0.010546875, - "observedFirstVisualChange": 992, - "observedFirstVisualChangeTs": 239423438, - "observedLastVisualChange": 1608, - "observedLastVisualChangeTs": 240039438, - "observedSpeedIndex": 1013, - "observedSpeedIndexTs": 239444922 + "observedFirstVisualChange": 855, + "observedFirstVisualChangeTs": 194674910, + "observedLastVisualChange": 1472, + "observedLastVisualChangeTs": 195291910, + "observedSpeedIndex": 871, + "observedSpeedIndexTs": 194690712 }, { "lcpInvalidated": false @@ -462482,19 +459703,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 3, - "numTasks": 562, + "numTasks": 552, "numTasksOver10ms": 2, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 146.289, - "throughput": 4756263.277094126, - "maxRtt": 148.436, - "maxServerLatency": 22.924999999999983, - "totalByteWeight": 282572, - "totalTaskTime": 135.9150000000002, - "mainDocumentTransferSize": 3984 + "rtt": 83.12299999999999, + "throughput": 8169579.556376787, + "maxRtt": 86.137, + "maxServerLatency": 27.593999999999994, + "totalByteWeight": 282599, + "totalTaskTime": 129.9430000000001, + "mainDocumentTransferSize": 3946 } ] } @@ -462587,7 +459808,7 @@ "http": { "url": "https://ellesfontlaculture.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 17:04:15 GMT", + "end_time": "Sun, 14 Jan 2024 16:44:22 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -462596,13 +459817,13 @@ "Cache-Control": "max-age=0, private, must-revalidate", "Connection": "keep-alive", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 17:04:13 GMT", - "Etag": "W/\"efd65b78ef55fa1d6b6870ca13a006a4\"", + "Date": "Sun, 14 Jan 2024 16:44:19 GMT", + "Etag": "W/\"298eea7ab3e1118d8e9985957ada0277\"", "Link": "; rel=preload; as=style; nopush", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_ellesfontlaphoto_session=cEDgU3vOPVb4kwDUcijzldzmGpIYRHaQdbF4MrDJupvv4TqHdjMzD%2BxmKLdsPOpRgZ%2FmkNdI8ry9l50V4jevd6HjQ%2BYwKN7QkJOM63X42yYT%2BTa40mJFo9%2FegZVP%2FsgyklbBkPywIZVYvQzhkWs5OmmH7Ca6c3V%2FDKknNIYszZKk8vz2yBtucu693iSg5zOfLkhu1K4pon6Ns5vLjo%2ByUqES2DTQYI1%2FxrTHWo%2BbnsitS0PBWebHkrAdIt6svJo1lGqYVek0dgO016z%2BjoBdKXtU%2FiK1pxEJXYJzHYx0wF38%2BA51Hl%2FXHy1N%2FnWrv7wbTWPNu4i%2B0JuVJdgZdGWJ0%2BOEGrSS%2Fd9mndIBxmDCWJ4GXJOzEnWUw%2FNh5bVJc0360Sy%2BwOOQIAmKomd4SGZuDei0i1iQ%2Brn1lOUnTMwsjEYdl9H%2BPUrwBKwiFyM749b5PfOpU9T2eTq1onSQVbvBErgT4iVJWUy4aSR%2BWzpGUA54yahFZXmu8BYuN3gN--jYKXioTAqS4xR%2Fx1--1e3SzDmmetzwFXA9RZBYEQ%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "Set-Cookie": "_ellesfontlaphoto_session=9naVBGONCQqgshaaSFWRQbi%2F7HR8dVTGR3OhbME9k9cOEArjdX7ovGBPfc8hJCcarmXGZr8W98kCKx07FDFaCx6UhWncJ2iOZQmw3fb9eS3r0jpQen3NvFf78xVNfOYYOwIVhbAWij5om%2B%2BfYzS2ek%2BM0fLo%2FYcgQetV0syoeqZ0kcS57NZMUi8ICWHHa3WOigPqfzIzhHCPflIBml7fnjV97b%2Bu0E1pQhFP6gwkWFKppwWwuDitGKquCR282fuN1Npg%2F1C3DMBqn%2FGLxAKPOWpc2Url2%2BmV0fI%2BZfA%2FojE930fNDtPnvajTJltEfz%2BmWPDY829a7ja9cqkj1qyjxYuNyEfvhbgJvlUOn0y7u8Su4zTU0G5m6MfF2k4xxfzL0rKHjSgsByiEW%2BH%2FVa9%2F4NDtcWqh7TsVjdX%2FP18XdvFyvRCnpFn6SFVIrt9lCg%2B3TqCwMdrHOi8qcAL4mSkGG8f%2FRTN2HBRw%2Fcl1%2B%2BPYoUDfWDHbug0DfCVeCjk%2F--MVtIoQYW2SNlB6t5--uzKCQeaqPkbFSzSFa0GLCw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "Strict-Transport-Security": "max-age=31557600", - "Traceresponse": "00-17a81f767b110b714920aa7670b62f98-2045fc47251c8a40-01", + "Traceresponse": "00-17aa44709501e07a53876ff3497be703-bb70d161b3b7903a-01", "Vary": "Accept", "Via": "1.1 varnish, 1.1 varnish", "X-Cache": "MISS, MISS", @@ -462616,15 +459837,15 @@ "X-Platform-Cluster": "tl34jw4qs4bu2-master-7rqtwti", "X-Platform-Processor": "gwzrtyfmq5bg3qickflrztm5jm", "X-Platform-Router": "nthylk4d6puxch5isukqy3sywa", - "X-Request-Id": "34cfa340-af45-4572-a89a-09ac0b7cd406", - "X-Runtime": "0.499626", - "X-Served-By": "cache-par-lfpg1960094-PAR, cache-sjc10026-SJC", + "X-Request-Id": "3a327be8-4234-4f6a-8bbd-d0a0ac0787a7", + "X-Runtime": "0.494618", + "X-Served-By": "cache-par-lfpg1960022-PAR, cache-pao-kpao1770023-PAO", "X-Xss-Protection": "1; mode=block", "transfer-encoding": "chunked" }, - "scan_id": 46236143, + "scan_id": 46488954, "score": 70, - "start_time": "Sun, 07 Jan 2024 17:04:08 GMT", + "start_time": "Sun, 14 Jan 2024 16:40:03 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -463029,7 +460250,7 @@ "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -463176,7 +460397,7 @@ "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "OK", - "finding": "88 >= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", @@ -463379,7 +460600,7 @@ "ip": "ellesfontlaculture.beta.gouv.fr/185.31.40.13", "port": "443", "severity": "INFO", - "finding": "1704647144" + "finding": "1705250741" }, { "id": "HSTS", @@ -463991,7 +461212,7 @@ "value": "1", "domain": "ellesfontla.culture.gouv.fr", "path": "/", - "expires": 1704648884, + "expires": 1705252481, "size": 17, "httpOnly": false, "secure": false, @@ -464003,10 +461224,10 @@ }, { "name": "_pk_id.187.1dd6", - "value": "efd4b3bde8b526fd.1704647085.", + "value": "1f984f0d51392e67.1705250682.", "domain": "ellesfontla.culture.gouv.fr", "path": "/", - "expires": 1738602285, + "expires": 1739205882, "size": 43, "httpOnly": false, "secure": false, @@ -464018,7 +461239,7 @@ }, { "name": "_ellesfontlaphoto_session", - "value": "R41rSvP28iJUYKjLfQ2N48Gy0GyGNRHNO1T3d%2F%2BwoMkfG509uilyh5vZw4Nt2ZIV5GpEV%2FqdBtUl%2B7qRn2swwWhVEWpQ6XCSytOIvV8t0WfdIdpNwF7T2ObVSXKhIf8oAdgeJRkzKPDqosK6tchP9yn82ZE2XnS6n54CABN%2FxP8STubkOdpNX0nSpH4FNTOOXddWRARzLHk9GQa4zGqwQsuo25%2FaqfV52NsO7DDwnq4RQZ0sXzzu9SiGwgTmLU4MkZpMMoFt1o5jsX1W%2FUulIBb5ma02lYLUhJwo9OEVTuMRhdRX2RwH7Q0SJUcfBx4uqCijse1j%2FC%2Bs8Cz8sPFczizCCnbKv3vHj1bLvBOcBcFjDiDucrE%2FDNEVlEYFYJCtPh0ssPwM2%2B2MXdsQJulEEQMOBuFMt4B0AdvQtMSZqvaUkTv4Elwo7B%2Fkp8axvFiklu1bsk3nvUv14qBgEIS0T%2BarqovOZAO62csvMTdpCS2wbdw3PRiIBE%2FRMnSg--txKuKfoCE6DL8gC0--qpZeCdoMLpMISbR3RiupkA%3D%3D", + "value": "2NyvqxGdVyx0lmUtBgGJm4qHAMNUDaS9%2FcmdeCYS12TjmYWTlsrXem6YwkcYQLzs9RwxDW6Eou49WKKhxNn95o5MlwArIHbY4QGu66855XWFfKfTBo5uCzKM%2B89xvKHu8%2B3xBUyZpnG6b5pNDp46NvXY8ygfufxYY%2BDluDHuADkVdtOdYGr41%2Ft4Rhxh8IOtOQUKLO3Ck2p3dTALvgeE5NSd085jfaHvPM6lsXIiKz8498xcWDC4yF05JQx30G6R5PzDJGz4FSbOzJ3PIaLmce5RpnyzFYdL5rGMEoONj1xfiOoXV1XwOZ5TNnouUbJpLTt%2F26MqecwgENE0hp3vP6iE9i9gdNEn%2BcDn2uQbGz9bNgBC72p79nGDcCxMw70y6SgzmYX8olTdkWBn%2Brkrt6kGnCWYwAim1xdvrArrPi1T0t9ev9qxZLYkjyet%2FTpHFUX8MHz9kKhJdZlodXxmh19zaHAEf4fYQtBKi2k7SczWD%2B9FE26ewPbbhatU--CC9bz%2BYWAobiimWo--k07sVx6BXxiB%2B%2Bl419w%2Fcg%3D%3D", "domain": "ellesfontla.culture.gouv.fr", "path": "/", "expires": -1, @@ -464036,13 +461257,13 @@ "accept-ranges": "bytes", "cache-control": "max-age=0, private, must-revalidate", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 17:04:44 GMT", - "etag": "W/\"27cfeeae2eb6a1a57b493d01ecc97640\"", + "date": "Sun, 14 Jan 2024 16:44:41 GMT", + "etag": "W/\"2777397926365d00edddfe75d9d451b4\"", "link": "; rel=preload; as=style; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_ellesfontlaphoto_session=R41rSvP28iJUYKjLfQ2N48Gy0GyGNRHNO1T3d%2F%2BwoMkfG509uilyh5vZw4Nt2ZIV5GpEV%2FqdBtUl%2B7qRn2swwWhVEWpQ6XCSytOIvV8t0WfdIdpNwF7T2ObVSXKhIf8oAdgeJRkzKPDqosK6tchP9yn82ZE2XnS6n54CABN%2FxP8STubkOdpNX0nSpH4FNTOOXddWRARzLHk9GQa4zGqwQsuo25%2FaqfV52NsO7DDwnq4RQZ0sXzzu9SiGwgTmLU4MkZpMMoFt1o5jsX1W%2FUulIBb5ma02lYLUhJwo9OEVTuMRhdRX2RwH7Q0SJUcfBx4uqCijse1j%2FC%2Bs8Cz8sPFczizCCnbKv3vHj1bLvBOcBcFjDiDucrE%2FDNEVlEYFYJCtPh0ssPwM2%2B2MXdsQJulEEQMOBuFMt4B0AdvQtMSZqvaUkTv4Elwo7B%2Fkp8axvFiklu1bsk3nvUv14qBgEIS0T%2BarqovOZAO62csvMTdpCS2wbdw3PRiIBE%2FRMnSg--txKuKfoCE6DL8gC0--qpZeCdoMLpMISbR3RiupkA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", + "set-cookie": "_ellesfontlaphoto_session=2NyvqxGdVyx0lmUtBgGJm4qHAMNUDaS9%2FcmdeCYS12TjmYWTlsrXem6YwkcYQLzs9RwxDW6Eou49WKKhxNn95o5MlwArIHbY4QGu66855XWFfKfTBo5uCzKM%2B89xvKHu8%2B3xBUyZpnG6b5pNDp46NvXY8ygfufxYY%2BDluDHuADkVdtOdYGr41%2Ft4Rhxh8IOtOQUKLO3Ck2p3dTALvgeE5NSd085jfaHvPM6lsXIiKz8498xcWDC4yF05JQx30G6R5PzDJGz4FSbOzJ3PIaLmce5RpnyzFYdL5rGMEoONj1xfiOoXV1XwOZ5TNnouUbJpLTt%2F26MqecwgENE0hp3vP6iE9i9gdNEn%2BcDn2uQbGz9bNgBC72p79nGDcCxMw70y6SgzmYX8olTdkWBn%2Brkrt6kGnCWYwAim1xdvrArrPi1T0t9ev9qxZLYkjyet%2FTpHFUX8MHz9kKhJdZlodXxmh19zaHAEf4fYQtBKi2k7SczWD%2B9FE26ewPbbhatU--CC9bz%2BYWAobiimWo--k07sVx6BXxiB%2B%2Bl419w%2Fcg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31557600", - "traceresponse": "00-17a81f7db4d27f2b9eb2bf632e0a5583-c2d29a092ff54aea-01", + "traceresponse": "00-17aa4475a5f51e9c306f0d7a2fcff554-049ee55142ab3df9-01", "via": "1.1 varnish, 1.1 varnish", "x-cache": "MISS, MISS", "x-cache-hits": "0, 0", @@ -464055,9 +461276,9 @@ "x-platform-cluster": "tl34jw4qs4bu2-master-7rqtwti", "x-platform-processor": "gwzrtyfmq5bg3qickflrztm5jm", "x-platform-router": "nthylk4d6puxch5isukqy3sywa", - "x-request-id": "5c01afe6-e62b-47f6-b77d-86941558be80", - "x-runtime": "0.487255", - "x-served-by": "cache-par-lfpg1960022-PAR, cache-iad-kcgs7200038-IAD", + "x-request-id": "7950ccbe-609c-408e-9fc3-9c2a11ebaaa0", + "x-runtime": "0.438125", + "x-served-by": "cache-par-lfpg1960022-PAR, cache-iad-kcgs7200128-IAD", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -464119,13 +461340,58 @@ }, { "hostname": "res.cloudinary.com", - "ip": "104.19.166.65", + "ip": "23.220.128.40", "geoip": { + "city": { + "geoname_id": 4744870, + "names": { + "en": "Ashburn", + "ru": "Ашберн" + } + }, + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 20, + "latitude": 39.0469, + "longitude": -77.4903, + "metro_code": 511, + "time_zone": "America/New_York" + }, + "postal": { + "code": "20149" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -464134,7 +461400,21 @@ "ru": "США", "zh-CN": "美国" } - } + }, + "subdivisions": [ + { + "geoname_id": 6254928, + "iso_code": "VA", + "names": { + "en": "Virginia", + "fr": "Virginie", + "ja": "バージニア州", + "pt-BR": "Virgínia", + "ru": "Вирджиния", + "zh-CN": "弗吉尼亚州" + } + } + ] } } ] @@ -464170,7 +461450,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 17:03:37", + "@generated": "Sun, 14 Jan 2024 16:39:31", "site": [ { "@name": "https://ellesfontlaculture.beta.gouv.fr", @@ -464278,7 +461558,7 @@ { "requestedUrl": "https://ellesfontlaculture.beta.gouv.fr/", "finalUrl": "https://ellesfontla.culture.gouv.fr/", - "fetchTime": "2024-01-07T17:03:51.654Z", + "fetchTime": "2024-01-14T16:39:45.752Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://ellesfontlaculture.beta.gouv.fr/) was redirected to https://ellesfontla.culture.gouv.fr/. Try testing the second URL directly." ], @@ -464343,53 +461623,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 8456, + "numericValue": 8552, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2619, - "firstMeaningfulPaint": 4060, - "largestContentfulPaint": 4631, - "interactive": 8456, - "speedIndex": 4540, - "totalBlockingTime": 173, - "maxPotentialFID": 212, + "firstContentfulPaint": 2617, + "firstMeaningfulPaint": 2617, + "largestContentfulPaint": 6377, + "interactive": 8552, + "speedIndex": 4824, + "totalBlockingTime": 106, + "maxPotentialFID": 160, "cumulativeLayoutShift": 0.009821980158487956, "cumulativeLayoutShiftMainFrame": 0.009821980158487956, "totalCumulativeLayoutShift": 0.009821980158487956, "observedTimeOrigin": 0, - "observedTimeOriginTs": 284817351, + "observedTimeOriginTs": 212000925, "observedNavigationStart": 0, - "observedNavigationStartTs": 284817351, - "observedFirstPaint": 988, - "observedFirstPaintTs": 285805338, - "observedFirstContentfulPaint": 988, - "observedFirstContentfulPaintTs": 285805338, - "observedFirstContentfulPaintAllFrames": 988, - "observedFirstContentfulPaintAllFramesTs": 285805338, - "observedFirstMeaningfulPaint": 1100, - "observedFirstMeaningfulPaintTs": 285917828, - "observedLargestContentfulPaint": 1008, - "observedLargestContentfulPaintTs": 285825334, - "observedLargestContentfulPaintAllFrames": 1008, - "observedLargestContentfulPaintAllFramesTs": 285825334, - "observedTraceEnd": 3823, - "observedTraceEndTs": 288640647, - "observedLoad": 1515, - "observedLoadTs": 286332417, - "observedDomContentLoaded": 1050, - "observedDomContentLoadedTs": 285867285, + "observedNavigationStartTs": 212000925, + "observedFirstPaint": 2377, + "observedFirstPaintTs": 214378188, + "observedFirstContentfulPaint": 2377, + "observedFirstContentfulPaintTs": 214378188, + "observedFirstContentfulPaintAllFrames": 2377, + "observedFirstContentfulPaintAllFramesTs": 214378188, + "observedFirstMeaningfulPaint": 2377, + "observedFirstMeaningfulPaintTs": 214378188, + "observedLargestContentfulPaint": 2419, + "observedLargestContentfulPaintTs": 214419512, + "observedLargestContentfulPaintAllFrames": 2419, + "observedLargestContentfulPaintAllFramesTs": 214419512, + "observedTraceEnd": 5461, + "observedTraceEndTs": 217462255, + "observedLoad": 3153, + "observedLoadTs": 215153779, + "observedDomContentLoaded": 2451, + "observedDomContentLoadedTs": 214451870, "observedCumulativeLayoutShift": 0.009821980158487956, "observedCumulativeLayoutShiftMainFrame": 0.009821980158487956, "observedTotalCumulativeLayoutShift": 0.009821980158487956, - "observedFirstVisualChange": 987, - "observedFirstVisualChangeTs": 285804351, - "observedLastVisualChange": 1604, - "observedLastVisualChangeTs": 286421351, - "observedSpeedIndex": 1012, - "observedSpeedIndexTs": 285829733 + "observedFirstVisualChange": 2373, + "observedFirstVisualChangeTs": 214373925, + "observedLastVisualChange": 2990, + "observedLastVisualChangeTs": 214990925, + "observedSpeedIndex": 2409, + "observedSpeedIndexTs": 214410090 }, { "lcpInvalidated": false @@ -464411,19 +461691,19 @@ "numScripts": 2, "numStylesheets": 1, "numFonts": 5, - "numTasks": 1187, - "numTasksOver10ms": 6, + "numTasks": 1433, + "numTasksOver10ms": 5, "numTasksOver25ms": 3, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.2010000000000005, - "throughput": 359955224.75168335, - "maxRtt": 83.881, - "maxServerLatency": 125.86600000000001, - "totalByteWeight": 19278009, - "totalTaskTime": 309.20199999999807, - "mainDocumentTransferSize": 60711 + "rtt": 5.272, + "throughput": 208846394.56833193, + "maxRtt": 86.154, + "maxServerLatency": 213.70600000000002, + "totalByteWeight": 19278802, + "totalTaskTime": 314.27399999999824, + "mainDocumentTransferSize": 60740 } ] } @@ -464483,13 +461763,7 @@ "repository": "https://github.com/betagouv/ellesfontlaphoto", "contact": "ellesfontlaculture@beta.gouv.fr", "content_url_encoded_markdown": "%23%20Car%20encore%20aujourd%E2%80%99hui%2C%2054%25%20de%20femmes%20sont%20sur%20les%20bancs%20des%20%C3%A9coles%20contre%2038%25%20dans%20la%20vie%20professionnelle.%0A%0A%23%23%23%23%20Les%20artistes%20femmes%20%3B%20%C3%A9vinc%C3%A9es%20des%20programmations%2C%20sous-repr%C3%A9sent%C3%A9es%20dans%20les%20professions%20des%20arts%20et%20de%20la%20culture%2C%20absentes%20des%20directions%20et%20oubli%C3%A9es%20du%20grand%20r%C3%A9cit%20de%20la%20cr%C3%A9ation%0A%0AL%27_Effet%20Mathilda_%20-%20concept%20forg%C3%A9%20par%20Margaret%20Rossier%20afin%20de%20d%C3%A9crire%20le%20processus%20d%27invisibilisation%20le%20m%C3%A9canisme%20de%20d%C3%A9ni%20et%20de%20minimisation%20de%20la%20contribution%20des%20personnes%20de%20genre%20f%C3%A9minin%20aux%20grandes%20avanc%C3%A9es%20scientifiques%20aux%20Etats-Unis%2C%20ne%20se%20cantonne%20pas%20aux%20sciences%20ou%20%C3%A0%20la%20politique.%20Il%20est%20tr%C3%A8s%20pr%C3%A9sent%20dans%20l%27art%2C%20la%20cr%C3%A9ation%20artistique.%20%0A%0A%23%23%23%23%20La%20photographie%2C%20comme%20%C3%A9tude%20de%20cas%20et%20premier%20terrain%20d%27exp%C3%A9rimentation%0A%0AL%27invisibilisation%20et%20la%20sous-repr%C3%A9sentation%20des%20femmes%20dans%20le%20secteur%20de%20la%20photographie%20participe%20de%20plusieurs%20autres%20constats%3B%20les%20artistes%20et%20professionnels%20photographes%20femmes%20sont%20%3A%20%0A-%20moins%20expos%C3%A9es%0A-%20moins%20programm%C3%A9es%20dans%20les%20festivals%0A-%20moins%20r%C3%A9mun%C3%A9r%C3%A9es%20%28-24%25%29%0A-%20moins%20aid%C3%A9es%20par%20les%20bourses%20et%20les%20subventions%0A-%20moins%20honor%C3%A9es%20par%20des%20prix%0Aque%20leurs%20homologues%20de%20genre%20masculin.%0A%0A%5BVoir%20les%20chiffres%5D%28https%3A%2F%2Fellesfontlaculture.beta.gouv.fr%2Finfographie%29%0A%0A%0A%23%23%20La%20mission%20de%20l%27investigation%0A%0APour%20r%C3%A9pondre%20et%20tenter%20de%20trouver%20une%20solution%20au%20probl%C3%A8me%20des%20in%C3%A9galit%C3%A9s%20de%20genre%20dans%20la%20culture%2C%20l%27art%20et%20en%20particulier%20de%20la%20photographie%20%3B%20une%20%C3%A9quipe%20de%205%20personnes%20a%20explor%C3%A9%20le%20sujet%20pendant%209%20semaines%20et%20exp%C3%A9riment%C3%A9e%20aupr%C3%A8s%20des%20parties%20prenantes%20concern%C3%A9es%2C%20selon%20la%20m%C3%A9thode%20agile%20des%20Startups%20d%27Etat%20de%20beta.gouv.fr%20en%20%5Bphase%20d%27investigation%5D%28https%3A%2F%2Fbeta.gouv.fr%2Fapproche%2Finvestigation%29.%0A%0AL%E2%80%99investigation%20nous%20a%20permis%20d%E2%80%99interroger%20%3A%20photographes%2C%20institutions%20culturelles%2C%20expert.e.s%20et%20initiatives%20existantes.%20Elle%20a%20r%C3%A9v%C3%A9l%C3%A9%203%20probl%C3%A8mes%20majeurs%20%3A%20%0A-%20la%20pr%C3%A9carit%C3%A9%20renforc%C3%A9e%2C%20%0A-%20le%20manque%20de%20l%C3%A9gitimit%C3%A9%20ressenti%0A-%20le%20manque%20de%20sensibilisation%20sur%20les%20enjeux%20li%C3%A9s%20%C3%A0%20l%E2%80%99%C3%A9galit%C3%A9%0A%0APlus%20pr%C3%A9cis%C3%A9ment%20%3A%0AC%27est%20%C3%A0%20la%20fin%20de%20la%20jeune%20cr%C3%A9ation%2C%20vers%2035%20ans%20que%20les%20femmes%20commencent%20%C3%A0%20dispara%C3%AEtre%20de%20la%20profession.%20La%20disparition%20des%20aides%20%22jeunes%20cr%C3%A9ations%22%2C%20du%20r%C3%A9seau%20des%20%C3%A9coles%2C%20la%20pression%20de%20la%20maternit%C3%A9...%20r%C3%A9duisent%20leurs%20commandes%20et%20renforcent%20leur%20pr%C3%A9carit%C3%A9%20engendrant%20le%20cumul%20d%27emploi%20et%20la%20disparition%20progressive%20du%20secteur%20de%20la%20photographie.%20La%20solution%20envisag%C3%A9e%20a%20donc%20pour%20objectif%20d%27aider%20les%20femmes%20%C3%A0%20rester%20dans%20le%20secteur%20de%20la%20photographie.%0A%0A%21%5Billustration%5D%28https%3A%2F%2Fuser-images.githubusercontent.com%2F36261410%2F144897717-4f6ee22d-646b-4231-babb-497ef9fb3116.png%29.%0A%0A%23%23%20_ellesfontlaculture_%2C%20une%20plateforme%20num%C3%A9rique%20pour%20d%C3%A9velopper%20la%20carri%C3%A8re%20des%20photographes%20femmes%20et%20minorit%C3%A9s%20de%20genre%E2%80%A6%0A%0AL%27interface%20regroupe%20plusieurs%20services%20%3A%20%0A-%20un%20catalogue%20d%E2%80%99aides%20financi%C3%A8res%20recensant%20tous%20types%20d%E2%80%99appels%20%C3%A0%20candidatures%3B%0A-%20un%20centre%20de%20ressources%2C%20%C3%A9crites%20et%20vid%C3%A9os%20sur%20les%20aspects%20pratiques%20du%20m%C3%A9tier%3B%0A-%20et%20des%20outils%20d%E2%80%99entraide%2C%20notamment%20%3A%0A%20%20%20%20-%20des%20webinaires%20interactifs%20o%C3%B9%20des%20expert%28e%29s%20partagent%20conseils%20et%20exp%C3%A9riences%2C%0A%20%20%20%20-%20revue%20de%20dossiers%20de%20paires%20%C3%A0%20paires%20permettant%20d%E2%80%99obtenir%20des%20retours%20sur%20son%20travail.%0A%0AL%E2%80%99objectif%20est%20de%20faciliter%20l%E2%80%99acc%C3%A8s%20aux%20opportunit%C3%A9s%20professionnelles%2C%20faire%20gagner%20du%20temps%20et%20renforcer%20le%20sentiment%20de%20l%C3%A9gitimit%C3%A9%20des%20utilisatrices.%0A%0AGr%C3%A2ce%20aux%20services%20d%E2%80%99_ellesfontlaculture_%20%3A%20%0A-%2075%25%20des%20votantes%20d%C3%A9clarent%20avoir%20trouv%C3%A9%20des%20aides%20financi%C3%A8res%20auxquelles%20candidater%2C%0A-%201%20r%C3%A9pondante%20sur%203%20d%C3%A9clare%20qu%E2%80%99elle%20a%20pr%C3%A9sent%C3%A9%20son%20travail%20%C3%A0%20plus%20d%E2%80%99instances%20de%20s%C3%A9lection%2Fclients%2C%0A-%201%20sur%203%20d%C3%A9clare%20qu%E2%80%99elle%20est%20plus%20%C3%A0%20l%E2%80%99aise%20pour%20fixer%20et%20n%C3%A9gocier%20ses%20tarifs%2C%0A-%201%20sur%204%20cite%20spontan%C3%A9ment%20la%20l%C3%A9gitimit%C3%A9%20et%20la%20confiance%20en%20soi%20comme%20b%C3%A9n%C3%A9fices%20tir%C3%A9s%2C%0A-%201%20sur%205%20d%C3%A9clare%20avoir%20%C3%A9largi%20la%20qualit%C3%A9%20de%20son%20r%C3%A9seau%20professionnel.%0A%0A%5BVoir%20l%E2%80%99enqu%C3%AAte%20d%E2%80%99impact%20d%E2%80%99octobre%202022.%5D%28https%3A%2F%2Fstartupdetat.typeform.com%2Freport%2FQq0QMO56%2FxeCFzqfI8JOXZ5SA%29%0A%0A%23%23%20%E2%80%A6et%20outiller%20l%E2%80%99%C3%A9cosyst%C3%A8me%20photo%20vers%20plus%20d%E2%80%99%C3%A9galit%C3%A9%20%21%20%0A%0ASi%20l%E2%80%99accompagnement%20des%20femmes%20photographes%20est%20un%20axe%20important%20de%20la%20lutte%20contre%20les%20in%C3%A9galit%C3%A9s%2C%20la%20sensibilisation%20et%20l%E2%80%99outillage%20de%20l%E2%80%99%C3%A9cosyst%C3%A8me%20photo%20nous%20est%20rapidement%20apparu%20essentiel.%20%0A%0ADeux%20services%20servent%20cet%20objectif%20%3A%0A-%20l%27index%20parit%C3%A9%20des%20lieux%20et%20festivals%20photo%2C%20afin%20d%E2%80%99apporter%20de%20la%20transparence%20sur%20les%20chiffres%20et%20les%20actions%20de%20chaque%20structure.%2057%20structures%20sont%20r%C3%A9f%C3%A9renc%C3%A9es%20sur%20la%20premi%C3%A8re%20version%20de%20l%E2%80%99outil.%0A-%20une%20s%C3%A9rie%20d%27infographies%20avec%20les%20grands%20chiffres%20des%20in%C3%A9galit%C3%A9s%20dans%20la%20photo%20visant%20%C3%A0%20faciliter%20la%20compr%C3%A9hension%20et%20la%20diffusion%20du%20sujet%0A%0ALe%20site%20poursuit%20actuellement%20sa%20construction%2C%20en%20recontrant%20ses%20utilisatrices%20pour%20l%27adapter%20%C3%A0%20leurs%20besoins.%20%0A%21%5Billustration%20entretien%5D%28https%3A%2F%2Fuser-images.githubusercontent.com%2F36261410%2F144896616-274c3941-65fb-48df-bc8e-282a66686ac1.png%29.%0A%0AVous%20souhaitez%20nous%20aider%20%3F%20Partager%20votre%20experience%20%3F%20Poser%20des%20questions%2C%20nous%20faire%20part%20de%20remarques%2C%20suggestions%20%3F%20%0AN%27h%C3%A9sitez%20pas%20%C3%A0%20nous%20le%20faire%20savoir%20en%20nous%20envoyant%20un%20email.%20Vos%20retours%20sont%20pr%C3%A9cieux.%0A%5BNous%20contacter%5D%28mailto%3Aellesfontlaculture%40beta.gouv.fr%29%0A%0A%0A%0A%0A", - "events": [ - { - "name": "national_impact", - "date": "2023-07-01", - "comment": "" - } - ], + "events": [], "phases": [ { "name": "construction", @@ -464562,30 +461836,30 @@ "http": { "url": "https://moana.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 17:19:10 GMT", + "end_time": "Sun, 14 Jan 2024 16:50:47 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; base-uri 'self'; img-src 'self' data:; default-src 'self'; font-src 'self' data:", + "Content-Security-Policy": "default-src 'self'; base-uri 'self'; connect-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; img-src 'self' data:; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 17:19:08 GMT", + "Date": "Sun, 14 Jan 2024 16:50:45 GMT", "Permissions-Policy": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=ZK0WeGS7UkgsPCYnyLRV5tgVWOqImU5w; expires=Sun, 05 Jan 2025 17:19:08 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "Set-Cookie": "csrftoken=peHXgmLUv0oUKzg8u7wQzFDiot4lzLJl; expires=Sun, 12 Jan 2025 16:50:45 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Cookie, origin", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "b1c50e17-1655-456b-8c57-f3ca0fa0e551" + "X-Request-ID": "0ff3b2df-b275-4f6b-8a04-1567db6d8b6f" }, - "scan_id": 46236491, + "scan_id": 46489659, "score": 60, - "start_time": "Sun, 07 Jan 2024 17:19:03 GMT", + "start_time": "Sun, 14 Jan 2024 16:50:41 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -464607,135 +461881,135 @@ "'self'" ], "font-src": [ - "'self'", - "data:" + "data:", + "'self'" ], "img-src": [ - "'self'", - "data:" + "data:", + "'self'" ], "script-src": [ - "'sha256-ms6/3fcg4wjp9gwgabgwlprcy6fzbgwmhvcdrprnf3e='", - "'sha256-va8o2hadoob288epstrgll7z3qikbwu9wwoebo/qayk='", - "'self'", + "'sha256-tqjf8gvb2roomapixfvfaybeuj0v1hcbocsmdnxgtdo='", "'sha256-+5xkzfazzjo8n0iop4ti/clcmuudtf//mzkb7xnpxic='", - "'sha256-tqjf8gvb2roomapixfvfaybeuj0v1hcbocsmdnxgtdo='" + "'sha256-va8o2hadoob288epstrgll7z3qikbwu9wwoebo/qayk='", + "'sha256-ms6/3fcg4wjp9gwgabgwlprcy6fzbgwmhvcdrprnf3e='", + "'self'" ], "style-src": [ - "'sha256-v+wzhw7g+kearsnuhnj/jk7cfyy+o/ml+2dnig1e3lo='", - "'sha256-sxtj1vafnmn1c0aujjwcirgogqf3m4didejjwaac3wo='", - "'sha256-+u37rdy+ekwoqkvujvztxsta1zqytvwz9iattjwuulq='", - "'sha256-f+vbomevdiejq8zl6sqylfb/p+nibldv2r+q6mhwefq='", - "'sha256-zkb6nakempyf4toefwxj2jpy270upe2bvdz3sd2uklm='", - "'self'", - "'sha256-o2xazass3aoe9jlttgsf0uy8pli7ft7zml8p29rbjlm='", - "'sha256-bw8nydpk+rv9lpnlglux1ta/nihg2tpa6q6krc//k5c='", - "'sha256-v4xcljlldzbwudhljgjk+tkwiiixl7euvxxepdbqrbk='", - "'sha256-qah3wbhsfpjwhrk9vmcea4bisdckf4rr8687dkyk4iq='", - "'sha256-nlz7ptlq0fifhwezpcszozxkrkrcdzebr47kwpzbv3a='", - "'sha256-qzs8iu6d/fpyuisgxhwfrttydmrwrv2jdu9akop9if0='", - "'sha256-c8ye1fs0s17iuhqrxizvpypug6ruxaxri2uxy8dfpoc='", - "'sha256-zbw9gd7cyrl99uoi0rkd79jf5kneqwfpbcc/d41kr4w='", - "'sha256-vryfnqfy5qsqd5/litnzr+c+rpjvaie9i0asm2vt5na='", - "'sha256-s8eilbg9keltqx4tsu8ughdkbpbl+viz9mvjl2anua4='", - "'sha256-9h/cvox/ed6p+zyu7vuxoqirtpqdy8qnakf4/nuqcow='", - "'sha256-ukxi9y6c7zkxawdltu3x3eijw8+mjgqptrnsoca7cdq='", - "'sha256-ob2r4ppnvjy2shrdl+ll47lzgqet0drimdmc/gn+bls='", - "'sha256-89mgg98zzwu//gme9rh+u/bkp3skczhw01xtpcv7fzs='", - "'sha256-ubn9ynzdpp/wnyay9xcxoramljvmmbykq2tqwauflmu='", - "'sha256-rgyc1krjngrxlgshizezew79ig8ssqt2xc0vj1mzxvg='", - "'sha256-3mzeajtiq8bwks38wk4sxfgozgoeoolic5ld4uliyhk='", - "'sha256-jigvxk4pm1cnzkfgj8tts6x+peszdawzg4oikc6lftq='", + "'sha256-iahmzreyj+btitr61f8cnxpz3ur9s82q+7m1w6eeq18='", + "'sha256-g1mpftcjhxuquy8pamarzigf+jrtwdfmtlcnj/focae='", + "'sha256-nneo4gmmtuj+qc58pg6ccrc7hixtqpuvbeuxw7fkjja='", + "'sha256-c/p3gddcho6mggd18owrcudv2yg8r7ykwmrnadqdxek='", + "'sha256-qkou26uj4mma/lnspt1/69nlpyu27xjkouo7n13g5yk='", + "'sha256-gfndhwxwxzs7l57esozmvzm9swnl+9bpswtfywdwz/o='", + "'sha256-iavwiyddxxl+4slddpfwfk4jpg6yldaanhpyl8a3bxk='", "'sha256-m8pz0zl8bitdmgvcpftn+auddgw43ewflnusjfark3i='", + "'sha256-lliuenaz5rtgdwopim7lgllwnra43wgsiv4awr+nwlo='", + "'sha256-3mzeajtiq8bwks38wk4sxfgozgoeoolic5ld4uliyhk='", "'sha256-pmwu0eudcn34zayfzv8u9kkspqorshraqi0xr5rp+fc='", - "'sha256-byw81thv2wuhbfdu9cnmm4pcsq3fgxz1enetmq9bors='", - "'sha256-7ldzebg4/ceoldnp+rb5jfmiy1zbicmyd0tl8uxd1v4='", - "'sha256-7eothjlas2jil1suw9qgufa4yp8kuoweycyfbvqlpie='", - "'sha256-7x7ie/ulkmsrmjuhqj7agdzcpz1jjciftbpmxfyodk4='", - "'sha256-wnoydjdskc5ycjflr6xs0tqofdncaywftpwndflskne='", - "'sha256-qoacpu4uxiwbkgwmpeyksu96btxbcineicgalfdnoy4='", + "'sha256-rkropjzfj639eock8whmgs0cv/xg1jqld4niry1lw1u='", + "'sha256-b3uqknn570igqerztgkxv0nrp68zm/et1xx3+avwk4w='", + "'sha256-c8ye1fs0s17iuhqrxizvpypug6ruxaxri2uxy8dfpoc='", "'sha256-mbemj+foyhuencunssaxg3tv8atqt9z0eylalgxu74c='", - "'sha256-kcco/sxfprq516gw+929z4+/8xprguxoo5qp+ej1iry='", - "'sha256-khf7uclfiky2nvjckcqpckqqbxhu75lubhb8kx2tzii='", - "'sha256-flztlfbs6ixzt0o3sdlbfdfokpo9cmobz42ljfuscsq='", "'sha256-g2a9yurrodnkmxgyhxhx+fvxpc3yoqoitbqg/29+hb0='", - "'sha256-tnywmpfcbu/6ikkkhny1wn5yfu8shc88qi8xmc0b268='", - "'unsafe-hashes'", - "'sha256-in+sfjweytx0emhe8r08izue6xkeanyl/p/r7rtk5rg='", - "'sha256-rkropjzfj639eock8whmgs0cv/xg1jqld4niry1lw1u='", + "'sha256-psxxae5l5brzqkd1hxrxh1k0zcc5zfysoyqrquihqvk='", "'sha256-j3cmteukgzhmijbte4jphgwyixpiwbtdgvmsv1izsz8='", - "'sha256-h581/pfv9df3qp0j2olzizuyyficrnfxb5iw6x1kgh4='", - "'sha256-zh2for77zlse4xdkg8x6ix5v1c2fk55atvud06rht94='", - "'sha256-/2osyhkfci6xlicc6rcyxrsk+ejo09+0cpsmo9ldpnq='", - "'sha256-otlfih1wntwsjrrpnzn1ac/9gblgknqdr/on/sf67es='", - "'sha256-ygkksqv6nvmku6rg9akm8vdac/ov2i1uoxfe81alrge='", + "'sha256-rgyc1krjngrxlgshizezew79ig8ssqt2xc0vj1mzxvg='", "'sha256-rtwq9v8zz41mmjrsx8o521mwdlxwvrxjfsq+sbkyrcy='", - "'sha256-nneo4gmmtuj+qc58pg6ccrc7hixtqpuvbeuxw7fkjja='", - "'sha256-p5vs7ljnpqphmqiptwpih4pudfhttqaqgcouoljrzqe='", - "'sha256-47deqpj8hbsa+/timw+5jceuqerkm5nmpjwzg3hsufu='", - "'sha256-7ktjjzcammmhxoclakm18v6y5lxz59nvnsbzn7sohu8='", - "'sha256-gfndhwxwxzs7l57esozmvzm9swnl+9bpswtfywdwz/o='", - "'sha256-cqgdnlnz4rn4lqeu0cxxsl3xqqk7etfhm3ag0uq514i='", - "'sha256-dccw5nv6mbjlymaokukjqglfc/a+kkg9j2dwru4q+ny='", - "'sha256-chwc5oexj6dvsycryomucnqfnoeklrvret6ynlljqxi='", - "'sha256-pd5kgjz8mcfwxvr8unagsqhrm99+/tbwyormcwaudy8='", - "'sha256-1bufbtd2izxorrihjdrz3l/qpliggcjfbiz8igsmnxo='", - "'sha256-eji6efasn0qjq9/iqgeqfl40nsadoesg8uhomep111o='", - "'sha256-c/p3gddcho6mggd18owrcudv2yg8r7ykwmrnadqdxek='", - "'sha256-uy2z2zhkbrmg+btiw2avvxdrh9ryhltc/3ugc0nol1k='", - "'sha256-wha+rov+mfoasflkmzsyrkip7uscpsnoj8zztcgbho4='", + "'sha256-y9v1mzrln1n8apby5lmpxykwfkcp/nybmmenn7wfjuw='", + "'sha256-sj9d7rfdgtde5k7whxbjtbhwtsctimwnaopkvp3wdjy='", + "'sha256-+gh0stzzmrespf8ernpb7r2s6h71qtgnbxzuyeq2pg4='", + "'sha256-quhxl4+3eu8ln6ofqnoyz/zj7ff6r5iljedw+qpa5tm='", + "'sha256-qzs8iu6d/fpyuisgxhwfrttydmrwrv2jdu9akop9if0='", "'sha256-xw42dn3lurcktnnpeg3kqs7opmbbrwlnnivrsckshjq='", - "'sha256-11pn3zgb9q3rqj0rf8sug6uaufjzytv6dymsyqss2xm='", - "'sha256-chwwylxwzkgcmijlslubuvobtsqhfvvn0xi/1ag3c4a='", - "'sha256-u9ui7xlt1hz7gqk9ny0tgijg/pejzqa9ucc3mpyrwxa='", - "'sha256-uyaguaaqsfbj087bmziv3grfysdvcepxqgy8vyz46vq='", + "'sha256-sit7nj5pmocjrq4h8hvffwycpnb7qrqizqh13ykbkgw='", "'sha256-zezsbxgclvljuhwelfy+zbm3yc0wx0brz5xib6kk9yi='", - "'sha256-mhyy31gjrimlb9iufsctm+xksmjzz4szufpog+tww30='", + "'sha256-89mgg98zzwu//gme9rh+u/bkp3skczhw01xtpcv7fzs='", "'sha256-ywmldhlf3ckhiety5fjl3w3uygs0vw9ykgeds1mcupo='", - "'sha256-dsrukmvjseubq/cf7svp418u0fpec25gfw8cwvs9zpg='", - "'sha256-sit7nj5pmocjrq4h8hvffwycpnb7qrqizqh13ykbkgw='", - "'sha256-b3uqknn570igqerztgkxv0nrp68zm/et1xx3+avwk4w='", - "'sha256-bvfn1ojq9n4ob5baslkeuvw2v72qx/z2f92u6ff5flm='", - "'sha256-mlu1tugtcf+zidinbm1yhyq8fdvxtce5z3npyq4wk/q='", - "'sha256-xqkfq5oogxnaxwk+31z5024vtss9sjtz0uko1tt1oj4='", - "'sha256-bnfeflzwppwjdbwfj1leigw5n6jbqtkiglum0krfezc='", - "'sha256-jha9cayyqtcbbh9eu+hcshxdro3slwgi78xcuxbjocu='", + "'sha256-kcco/sxfprq516gw+929z4+/8xprguxoo5qp+ej1iry='", + "'sha256-chwc5oexj6dvsycryomucnqfnoeklrvret6ynlljqxi='", + "'sha256-uyaguaaqsfbj087bmziv3grfysdvcepxqgy8vyz46vq='", + "'sha256-f+vbomevdiejq8zl6sqylfb/p+nibldv2r+q6mhwefq='", + "'sha256-bw8nydpk+rv9lpnlglux1ta/nihg2tpa6q6krc//k5c='", + "'sha256-k5kcysxt3hvbu3jkz7bn+yt7jvhmtl5m6i9wgv3jxko='", + "'sha256-v/kbhwpjnzfptfxfvwwo42jfibcmei6+uxcgiew+dh8='", + "'sha256-cyucsofsxm8qloawvb06lp57ny5y8csnonethzqswu8='", + "'sha256-ie6fhid8v0lrasoploxixxwuy8obuwpoejs6pcrjyca='", + "'sha256-7ldzebg4/ceoldnp+rb5jfmiy1zbicmyd0tl8uxd1v4='", + "'sha256-cgv9bubjavtnuivykouyszbde/sc0q3u3ayxd3u/yby='", + "'sha256-otlfih1wntwsjrrpnzn1ac/9gblgknqdr/on/sf67es='", + "'sha256-sescy+ekhe+c0mkpr7xt6q8luqk9t7bbti/hqdnhcx4='", + "'sha256-v4xcljlldzbwudhljgjk+tkwiiixl7euvxxepdbqrbk='", "'sha256-m/5ktbizrxzkqpxenhndx31u2ungis0npeggamdxtig='", - "'sha256-su/ekz4isnnyuay162begtrgjbo9zmpufu6at5rpc1o='", + "'sha256-7ktjjzcammmhxoclakm18v6y5lxz59nvnsbzn7sohu8='", "'sha256-3hbkpandps37ct7utxfq1f8pnjphh9r+afm3lwm3a8o='", - "'sha256-eegdkdnvfnibntanbkayu0ptmw9/czx2z6tqlrapjuk='", - "'sha256-iahmzreyj+btitr61f8cnxpz3ur9s82q+7m1w6eeq18='", - "'sha256-flusdq3g3faigkha7c9+wyo+1rp0kqn7u3poedd4sxw='", - "'sha256-d+l7qjtw1/cvbwpmgugqz6/colwtbplkfda4csxusrc='", + "'sha256-ukxi9y6c7zkxawdltu3x3eijw8+mjgqptrnsoca7cdq='", + "'sha256-vryfnqfy5qsqd5/litnzr+c+rpjvaie9i0asm2vt5na='", + "'sha256-/2osyhkfci6xlicc6rcyxrsk+ejo09+0cpsmo9ldpnq='", + "'sha256-mhyy31gjrimlb9iufsctm+xksmjzz4szufpog+tww30='", + "'sha256-in+sfjweytx0emhe8r08izue6xkeanyl/p/r7rtk5rg='", "'sha256-kt9flchxu3u0mod0zc6nt6fkz6vcjjcpvqq6grpuvha='", - "'sha256-cyucsofsxm8qloawvb06lp57ny5y8csnonethzqswu8='", + "'sha256-uy2z2zhkbrmg+btiw2avvxdrh9ryhltc/3ugc0nol1k='", + "'sha256-qoacpu4uxiwbkgwmpeyksu96btxbcineicgalfdnoy4='", + "'sha256-dsgp181iqxg75b+r9if1siihpnvtsvx0bjxdfaoqlq4='", + "'sha256-+u37rdy+ekwoqkvujvztxsta1zqytvwz9iattjwuulq='", + "'sha256-47deqpj8hbsa+/timw+5jceuqerkm5nmpjwzg3hsufu='", + "'sha256-qah3wbhsfpjwhrk9vmcea4bisdckf4rr8687dkyk4iq='", + "'sha256-h581/pfv9df3qp0j2olzizuyyficrnfxb5iw6x1kgh4='", + "'sha256-zkb6nakempyf4toefwxj2jpy270upe2bvdz3sd2uklm='", + "'sha256-jafxdxh5ozhdlsctr9j9euuhkmmaemzftomk/3asnck='", + "'sha256-tpnbcwnnoa5p0wt5btfq2ph+jbcpn0m1r5wj9n0qaig='", + "'sha256-dccw5nv6mbjlymaokukjqglfc/a+kkg9j2dwru4q+ny='", + "'sha256-ob2r4ppnvjy2shrdl+ll47lzgqet0drimdmc/gn+bls='", + "'sha256-lt4ljhksxoo2lm/kuj2ydky8budajmuyfceqgngcuo0='", + "'sha256-1bufbtd2izxorrihjdrz3l/qpliggcjfbiz8igsmnxo='", + "'sha256-dsrukmvjseubq/cf7svp418u0fpec25gfw8cwvs9zpg='", + "'sha256-i4ounwrcnri/we/crj7jhfvnprtr/evv+cqrt3hzynq='", + "'sha256-khf7uclfiky2nvjckcqpckqqbxhu75lubhb8kx2tzii='", "'sha256-oicwcnge9lkedhbwfylwph4apwuajr+x8i4fuvq/xg4='", - "'sha256-+gh0stzzmrespf8ernpb7r2s6h71qtgnbxzuyeq2pg4='", - "'sha256-v/kbhwpjnzfptfxfvwwo42jfibcmei6+uxcgiew+dh8='", - "'sha256-iavwiyddxxl+4slddpfwfk4jpg6yldaanhpyl8a3bxk='", - "'sha256-fekcetqvrr7vhxje+i6173duflbwzhh6kjcxnmzrtry='", + "'sha256-9h/cvox/ed6p+zyu7vuxoqirtpqdy8qnakf4/nuqcow='", + "'sha256-bnfeflzwppwjdbwfj1leigw5n6jbqtkiglum0krfezc='", "'sha256-k+1nxhi6s6f1vp/1ztoyprjo1wtn3hjjajsosixmby8='", - "'sha256-sj9d7rfdgtde5k7whxbjtbhwtsctimwnaopkvp3wdjy='", - "'sha256-k5kcysxt3hvbu3jkz7bn+yt7jvhmtl5m6i9wgv3jxko='", - "'sha256-s3s6q3wph450ibueuk1wn6eqgfz4zgk8q6nkhif+g+8='", - "'sha256-psxxae5l5brzqkd1hxrxh1k0zcc5zfysoyqrquihqvk='", - "'sha256-quhxl4+3eu8ln6ofqnoyz/zj7ff6r5iljedw+qpa5tm='", - "'sha256-dsgp181iqxg75b+r9if1siihpnvtsvx0bjxdfaoqlq4='", + "'sha256-flusdq3g3faigkha7c9+wyo+1rp0kqn7u3poedd4sxw='", + "'sha256-p5vs7ljnpqphmqiptwpih4pudfhttqaqgcouoljrzqe='", + "'sha256-7x7ie/ulkmsrmjuhqj7agdzcpz1jjciftbpmxfyodk4='", + "'sha256-d+l7qjtw1/cvbwpmgugqz6/colwtbplkfda4csxusrc='", "'sha256-mklqpdozpvjbv84ygi+xqjqdsat+uopmoqi1zgx6qye='", + "'sha256-eegdkdnvfnibntanbkayu0ptmw9/czx2z6tqlrapjuk='", + "'sha256-jigvxk4pm1cnzkfgj8tts6x+peszdawzg4oikc6lftq='", + "'sha256-zbw9gd7cyrl99uoi0rkd79jf5kneqwfpbcc/d41kr4w='", + "'sha256-sxtj1vafnmn1c0aujjwcirgogqf3m4didejjwaac3wo='", + "'sha256-s3s6q3wph450ibueuk1wn6eqgfz4zgk8q6nkhif+g+8='", + "'unsafe-hashes'", + "'sha256-mlu1tugtcf+zidinbm1yhyq8fdvxtce5z3npyq4wk/q='", + "'sha256-xqkfq5oogxnaxwk+31z5024vtss9sjtz0uko1tt1oj4='", + "'sha256-cqgdnlnz4rn4lqeu0cxxsl3xqqk7etfhm3ag0uq514i='", "'sha256-jgswinrbqgds0zkbfhjeurzqgdttbpxdgbux9id1yc8='", - "'sha256-lliuenaz5rtgdwopim7lgllwnra43wgsiv4awr+nwlo='", - "'sha256-tpnbcwnnoa5p0wt5btfq2ph+jbcpn0m1r5wj9n0qaig='", - "'sha256-ie6fhid8v0lrasoploxixxwuy8obuwpoejs6pcrjyca='", + "'sha256-wha+rov+mfoasflkmzsyrkip7uscpsnoj8zztcgbho4='", + "'sha256-byw81thv2wuhbfdu9cnmm4pcsq3fgxz1enetmq9bors='", + "'sha256-fekcetqvrr7vhxje+i6173duflbwzhh6kjcxnmzrtry='", + "'sha256-ubn9ynzdpp/wnyay9xcxoramljvmmbykq2tqwauflmu='", + "'sha256-tnywmpfcbu/6ikkkhny1wn5yfu8shc88qi8xmc0b268='", + "'sha256-bvfn1ojq9n4ob5baslkeuvw2v72qx/z2f92u6ff5flm='", + "'sha256-ygkksqv6nvmku6rg9akm8vdac/ov2i1uoxfe81alrge='", + "'sha256-pd5kgjz8mcfwxvr8unagsqhrm99+/tbwyormcwaudy8='", + "'sha256-nlz7ptlq0fifhwezpcszozxkrkrcdzebr47kwpzbv3a='", + "'sha256-su/ekz4isnnyuay162begtrgjbo9zmpufu6at5rpc1o='", + "'sha256-7eothjlas2jil1suw9qgufa4yp8kuoweycyfbvqlpie='", + "'sha256-eji6efasn0qjq9/iqgeqfl40nsadoesg8uhomep111o='", + "'sha256-flztlfbs6ixzt0o3sdlbfdfokpo9cmobz42ljfuscsq='", + "'sha256-chwwylxwzkgcmijlslubuvobtsqhfvvn0xi/1ag3c4a='", + "'sha256-s8eilbg9keltqx4tsu8ughdkbpbl+viz9mvjl2anua4='", "'sha256-zsrdziedwx1qa9lt/j/af+gtwxhs2kx571dcj7n5k9a='", + "'sha256-zh2for77zlse4xdkg8x6ix5v1c2fk55atvud06rht94='", + "'self'", + "'sha256-wnoydjdskc5ycjflr6xs0tqofdncaywftpwndflskne='", + "'sha256-u9ui7xlt1hz7gqk9ny0tgijg/pejzqa9ucc3mpyrwxa='", + "'sha256-jha9cayyqtcbbh9eu+hcshxdro3slwgi78xcuxbjocu='", + "'sha256-o2xazass3aoe9jlttgsf0uy8pli7ft7zml8p29rbjlm='", "'sha256-mgwwy+yxynoaikswttskzjwts4nnnpqlkqud3qg+l4s='", - "'sha256-qkou26uj4mma/lnspt1/69nlpyu27xjkouo7n13g5yk='", - "'sha256-lt4ljhksxoo2lm/kuj2ydky8budajmuyfceqgngcuo0='", - "'sha256-y9v1mzrln1n8apby5lmpxykwfkcp/nybmmenn7wfjuw='", - "'sha256-cgv9bubjavtnuivykouyszbde/sc0q3u3ayxd3u/yby='", - "'sha256-sescy+ekhe+c0mkpr7xt6q8luqk9t7bbti/hqdnhcx4='", - "'sha256-jafxdxh5ozhdlsctr9j9euuhkmmaemzftomk/3asnck='", - "'sha256-i4ounwrcnri/we/crj7jhfvnprtr/evv+cqrt3hzynq='", - "'sha256-g1mpftcjhxuquy8pamarzigf+jrtwdfmtlcnj/focae='" + "'sha256-v+wzhw7g+kearsnuhnj/jk7cfyy+o/ml+2dnig1e3lo='", + "'sha256-11pn3zgb9q3rqj0rf8sug6uaufjzytv6dymsyqss2xm='" ] }, "http": true, @@ -464778,7 +462052,7 @@ "data": { "csrftoken": { "domain": "moana.beta.gouv.fr", - "expires": 1736097550, + "expires": 1736700647, "httponly": false, "max-age": null, "path": "/", @@ -465285,7 +462559,7 @@ "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "143 >= 60 days" + "finding": "136 >= 60 days" }, { "id": "cert_notBefore", @@ -465404,7 +462678,7 @@ "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704648023" + "finding": "1705251116" }, { "id": "HSTS_time", @@ -465467,7 +462741,7 @@ "ip": "moana.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; base-uri 'self'; img-src 'self' data:; default-src 'self'; font-src 'self' data:" + "finding": "default-src 'self'; base-uri 'self'; connect-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; img-src 'self' data:; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='" }, { "id": "Permissions-Policy", @@ -465992,77 +463266,77 @@ }, { "id": "service", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466070,7 +463344,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466078,7 +463352,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466086,7 +463360,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -466094,7 +463368,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -466102,7 +463376,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -466110,434 +463384,434 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "136 >= 60 days" }, { "id": "cert_notBefore", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-05-30 22:00" }, { "id": "cert_notAfter", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-05-29 21:59" }, { "id": "cert_extlifeSpan", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "certs_list_ordering_problem", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert_badOCSP", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704648075" + "finding": "1705251166" }, { "id": "HSTS_time", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; base-uri 'self'; img-src 'self' data:; default-src 'self'; font-src 'self' data:" + "finding": "default-src 'self'; base-uri 'self'; connect-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; img-src 'self' data:; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='" }, { "id": "Permissions-Policy", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -466545,7 +463819,7 @@ }, { "id": "heartbleed", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -466554,7 +463828,7 @@ }, { "id": "CCS", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -466563,7 +463837,7 @@ }, { "id": "ticketbleed", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -466572,7 +463846,7 @@ }, { "id": "ROBOT", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -466581,7 +463855,7 @@ }, { "id": "secure_renego", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -466589,7 +463863,7 @@ }, { "id": "secure_client_renego", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -466598,7 +463872,7 @@ }, { "id": "CRIME_TLS", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -466607,7 +463881,7 @@ }, { "id": "BREACH", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -466616,7 +463890,7 @@ }, { "id": "POODLE_SSL", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -466625,14 +463899,14 @@ }, { "id": "fallback_SCSV", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -466641,7 +463915,7 @@ }, { "id": "FREAK", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -466650,7 +463924,7 @@ }, { "id": "DROWN", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -466659,7 +463933,7 @@ }, { "id": "DROWN_hint", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -466668,7 +463942,7 @@ }, { "id": "LOGJAM", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -466677,7 +463951,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -466686,7 +463960,7 @@ }, { "id": "BEAST", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -466695,7 +463969,7 @@ }, { "id": "LUCKY13", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -466704,7 +463978,7 @@ }, { "id": "winshock", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -466713,7 +463987,7 @@ }, { "id": "RC4", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -466722,399 +463996,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "moana.beta.gouv.fr/80.247.13.145", + "ip": "moana.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "service", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -467122,7 +464396,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -467130,7 +464404,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -467138,7 +464412,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -467146,7 +464420,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -467154,7 +464428,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -467162,434 +464436,434 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "136 >= 60 days" }, { "id": "cert_notBefore", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-05-30 22:00" }, { "id": "cert_notAfter", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-05-29 21:59" }, { "id": "cert_extlifeSpan", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "certs_list_ordering_problem", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert_badOCSP", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704648128" + "finding": "1705251217" }, { "id": "HSTS_time", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; base-uri 'self'; img-src 'self' data:; default-src 'self'; font-src 'self' data:" + "finding": "default-src 'self'; base-uri 'self'; connect-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; img-src 'self' data:; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='" }, { "id": "Permissions-Policy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -467597,7 +464871,7 @@ }, { "id": "heartbleed", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -467606,7 +464880,7 @@ }, { "id": "CCS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -467615,7 +464889,7 @@ }, { "id": "ticketbleed", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -467624,7 +464898,7 @@ }, { "id": "ROBOT", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -467633,7 +464907,7 @@ }, { "id": "secure_renego", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -467641,7 +464915,7 @@ }, { "id": "secure_client_renego", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -467650,7 +464924,7 @@ }, { "id": "CRIME_TLS", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -467659,7 +464933,7 @@ }, { "id": "BREACH", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -467668,7 +464942,7 @@ }, { "id": "POODLE_SSL", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -467677,14 +464951,14 @@ }, { "id": "fallback_SCSV", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -467693,7 +464967,7 @@ }, { "id": "FREAK", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -467702,7 +464976,7 @@ }, { "id": "DROWN", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -467711,7 +464985,7 @@ }, { "id": "DROWN_hint", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -467720,7 +464994,7 @@ }, { "id": "LOGJAM", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -467729,7 +465003,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -467738,7 +465012,7 @@ }, { "id": "BEAST", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -467747,7 +465021,7 @@ }, { "id": "LUCKY13", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -467756,7 +465030,7 @@ }, { "id": "winshock", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -467765,7 +465039,7 @@ }, { "id": "RC4", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -467774,399 +465048,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "moana.beta.gouv.fr/148.253.96.193", + "ip": "moana.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "service", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468174,7 +465448,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468182,7 +465456,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468190,7 +465464,7 @@ }, { "id": "cipherlist_LOW", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -468198,7 +465472,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -468206,7 +465480,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -468214,434 +465488,434 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "136 >= 60 days" }, { "id": "cert_notBefore", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-05-30 22:00" }, { "id": "cert_notAfter", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-05-29 21:59" }, { "id": "cert_extlifeSpan", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://crl.certigna.fr/servicesca.crl http://crl.dhimyotis.com/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.dhimyotis.com http://servicesca.ocsp.certigna.fr" }, { "id": "OCSP_stapling", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "certs_list_ordering_problem", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert_badOCSP", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704648181" + "finding": "1705251266" }, { "id": "HSTS_time", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Content-Type-Options", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; base-uri 'self'; img-src 'self' data:; default-src 'self'; font-src 'self' data:" + "finding": "default-src 'self'; base-uri 'self'; connect-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; img-src 'self' data:; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='" }, { "id": "Permissions-Policy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()" }, { "id": "Referrer-Policy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "same-origin" }, { "id": "banner_reverseproxy", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -468649,7 +465923,7 @@ }, { "id": "heartbleed", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -468658,7 +465932,7 @@ }, { "id": "CCS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -468667,7 +465941,7 @@ }, { "id": "ticketbleed", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -468676,7 +465950,7 @@ }, { "id": "ROBOT", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -468685,7 +465959,7 @@ }, { "id": "secure_renego", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -468693,7 +465967,7 @@ }, { "id": "secure_client_renego", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -468702,7 +465976,7 @@ }, { "id": "CRIME_TLS", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -468711,7 +465985,7 @@ }, { "id": "BREACH", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -468720,7 +465994,7 @@ }, { "id": "POODLE_SSL", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -468729,14 +466003,14 @@ }, { "id": "fallback_SCSV", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -468745,7 +466019,7 @@ }, { "id": "FREAK", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -468754,7 +466028,7 @@ }, { "id": "DROWN", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -468763,7 +466037,7 @@ }, { "id": "DROWN_hint", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -468772,7 +466046,7 @@ }, { "id": "LOGJAM", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -468781,7 +466055,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -468790,7 +466064,7 @@ }, { "id": "BEAST", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -468799,7 +466073,7 @@ }, { "id": "LUCKY13", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -468808,7 +466082,7 @@ }, { "id": "winshock", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -468817,7 +466091,7 @@ }, { "id": "RC4", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -468826,332 +466100,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "protocol_support_score_weighted", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "key_exchange_score_weighted", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "cipher_strength_score_weighted", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "final_score", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "overall_grade", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "CRITICAL", "finding": "T" }, { "id": "grade_cap_reason_1", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to T. Issues with the chain of trust (chain incomplete)" }, { "id": "scanTime", - "ip": "moana.beta.gouv.fr/185.21.194.105", + "ip": "moana.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "215" + "finding": "202" } ], "thirdparties": { @@ -469159,10 +466433,10 @@ "cookies": [ { "name": "csrftoken", - "value": "0Nlg57kfrutsQcJAWpQNYY6gTVlEVDvt", + "value": "mEKy98yWwfqFVl1QlESkbQr3ex76xsVi", "domain": "moana.beta.gouv.fr", "path": "/", - "expires": 1736097580.384636, + "expires": 1736700676.747766, "size": 41, "httpOnly": false, "secure": true, @@ -469175,18 +466449,18 @@ ], "headers": { "content-encoding": "gzip", - "content-security-policy": "script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; connect-src 'self'; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='; base-uri 'self'; img-src 'self' data:; default-src 'self'; font-src 'self' data:", + "content-security-policy": "default-src 'self'; base-uri 'self'; connect-src 'self'; font-src 'self' data:; script-src 'self' 'sha256-MS6/3FCg4WjP9gwgaBGwLpRCY6fZBgwmhVCdrPrNf3E=' 'sha256-tQjf8gvb2ROOMapIxFvFAYBeUJ0v1HCbOcSmDNXGtDo=' 'sha256-VA8O2hAdooB288EpSTrGLl7z3QikbWU9wwoebO/QaYk=' 'sha256-+5XkZFazzJo8n0iOP4ti/cLCMUudTf//Mzkb7xNPXIc='; img-src 'self' data:; style-src 'self' 'unsafe-hashes' 'sha256-UY2Z2ZhkbRMG+BtiW2aVvxdRH9RYhlTC/3UgC0nOl1k=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' 'sha256-BW8NYdPk+rv9lpNlgLUX1TA/NiHG2tpA6q6KRC//k5c=' 'sha256-dsGP181IqXG75B+r9iF1SiIhPNVTsVx0BJXDFaoQLq4=' 'sha256-Qkou26UJ4mma/LNSpT1/69nlpyu27XJKOUO7n13g5Yk=' 'sha256-7eOTHjLAs2jIL1sUw9qGUFA4yP8kuOwEYcyFbVQLPIE=' 'sha256-G1mPftcjhxuQUY8PAMARzigf+jrTWDfmTLcnj/FocAE=' 'sha256-iaVwiydDxXL+4SlDDPFWfk4Jpg6YldaaNHpyl8a3bXk=' 'sha256-Pmwu0eUdcN34zAYfZv8U9kKsPQORsHRaQi0XR5Rp+Fc=' 'sha256-3mzEAjTiQ8bWkS38Wk4SXFGoZGOEOoLiC5lD4uliyhk=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-FlUSdq3G3fAiGkha7C9+wYO+1rp0kQn7U3poedd4sxw=' 'sha256-JgsWInRBQgDS0ZKBFhjEUrZQgDtTBPXdGBUX9Id1Yc8=' 'sha256-7ldZEBg4/CEolDNP+RB5jFmIY1zbIcMyd0tL8Uxd1V4=' 'sha256-dsruKmvJSEuBQ/CF7svp418u0fPEC25gfW8Cwvs9zpg=' 'sha256-M/5KtBIzrxzKQPXeNhNDx31U2UNGis0NpeGGamDXtig=' 'sha256-bNfEFlzWpPWjDbWFJ1LeIGW5N6jBQtKiGlUm0krfezc=' 'sha256-zh2for77ZLSE4XdkG8x6Ix5V1c2FK55aTVud06RHT94=' 'sha256-WNoYDJDSKC5YcjfLr6xS0tQoFdNcaYwfTPwndflSkNE=' 'sha256-uyaguaaqSfbJ087bmziv3GrFYsDvcEPxqGy8vyZ46vQ=' 'sha256-KT9flChXu3U0moD0Zc6Nt6FKZ6VcjjcpVQQ6GRpuVhA=' 'sha256-SeSCy+EKHe+C0MKpr7Xt6Q8lUQK9t7BbtI/hqdNHcx4=' 'sha256-Jha9CAyYQtcbbh9EU+HcSHXdRo3slWGi78xcUXbJocU=' 'sha256-rkRoPJzfJ639eOCK8whMGS0CV/xG1jQLd4NiRy1LW1U=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-QZs8iU6D/fpYuISgxHwfRTTYDmRwRV2JdU9akop9iF0=' 'sha256-MklQPDOzpvjBv84yGi+XQJQdsAT+UopmoQi1zGX6qyE=' 'sha256-IN+SFJWeYTx0EmHE8R08Izue6xkEanYL/p/r7rtk5Rg=' 'sha256-ZkB6nAkEMpyf4tOeFWxj2jPY270Upe2bVDz3sd2uklM=' 'sha256-khf7uCLFiky2nvJcKcqPcKqqbXHu75LUbHb8KX2TzII=' 'sha256-j3CmTEUKgZHMIjbTE4JpHGWyIxPiWBtDgVMSv1iZsZ8=' 'sha256-qAh3wbhSFpJWHrk9VmcEa4BiSdckF4rr8687DKYK4IQ=' 'sha256-7KtJJzCAMMmHXoclaKM18v6y5lxZ59NVNsbZn7soHU8=' 'sha256-SU/Ekz4isnnyuAY162bEGTRgJbO9ZMpUFu6aT5Rpc1o=' 'sha256-Sit7Nj5pMoCJrq4h8HVFFWYCpnB7qRQIzqh13YKBkgw=' 'sha256-i4OuNwrCNri/We/CrJ7JHFVnPrtr/Evv+CqrT3HzYnQ=' 'sha256-tNywMpfCBu/6IkkKhNy1wn5yFU8SHC88QI8xMC0B268=' 'sha256-LT4LjHKsxOO2lm/KUj2ydKy8BuDaJMuYfCEQGnGCUO0=' 'sha256-D+L7qJtw1/cvBWPmGuGQZ6/cOlwTbPLKfda4CSxusRc=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-psXxAE5l5BrZqkd1HxRxH1k0Zcc5zFySoYQrquiHQvk=' 'sha256-YGkksQv6NvMkU6rG9AKm8vDAc/oV2i1UoxfE81alrGE=' 'sha256-UkxI9Y6c7ZkxAwDLTU3x3eijW8+MJgQPtrNsoCa7CdQ=' 'sha256-11PN3ZgB9q3RqJ0Rf8SuG6uAufJzYtv6dymSYQSS2xM=' 'sha256-JaFXDxh5OzHDlsCTR9j9eUUHkMmAEMZftOmK/3aSNCk=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-OB2R4pPNvjY2sHRDl+ll47lZGQet0DrimDmC/Gn+BLs=' 'sha256-EEgdkDNvfnIbntANbKaYU0pTmw9/czX2z6TqlRApJuk=' 'sha256-v/KBhwPjNzfPtFxfvWWo42jfIbcMEi6+UXCGiew+dh8=' 'sha256-JigVXk4Pm1cNZkFgj8ttS6x+PEsZDaWZg4oIkC6LFTQ=' 'sha256-kCcO/sXfpRq516gW+929z4+/8xPRgUxoo5QP+Ej1IRY=' 'sha256-k5kCysXT3hVbU3jKz7bn+Yt7JVHMTL5M6i9WgV3jXKo=' 'sha256-cGv9BubJaVTnUIvyKOUYsZBDe/SC0q3u3aYxD3u/YBY=' 'sha256-F+vboMevdiEJQ8Zl6SQylfB/P+nIbLdv2R+Q6mhWefQ=' 'sha256-chwC5OexJ6DVSYCRYOmucnQFnoeKLRVreT6YNLlJqXI=' 'sha256-oiCwcnge9lKedHBwFyLWPH4Apwuajr+x8I4FuvQ/XG4=' 'sha256-CQGdNLnZ4rN4lQEu0CXxSL3xQqk7eTfHm3aG0uQ514I=' 'sha256-S8EILBg9kElTQX4TsU8UGhDkBpbl+vIz9MvJL2AnUa4=' 'sha256-zezSBXgCLVLJuHWElfY+zbm3yC0WX0BRZ5XiB6kk9YI=' 'sha256-Mlu1TugTcF+ZIdInBm1yhYq8FDVxTCe5Z3npYq4wK/Q=' 'sha256-qUHXL4+3eu8ln6oFqnOYz/Zj7FF6R5iLJEdW+Qpa5tM=' 'sha256-Mhyy31GJRiMLb9IuFsCTm+XKSmJzZ4SZuFPog+TwW30=' 'sha256-9H/cvOx/ed6p+zYU7VuXOqIrtPQDy8qNaKF4/nUqCow=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-89mGg98zZWU//GmE9rH+U/BKP3Skczhw01XtpCv7fZs=' 'sha256-CYUcsofsXM8qloawVb06LP57nY5Y8CSnoNetHZqSWU8=' 'sha256-C8Ye1fS0s17IUHQrxiZVpyPUg6rUXaXrI2uXY8dfPoc=' 'sha256-C/p3GdDCHO6MGgD18owrCUdv2yG8R7ykwmrNADqdxEk=' 'sha256-rGyc1KRJngrXlGsHIZEZeW79Ig8SSqT2XC0VJ1MZxVg=' 'sha256-o2XaZASS3Aoe9jlttgSf0uy8plI7ft7ZML8P29rbjlM=' 'sha256-IAhMzReYj+bTiTR61f8cNxpz3ur9s82Q+7M1w6EeQ18=' 'sha256-V+wZhw7G+kEARSNuhNJ/Jk7cfYY+o/mL+2dNiG1E3Lo=' 'sha256-vrYfNqfY5qsqD5/LITNzR+c+RPjvAIE9i0aSM2vt5nA=' 'sha256-qoAcPu4UxiwbKGWMPeykSU96BtxBciNeIcgalFdnoy4=' 'sha256-OtlFIH1WNTWSjRrpnZn1ac/9gBLGKnQDR/ON/Sf67Es=' 'sha256-FlZtLFbS6ixzT0O3SdlBfdfoKpO9cmObZ42lJfuscsQ=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-uBN9YnzDPP/WnYAY9xCxoramlJvmMBYKQ2TQWaUFLMU=' 'sha256-Nlz7PtLQ0fifhWEzpCSzOZXkRkRcDZeBR47KWPZbV3A=' 'sha256-7X7IE/ulkmSRMjUHqj7AGdzCPz1jjcifTbPMXfyodK4=' 'sha256-+gH0StZZMReSPF8eRnpB7r2s6H71QTGnBXzuYeq2PG4=' 'sha256-/2osYhKfCI6xlicC6rCYXRsK+EJo09+0CpsmO9LDpnQ=' 'sha256-LliUeNaz5RTgdwopiM7lgLLWnrA43WGsIV4awR+NWlo=' 'sha256-mBeMj+FoyhuenCUnSSaxG3tV8AtqT9Z0eYLAlGXU74c=' 'sha256-NNEo4gMMtuj+Qc58Pg6CCRc7hIxTqPUVBEUxw7FkjJA=' 'sha256-ChwWyLxwzKGcMIjlsLuBuvObTSqHfvvN0xi/1ag3C4A=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-+u37Rdy+ekwoQKVuJVztXstA1zQyTVwz9iAttJwUulQ=' 'sha256-g2a9YurRoDnkmxGYhXHx+fVXPc3yoQOITBqG/29+HB0=' 'sha256-BYw81thv2wuhbfDu9CNMm4pcsQ3fGxz1EnETMq9bOrs=' 'sha256-ZSrdZIEDwx1Qa9lT/j/AF+GtwxHs2kx571dCj7N5K9A=' 'sha256-sj9D7RfdGTDE5k7whxBjTBHwTSCtimWNaOpkvP3WDJY=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-K+1NxhI6S6f1Vp/1zToYpRjO1Wtn3HjJAJsosixMBY8=' 'sha256-zBW9Gd7cYrL99uoi0rkd79Jf5KneqwfpBcC/D41KR4w=' 'sha256-GFNDhwxwXZs7l57eSOzmVzM9SwnL+9bPsWtfywDWZ/o=' 'sha256-m8Pz0zl8bITdMGVCpFtn+auDdGW43eWfLnuSjFaRK3I=' 'sha256-b3UqKNN570IGqeRZtgkXV0nrp68Zm/eT1xx3+aVwk4w=' 'sha256-fEkcETQVRr7vHXJE+i6173duFLbWzhh6kjCxNMzrtrY=' 'sha256-p5Vs7LJNpQPhMqIPTwpih4puDfhTTQAQGcoUOljrzQE=' 'sha256-RtwQ9v8zz41mmjRsx8o521MwdLxwvrxJFSq+SbkyrcY=' 'sha256-1buFBtd2iZxORriHJdRZ3L/qpLiGgCjFBIz8iGSmnxo=' 'sha256-ywMlDhLF3cKhIEty5FjL3w3uYgS0vW9yKgeds1McUpo=' 'sha256-v4xClJlLdZBwUdhLJgjk+tkwIIIxL7EuVxXePdbQRbk=' 'sha256-dCcw5nv6MBjlyMAokUkJQgLFC/a+KkG9j2DWru4Q+NY=' 'sha256-H581/pFv9Df3qP0J2OLZizuYYfICrnFxB5iw6X1KGh4=' 'sha256-S3S6q3wph450iBuEUK1Wn6eQGFz4ZgK8Q6NkhIf+g+8=' 'sha256-wha+rOv+MfoASFLKMzSyRKiP7USCPsNoj8ZZtCgbHo4=' 'sha256-pD5KGJZ8MCfWxvR8UNaGsqHRM99+/tBwyORmCWAuDy8=' 'sha256-BVFn1OjQ9n4OB5BaSLkeUVw2v72qX/z2F92U6ff5FlM=' 'sha256-Xw42Dn3LuRCKTNnpeG3kQs7OpMbBRWlNnIvRsCKSHJQ=' 'sha256-MgWwy+YXYnOaIkswttSkzJwTs4NnnPQLKqud3qG+l4s=' 'sha256-sXTj1VAfNMN1c0aUjJWCirgoGqf3M4dIDejjwaac3Wo=' 'sha256-ie6FHiD8v0LrAsoPlOXIXxwUy8ObUwpoejS6pcrJycA=' 'sha256-tpnBcwnNOA5p0Wt5bTFq2ph+jbcpn0M1R5wJ9n0qaIg=' 'sha256-EJi6eFaSN0qjq9/iQGeQfL40NsadoesG8uHOMep111o=' 'sha256-3HbKpANDPs37Ct7uTXfQ1F8PnJphH9R+Afm3LWm3A8o=' 'sha256-xQKFQ5OoGxNAXWk+31Z5024vtSs9SJTz0UkO1tT1OJ4=' 'sha256-Y9v1MZrln1N8aPBY5lmpxYKwFkcp/nyBMMEnn7WFjuw=' 'sha256-u9uI7XlT1hZ7gQk9nY0tGiJg/peJzQA9ucC3MpYRwxA='", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 17:19:40 GMT", + "date": "Sun, 14 Jan 2024 16:51:16 GMT", "permissions-policy": "accelerometer=(), autoplay=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=0Nlg57kfrutsQcJAWpQNYY6gTVlEVDvt; expires=Sun, 05 Jan 2025 17:19:40 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", + "set-cookie": "csrftoken=mEKy98yWwfqFVl1QlESkbQr3ex76xsVi; expires=Sun, 12 Jan 2025 16:51:16 GMT; Max-Age=31449600; Path=/; SameSite=Lax; Secure", "strict-transport-security": "max-age=31536000", "vary": "Cookie, origin", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "bac6343b-1f49-4276-9ce4-534a6546a675" + "x-request-id": "35596962-b7fc-4bc5-827e-487e45277413" }, "endpoints": [ { @@ -469291,23 +466565,6 @@ } ] }, - { - "slug": "hsts", - "name": "HSTS", - "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", - "confidence": 100, - "version": null, - "icon": "default.svg", - "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", - "cpe": null, - "categories": [ - { - "id": 16, - "slug": "security", - "name": "Security" - } - ] - }, { "slug": "sendinblue", "name": "Sendinblue", @@ -469330,13 +466587,30 @@ } ], "rootPath": true + }, + { + "slug": "hsts", + "name": "HSTS", + "description": "HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.", + "confidence": 100, + "version": null, + "icon": "default.svg", + "website": "https://www.rfc-editor.org/rfc/rfc6797#section-6.1", + "cpe": null, + "categories": [ + { + "id": 16, + "slug": "security", + "name": "Security" + } + ] } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 17:18:38", + "@generated": "Sun, 14 Jan 2024 16:50:17", "site": [ { "@name": "https://moana.beta.gouv.fr", @@ -469468,6 +466742,41 @@ ] }, "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "moana.beta.gouv.fr.", + "matched-at": "moana.beta.gouv.fr", + "timestamp": "2024-01-14T16:55:47.236572532Z", + "matcher-status": true + }, { "template": "dns/dmarc-detect.yaml", "template-url": "https://templates.nuclei.sh/public/dmarc-detect", @@ -469505,7 +466814,7 @@ "extracted-results": [ "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2024-01-07T17:24:27.329205096Z", + "timestamp": "2024-01-14T16:55:47.307208838Z", "matcher-status": true }, { @@ -469538,29 +466847,29 @@ "host": "moana.beta.gouv.fr.", "matched-at": "moana.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T17:24:27.354833774Z", + "timestamp": "2024-01-14T16:55:48.147669177Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -469576,7 +466885,11 @@ "type": "dns", "host": "moana.beta.gouv.fr.", "matched-at": "moana.beta.gouv.fr", - "timestamp": "2024-01-07T17:24:27.415232448Z", + "extracted-results": [ + "\"v=spf1 include:spf.sendinblue.com include:_spf.alwaysdata.com mx ~all\"", + "\"Sendinblue-code:d18c3ccb3a328daab46126af468f87ab\"" + ], + "timestamp": "2024-01-14T16:55:48.148465891Z", "matcher-status": true }, { @@ -469616,46 +466929,7 @@ "10 mx1.alwaysdata.com.", "20 mx2.alwaysdata.com." ], - "timestamp": "2024-01-07T17:24:27.546440885Z", - "matcher-status": true - }, - { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", - "info": { - "name": "DNS TXT Record Detected", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "moana.beta.gouv.fr.", - "matched-at": "moana.beta.gouv.fr", - "extracted-results": [ - "\"Sendinblue-code:d18c3ccb3a328daab46126af468f87ab\"", - "\"v=spf1 include:spf.sendinblue.com include:_spf.alwaysdata.com mx ~all\"" - ], - "timestamp": "2024-01-07T17:24:28.363548138Z", + "timestamp": "2024-01-14T16:55:48.394997476Z", "matcher-status": true }, { @@ -469691,8 +466965,8 @@ "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:25:10.687247482Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:56:22.888445063Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469718,8 +466992,8 @@ "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:25:10.704587401Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:56:22.906035115Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469751,12 +467025,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:25:23.98943523Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:56:33.808993241Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469788,12 +467062,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:25:23.989474333Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:56:33.80903617Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469825,12 +467099,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:25:23.989487087Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:56:33.809048493Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, @@ -469862,61 +467136,60 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://moana.beta.gouv.fr", "matched-at": "https://moana.beta.gouv.fr/login/?next=/", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:25:23.989496885Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T16:56:33.809057099Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://moana.beta.gouv.fr'", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam", - "pussycat0x" + "lingtren" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "moana.beta.gouv.fr", "matched-at": "moana.beta.gouv.fr:443", "extracted-results": [ - "tls12" + "DHIMYOTIS" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:31:39.047751771Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:02:40.124936558Z", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "SSL DNS Names", "author": [ - "lingtren" + "pdteam" ], "tags": [ "ssl", "tls" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { "max-request": 1 @@ -469926,43 +467199,44 @@ "host": "moana.beta.gouv.fr", "matched-at": "moana.beta.gouv.fr:443", "extracted-results": [ - "DHIMYOTIS" + "stats.moana.beta.gouv.fr", + "moana.beta.gouv.fr", + "www.stats.moana.beta.gouv.fr", + "www.moana.beta.gouv.fr" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:31:39.34767724Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:02:40.125065718Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "SSL DNS Names", + "name": "TLS Version - Detect", "author": [ - "pdteam" + "pdteam", + "pussycat0x" ], "tags": [ "ssl", "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "moana.beta.gouv.fr", "matched-at": "moana.beta.gouv.fr:443", "extracted-results": [ - "www.stats.moana.beta.gouv.fr", - "www.moana.beta.gouv.fr", - "stats.moana.beta.gouv.fr", - "moana.beta.gouv.fr" + "tls12" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:31:39.347808095Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:02:40.156932725Z", "matcher-status": true }, { @@ -469992,8 +467266,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T17:31:40.140562874Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:02:41.038283002Z", "matcher-status": true } ], @@ -470001,7 +467275,7 @@ { "requestedUrl": "https://moana.beta.gouv.fr/", "finalUrl": "https://moana.beta.gouv.fr/login/?next=/", - "fetchTime": "2024-01-07T17:18:52.733Z", + "fetchTime": "2024-01-14T16:50:30.803Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://moana.beta.gouv.fr/) was redirected to https://moana.beta.gouv.fr/login/?next=/. Try testing the second URL directly." ], @@ -470066,53 +467340,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 1359, + "numericValue": 1357, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1359, - "firstMeaningfulPaint": 1359, - "largestContentfulPaint": 1584, - "interactive": 1359, - "speedIndex": 1359, + "firstContentfulPaint": 1357, + "firstMeaningfulPaint": 1357, + "largestContentfulPaint": 1582, + "interactive": 1357, + "speedIndex": 1357, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.003495730929904514, "cumulativeLayoutShiftMainFrame": 0.003495730929904514, "totalCumulativeLayoutShift": 0.003495730929904514, "observedTimeOrigin": 0, - "observedTimeOriginTs": 209827327, + "observedTimeOriginTs": 247944197, "observedNavigationStart": 0, - "observedNavigationStartTs": 209827327, - "observedFirstPaint": 378, - "observedFirstPaintTs": 210205667, - "observedFirstContentfulPaint": 378, - "observedFirstContentfulPaintTs": 210205667, - "observedFirstContentfulPaintAllFrames": 378, - "observedFirstContentfulPaintAllFramesTs": 210205667, - "observedFirstMeaningfulPaint": 378, - "observedFirstMeaningfulPaintTs": 210205667, - "observedLargestContentfulPaint": 378, - "observedLargestContentfulPaintTs": 210205667, - "observedLargestContentfulPaintAllFrames": 378, - "observedLargestContentfulPaintAllFramesTs": 210205667, - "observedTraceEnd": 2884, - "observedTraceEndTs": 212711644, - "observedLoad": 567, - "observedLoadTs": 210394796, + "observedNavigationStartTs": 247944197, + "observedFirstPaint": 301, + "observedFirstPaintTs": 248245467, + "observedFirstContentfulPaint": 301, + "observedFirstContentfulPaintTs": 248245467, + "observedFirstContentfulPaintAllFrames": 301, + "observedFirstContentfulPaintAllFramesTs": 248245467, + "observedFirstMeaningfulPaint": 316, + "observedFirstMeaningfulPaintTs": 248260049, + "observedLargestContentfulPaint": 301, + "observedLargestContentfulPaintTs": 248245467, + "observedLargestContentfulPaintAllFrames": 301, + "observedLargestContentfulPaintAllFramesTs": 248245467, + "observedTraceEnd": 2773, + "observedTraceEndTs": 250717164, + "observedLoad": 464, + "observedLoadTs": 248408511, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 209827965, + "observedDomContentLoadedTs": 247944704, "observedCumulativeLayoutShift": 0.003495730929904514, "observedCumulativeLayoutShiftMainFrame": 0.003495730929904514, "observedTotalCumulativeLayoutShift": 0.003495730929904514, - "observedFirstVisualChange": 364, - "observedFirstVisualChangeTs": 210191327, - "observedLastVisualChange": 964, - "observedLastVisualChangeTs": 210791327, - "observedSpeedIndex": 384, - "observedSpeedIndexTs": 210211758 + "observedFirstVisualChange": 312, + "observedFirstVisualChangeTs": 248256197, + "observedLastVisualChange": 912, + "observedLastVisualChangeTs": 248856197, + "observedSpeedIndex": 331, + "observedSpeedIndexTs": 248274735 }, { "lcpInvalidated": false @@ -470134,19 +467408,19 @@ "numScripts": 1, "numStylesheets": 2, "numFonts": 4, - "numTasks": 16, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 100.704, - "throughput": 9130175.693641145, - "maxRtt": 100.704, - "maxServerLatency": 8.541000000000011, - "totalByteWeight": 354585, - "totalTaskTime": 3.3609999999999998, - "mainDocumentTransferSize": 8384 + "rtt": 81.059, + "throughput": 11994234.550531942, + "maxRtt": 81.059, + "maxServerLatency": 7.097000000000008, + "totalByteWeight": 354481, + "totalTaskTime": 3.8569999999999998, + "mainDocumentTransferSize": 8373 } ] } @@ -470276,7 +467550,7 @@ "http": { "url": "https://carnet-de-bord-preprod.dev.fabrique.social.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 17:27:35 GMT", + "end_time": "Sun, 14 Jan 2024 16:59:54 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -470284,18 +467558,18 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 17:27:34 GMT", + "Date": "Sun, 14 Jan 2024 16:59:53 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "898682be-9a8e-4b67-a3b0-2bbe775a2456", - "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-KPgmKkCqbsNLKkEL/1jxWQ=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", - "etag": "W/\"itar1z\"", + "X-Request-ID": "2108fd14-80ea-4148-9de8-a5cca0f97f72", + "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-ZAXptomXGckcyJ98Yb/S/Q=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", + "etag": "W/\"nkyqfr\"", "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.394ad635.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.b790e2e2.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.33a128f5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.fb0abc31.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.a27a20fe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.d1265a8d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.e93c269d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.4b70ea63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.50187b5e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.4c45342a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.901241c0.js>; rel=\"modulepreload\"; nopush", "x-sveltekit-page": "true" }, - "scan_id": 46236598, + "scan_id": 46490387, "score": 65, - "start_time": "Sun, 07 Jan 2024 17:27:30 GMT", + "start_time": "Sun, 14 Jan 2024 16:59:49 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -470311,40 +467585,40 @@ "'self'" ], "connect-src": [ - "https://matomo.inclusion.beta.gouv.fr", - "wss://client.relay.crisp.chat/", + "https://client.crisp.chat/static/", "'self'", "https://sentry.gip-inclusion.cloud-ed.fr", - "https://client.crisp.chat/static/" + "wss://client.relay.crisp.chat/", + "https://matomo.inclusion.beta.gouv.fr" ], "default-src": [ - "https://matomo.inclusion.beta.gouv.fr", - "'self'" + "'self'", + "https://matomo.inclusion.beta.gouv.fr" ], "font-src": [ - "'self'", "data:", + "'self'", "https://client.crisp.chat/static/" ], "img-src": [ - "'self'", + "https://*.crisp.chat/", "data:", - "https://*.crisp.chat/" + "'self'" ], "media-src": [ "'self'", "nextcloud.fabrique.social.gouv.fr" ], "script-src": [ - "https://matomo.inclusion.beta.gouv.fr", + "https://client.crisp.chat/", "'self'", - "'nonce-kpgmkkcqbsnlkkel/1jxwq=='", - "https://client.crisp.chat/" + "https://matomo.inclusion.beta.gouv.fr", + "'nonce-zaxptomxgckcyj98yb/s/q=='" ], "style-src": [ + "'unsafe-inline'", "'self'", - "*.crisp.chat", - "'unsafe-inline'" + "*.crisp.chat" ] }, "http": true, @@ -470740,7 +468014,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "sessionresumption_ID", @@ -470887,7 +468161,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "64 >= 30 days" + "finding": "57 >= 30 days" }, { "id": "cert_notBefore", @@ -471090,7 +468364,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704648547" + "finding": "1705251723" }, { "id": "HSTS", @@ -471988,7 +469262,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "64 >= 30 days" + "finding": "57 >= 30 days" }, { "id": "cert_notBefore", @@ -472191,7 +469465,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704648598" + "finding": "1705251817" }, { "id": "HSTS", @@ -473089,7 +470363,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "64 >= 30 days" + "finding": "57 >= 30 days" }, { "id": "cert_notBefore", @@ -473292,7 +470566,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704648649" + "finding": "1705251912" }, { "id": "HSTS", @@ -474043,7 +471317,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -474190,7 +471464,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "64 >= 30 days" + "finding": "57 >= 30 days" }, { "id": "cert_notBefore", @@ -474393,7 +471667,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704648701" + "finding": "1705252014" }, { "id": "HSTS", @@ -474949,7 +472223,7 @@ "ip": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "209" + "finding": "388" } ], "thirdparties": { @@ -474957,19 +472231,19 @@ "cookies": [], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-/KrlBBbRl2WIfVcjTe6SxA=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", + "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-38ohuGrCkR+NYrWz+HKPzg=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 17:28:07 GMT", - "etag": "W/\"1r1m2vr\"", + "date": "Sun, 14 Jan 2024 17:00:26 GMT", + "etag": "W/\"tjybyv\"", "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.394ad635.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.b790e2e2.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.33a128f5.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.fb0abc31.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.a27a20fe.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.d1265a8d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.e93c269d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.4b70ea63.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.50187b5e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.4c45342a.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.901241c0.js>; rel=\"modulepreload\"; nopush", "strict-transport-security": "max-age=31536000", - "x-request-id": "d8ef68d4-2eaa-451f-8447-42e959dc1d97", + "x-request-id": "95b712c9-5515-4089-b0bc-251595e1d88a", "x-sveltekit-page": "true" }, "endpoints": [ { "hostname": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr", - "ip": "109.232.236.90", + "ip": "148.253.75.120", "geoip": { "continent": { "code": "EU", @@ -475037,7 +472311,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 17:27:05", + "@generated": "Sun, 14 Jan 2024 16:59:23", "site": [ { "@name": "https://carnet-de-bord-preprod.dev.fabrique.social.gouv.fr", @@ -475187,7 +472461,7 @@ "type": "dns", "host": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr.", "matched-at": "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr", - "timestamp": "2024-01-07T17:33:03.611599037Z", + "timestamp": "2024-01-14T17:08:37.738344776Z", "matcher-status": true }, { @@ -475222,7 +472496,7 @@ "extracted-results": [ "cdb-app-preprod.osc-fr1.scalingo.io." ], - "timestamp": "2024-01-07T17:33:03.612716692Z", + "timestamp": "2024-01-14T17:08:37.965067954Z", "matcher-status": true }, { @@ -475251,8 +472525,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T17:39:47.709353922Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T17:16:11.527982071Z", "matcher-status": true }, { @@ -475281,8 +472555,8 @@ "extracted-results": [ "carnet-de-bord-preprod.dev.fabrique.social.gouv.fr" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T17:39:47.709477383Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T17:16:11.528127623Z", "matcher-status": true }, { @@ -475312,8 +472586,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T17:39:48.991444148Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T17:16:13.481377787Z", "matcher-status": true }, { @@ -475343,8 +472617,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T17:39:49.181076473Z", + "ip": "109.232.233.130", + "timestamp": "2024-01-14T17:16:13.865986749Z", "matcher-status": true } ], @@ -475352,7 +472626,7 @@ { "requestedUrl": "https://carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/", "finalUrl": "https://demo.carnetdebord.inclusion.beta.gouv.fr/", - "fetchTime": "2024-01-07T17:27:19.533Z", + "fetchTime": "2024-01-14T16:59:38.236Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://carnet-de-bord-preprod.dev.fabrique.social.gouv.fr/) was redirected to https://demo.carnetdebord.inclusion.beta.gouv.fr/. Try testing the second URL directly." ], @@ -475417,53 +472691,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5707, + "numericValue": 6197, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3218, - "firstMeaningfulPaint": 3218, - "largestContentfulPaint": 4069, - "interactive": 5707, - "speedIndex": 3770, - "totalBlockingTime": 104, - "maxPotentialFID": 216, - "cumulativeLayoutShift": 0.007981014251708985, - "cumulativeLayoutShiftMainFrame": 0.007981014251708985, - "totalCumulativeLayoutShift": 0.007981014251708985, + "firstContentfulPaint": 3266, + "firstMeaningfulPaint": 3341, + "largestContentfulPaint": 4091, + "interactive": 6197, + "speedIndex": 5018, + "totalBlockingTime": 321, + "maxPotentialFID": 373, + "cumulativeLayoutShift": 0.021529296875, + "cumulativeLayoutShiftMainFrame": 0.021529296875, + "totalCumulativeLayoutShift": 0.021529296875, "observedTimeOrigin": 0, - "observedTimeOriginTs": 216585436, + "observedTimeOriginTs": 252308544, "observedNavigationStart": 0, - "observedNavigationStartTs": 216585436, - "observedFirstPaint": 937, - "observedFirstPaintTs": 217522751, - "observedFirstContentfulPaint": 937, - "observedFirstContentfulPaintTs": 217522751, - "observedFirstContentfulPaintAllFrames": 937, - "observedFirstContentfulPaintAllFramesTs": 217522751, - "observedFirstMeaningfulPaint": 937, - "observedFirstMeaningfulPaintTs": 217522751, - "observedLargestContentfulPaint": 1083, - "observedLargestContentfulPaintTs": 217667953, - "observedLargestContentfulPaintAllFrames": 1083, - "observedLargestContentfulPaintAllFramesTs": 217667953, - "observedTraceEnd": 4122, - "observedTraceEndTs": 220707709, - "observedLoad": 1040, - "observedLoadTs": 217625753, - "observedDomContentLoaded": 929, - "observedDomContentLoadedTs": 217514520, - "observedCumulativeLayoutShift": 0.007981014251708985, - "observedCumulativeLayoutShiftMainFrame": 0.007981014251708985, - "observedTotalCumulativeLayoutShift": 0.007981014251708985, - "observedFirstVisualChange": 939, - "observedFirstVisualChangeTs": 217524436, - "observedLastVisualChange": 1672, - "observedLastVisualChangeTs": 218257436, - "observedSpeedIndex": 1182, - "observedSpeedIndexTs": 217767456 + "observedNavigationStartTs": 252308544, + "observedFirstPaint": 1564, + "observedFirstPaintTs": 253872456, + "observedFirstContentfulPaint": 1564, + "observedFirstContentfulPaintTs": 253872456, + "observedFirstContentfulPaintAllFrames": 1564, + "observedFirstContentfulPaintAllFramesTs": 253872456, + "observedFirstMeaningfulPaint": 1564, + "observedFirstMeaningfulPaintTs": 253872456, + "observedLargestContentfulPaint": 1825, + "observedLargestContentfulPaintTs": 254133698, + "observedLargestContentfulPaintAllFrames": 1825, + "observedLargestContentfulPaintAllFramesTs": 254133698, + "observedTraceEnd": 4273, + "observedTraceEndTs": 256581655, + "observedLoad": 1790, + "observedLoadTs": 254098934, + "observedDomContentLoaded": 1518, + "observedDomContentLoadedTs": 253826210, + "observedCumulativeLayoutShift": 0.021529296875, + "observedCumulativeLayoutShiftMainFrame": 0.021529296875, + "observedTotalCumulativeLayoutShift": 0.021529296875, + "observedFirstVisualChange": 1531, + "observedFirstVisualChangeTs": 253839544, + "observedLastVisualChange": 2414, + "observedLastVisualChangeTs": 254722544, + "observedSpeedIndex": 2001, + "observedSpeedIndexTs": 254309994 }, { "lcpInvalidated": false @@ -475485,19 +472759,19 @@ "numScripts": 43, "numStylesheets": 3, "numFonts": 3, - "numTasks": 1323, - "numTasksOver10ms": 7, + "numTasks": 1273, + "numTasksOver10ms": 10, "numTasksOver25ms": 3, - "numTasksOver50ms": 1, + "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.91999999999999, - "throughput": 8479031.039462946, - "maxRtt": 85.61200000000001, - "maxServerLatency": 156.801, - "totalByteWeight": 541614, - "totalTaskTime": 326.6249999999994, - "mainDocumentTransferSize": 10134 + "rtt": 134.469, + "throughput": 9916901.185916038, + "maxRtt": 137.54000000000002, + "maxServerLatency": 265.495, + "totalByteWeight": 541474, + "totalTaskTime": 454.04199999999844, + "mainDocumentTransferSize": 10115 } ] } @@ -475558,11 +472832,6 @@ "content_url_encoded_markdown": "%23%202024%20-%20Pause%20dans%20le%20d%C3%A9veloppement%20du%20service%20num%C3%A9rique%20%0A%0A%2A%2ALe%20d%C3%A9veloppement%20du%20produit%20num%C3%A9rique%20dans%20sa%20forme%20actuelle%20est%20arr%C3%AAt%C3%A9.%2A%2A%20L%E2%80%99%C3%A9quipe%20continuera%20d%E2%80%99assurer%20dans%20les%20prochains%20mois%20l%E2%80%99accompagnement%20et%20le%20support%20des%20utilisateurs%20actuels%2C%20sans%20%C3%A9volutions%20techniques%20ou%20fonctionnelles.%0A%0AEn%20lien%20avec%20l%E2%80%99incubateur%20de%20P%C3%B4le%20emploi%20et%20dans%20le%20cadre%20des%20exp%C3%A9rimentations%20de%20la%20%5Br%C3%A9forme%20France%20Travail%5D%28https%3A%2F%2Ftravail-emploi.gouv.fr%2Femploi-et-insertion%2Ffrance-travail%2F%29%2C%20la%20promesse%20de%20la%20co-construction%20d%E2%80%99un%20service%20num%C3%A9rique%20public%20de%20suivi%20de%20parcours%20des%20usagers%20n%E2%80%99est%20toutefois%20pas%20abandonn%C3%A9e.%20%2A%2AC%E2%80%99est%20donc%20d%E2%80%99avantage%20une%20deuxi%C3%A8me%20mouture%20de%20%C2%AB%20Carnet%20de%20bord%20%C2%BB%20qui%20se%20profile%20avec%20des%20discussions%20et%20des%20chantiers%20d%E2%80%99ores%20et%20d%C3%A9j%C3%A0%20engag%C3%A9s%20par%20l%E2%80%99%C3%89tat.%20Nous%20vous%20communiquerons%20prochainement%20sur%20cette%20page%20les%20contacts%20des%20%C3%A9quipes%20en%20charge%20de%20ce%20travail.%2A%2A%0A%0A%23%23%20Contexte%20et%20constat%0A%0A%2A%2AEn%20octobre%202023%2C%20un%20%C2%AB%20comit%C3%A9%20produit%20%C2%BB%20s%E2%80%99est%20r%C3%A9uni%2A%2A.%20Il%20s%E2%80%99agit%20d%E2%80%99un%20%C3%A9v%C3%A9nement%20classique%20dans%20l%E2%80%99%C3%A9cosyst%C3%A8me%20%5Bbeta.gouv%5D%28https%3A%2F%2Fbeta.gouv.fr%29%20ayant%20lieu%20tous%20les%206%20mois%20pour%20tous%20les%20produits%20num%C3%A9riques%20publics%20d%C3%A9velopp%C3%A9s%20en%20mode%20%C2%AB%20agile%20%C2%BB%20qui%2C%20pour%20rappel%2C%20sont%20engag%C3%A9s%20dans%20des%20cycles%20de%20d%C3%A9veloppement%20fonctionnel%20courts%2C%20dans%20une%20it%C3%A9ration%20r%C3%A9guli%C3%A8re%20avec%20leurs%20utilisateurs%20et%20dans%20l%27%C3%A9valuation%20par%20l%E2%80%99impact.%0A%0ACe%20comit%C3%A9%20s%E2%80%99inscrivait%20notamment%20dans%20le%20cadre%20de%20la%20%2A%2Amise%20en%20place%20d%E2%80%99une%20nouvelle%20comitologie%20produit%20dans%20le%20cadre%20de%20France%20Travail%2A%2A%2C%20r%C3%A9unissant%20ainsi%20dans%20ce%20cadre%20des%20membres%20de%20la%20direction%20g%C3%A9n%C3%A9rale%20de%20P%C3%B4le%20emploi%20ou%20du%20Haut%20Commissariat%20%C3%A0%20l%E2%80%99Emploi%20et%20%C3%A0%20l%E2%80%99Engagement%20des%20entreprises.%0A%0AL%E2%80%99%C3%A9quipe%20a%20dress%C3%A9%20un%20constat%20de%20l%E2%80%99usage%20de%20Carnet%20de%20bord%20et%20a%20%C3%A9tabli%20que%20%2A%2Al%E2%80%99%5Bimpact%20attendu%5D%28https%3A%2F%2Fmetabase.carnetdebord.inclusion.beta.gouv.fr%2Fpublic%2Fdashboard%2F81a749aa-6c29-46b2-9ca5-df9d90fd3257%29%20%28nombre%20de%20consultations%2C%20nombre%20de%20modification%20de%20carnets%2C%20etc.%29%20n%E2%80%99%C3%A9tait%20peut-%C3%AAtre%20pas%20%C3%A0%20la%20hauteur%20de%20l%E2%80%99investissement%20consenti%20par%20l%E2%80%99Etat%20dans%20son%20d%C3%A9veloppement.%2A%2A%20Il%20a%20donc%20%C3%A9t%C3%A9%20d%C3%A9cid%C3%A9%20-%20non%20pas%20d%E2%80%99arr%C3%AAter%20le%20produit%20-%20mais%20de%20temporiser%20son%20activit%C3%A9%20actuelle%20en%20laissant%20-%20comme%20%C3%A9voqu%C3%A9%20ci-dessus%20-%20uniquement%20de%20la%20ressource%20sur%20le%20seul%20support%20courant%20utilisateur%2C%20d%E2%80%99une%20part%2C%20et%20sur%20la%20r%C3%A9solution%20de%20bugs%20le%20cas%20%C3%A9ch%C3%A9ant%2C%20d%E2%80%99autre%20part.%0A%0A%23%23%20Quels%20apprentissages%20%3F%0A%0ATechniquement%2C%20le%20produit%20dans%20sa%20configuration%20actuelle%20atteignait%20ses%20limites%20%3A%20de%20%2A%2Anombreux%20bugs%20rythmaient%20la%20vie%20de%20l%E2%80%99outil%2A%2A%2C%20d%C3%A9gradant%20fortement%20l%E2%80%99exp%C3%A9rience%20utilisateur%2C%20et%20le%20%2A%2Atemps%20d%E2%80%99impl%C3%A9mentation%20de%20nouvelles%20fonctionnalit%C3%A9s%20%C3%A9tait%20%C3%A9lev%C3%A9%2A%2A.%20%C3%80%20cet%20%C3%A9gard%2C%20il%20s%E2%80%99agit%20de%20relever%20que%20le%20d%C3%A9veloppement%20de%20l%E2%80%99application%20et%20l%E2%80%99exercice%20de%20priorisation%20dans%20la%20feuille%20de%20route%20%C3%A9taient%20souvent%20perturb%C3%A9s%20par%20une%20tension%20intrins%C3%A8que%20au%20produit%20entre%20ceux%20qui%20voyaient%20dans%20Carnet%20de%20bord%20%2A%2Aun%20espace%20privil%C3%A9gi%C3%A9%20de%20partage%20de%20donn%C3%A9es%20automatis%C3%A9es%2A%2A%20et%20provenant%20de%20logiciels%20tiers%20%28logiciels%20%C3%A9diteurs%2C%20autres%20SI%20publics%29%20et%20ceux%20qui%20esp%C3%A9raient%20faire%20de%20Carnet%20de%20bord%20%2A%2Aun%20logiciel%20de%20parcours%20complet%2A%2A%20utilis%C3%A9%20au%20quotidien%20par%20les%20professionnels.%0A%0APar%20ailleurs%2C%20sur%20le%20cas%20d%E2%80%99usage%20majoritaire%20au%20sein%20des%20exp%C3%A9rimentations%20%28l%E2%80%99accompagnement%20de%20b%C3%A9n%C3%A9ficiaires%20du%20RSA%20%3A%20du%20t%C3%A9l%C3%A9chargement%20des%20flux%20%C3%A0%20la%20saisie%20du%20contrat%20d%E2%80%99engagement%20r%C3%A9ciproque%29%2C%20%2A%2Acertaines%20fonctionnalit%C3%A9s%20%C3%A9taient%20fortement%20attendues%20par%20les%20professionnels.%2A%2A%0A%0A-%20L%E2%80%99absence%20de%20celles-ci%20emp%C3%AAchait%20une%20bascule%20int%C3%A9grale%20sur%20Carnet%20de%20bord%20%3A%20interconnexion%20compl%C3%A8te%20avec%20le%20SI%20P%C3%B4le%20emploi%2C%20notamment%20sur%20le%20p%C3%A9rim%C3%A8tre%20du%20diagnostic%20socio-professionnel%20%3B%20r%C3%A9alisation%20d%E2%80%99exports%20et%20possibilit%C3%A9%20de%20requ%C3%AAtage%20%3B%20tableaux%20de%20pilotage%20%3B%20gestion%20compl%C3%A8te%20du%20CER%20dans%20l%E2%80%99outil%20%28%C3%A9dition%2C%20validation%2C%20t%C3%A9l%C3%A9chargement%29%20%3B%20r%C3%A9alisation%20de%20bilans%20d%E2%80%99accompagnement%2C%20possibilit%C3%A9s%20accrues%20d%E2%80%99%C3%A9changes%20entre%20professionnels%20%3B%20interconnexion%20entre%20les%20logiciels%20de%20gestion%20et%20Carnet%20de%20bord.%0A-%20En%20cons%C3%A9quence%2C%20ces%20manques%20fonctionnels%20entrainaient%20bien%20souvent%20pour%20les%20professionnels%20des%20%2A%2Adouble-saisies%2A%2A%2C%20voire%20triple-saisies%2C%20exp%C3%A9rience%20tr%C3%A8s%20pr%C3%A9judiciable%20%C3%A0%20la%20r%C3%A9tention%20des%20utilisateurs.%0A%0AEnfin%2C%20le%20%2A%2Afaible%20nombre%20d%E2%80%99accompagnateurs%2A%2A%20embarqu%C3%A9s%20sur%20Carnet%20de%20bord%2C%20notamment%20en%20dehors%20des%20conseils%20d%C3%A9partementaux%2C%20%2A%2Adiminuait%20fortement%20la%20valeur%20du%20partage%20d%E2%80%99informations%20et%20la%20plus-value%20de%20Carnet%20de%20bord%2A%2A%20pour%20conseillers%20en%20insertion%20et%20travailleurs%20sociaux%20des%20d%C3%A9partements%20%3A%20la%20promesse%20d%E2%80%99un%20gain%20d%E2%80%99informations%20sur%20les%20usagers%20obtenu%20gr%C3%A2ce%20%C3%A0%20Carnet%20de%20bord%20n%E2%80%99%C3%A9tait%20pas%20tenue.%0A%0A%23%23%20Quelle%20suite%20pour%20Carnet%20de%20bord%20et%20l%E2%80%99id%C3%A9e%20d%E2%80%99un%20outil%20de%20suivi%20de%20parcours%20%3F%0A%0ALe%20Haut%20Commissariat%20%C3%A0%20l%E2%80%99Emploi%20et%20%C3%A0%20l%E2%80%99Engagement%20des%20Entreprises%20%28HC3E%29%20s%E2%80%99est%20entretenu%20%C3%A0%20l%E2%80%99automne%202023%20avec%20de%20nombreux%20d%C3%A9partements%20utilisateurs%20de%20Carnet%20de%20bord%20et%2C%20dans%20le%20cadre%20de%20France%20Travail%20notamment%2C%20est%20toutefois%20ressortie%20%2A%2Aune%20forte%20volont%C3%A9%20des%20conseils%20d%C3%A9partementaux%20de%20poursuivre%20la%20co-construction%20d%E2%80%99un%20outil%20num%C3%A9rique%20public%20de%20parcours%20des%20usagers%20en%20insertion%2A%2A%20%28en%20sus%20de%20l%E2%80%99offre%20d%C3%A9j%C3%A0%20propos%C3%A9e%20par%20des%20%C3%A9diteurs%20de%20logiciel%20ou%20se%20mat%C3%A9rialisant%20dans%20les%20logiciels%20%C2%AB%20maison%20%C2%BB%29.%20Un%20Carnet%20de%20bord%20%C2%AB%20V2%20%C2%BB%20a%20donc%20vocation%20%C3%A0%20voir%20le%20jour%2C%20mobilisant%20des%20%C3%A9quipes%20et%20technologies%20diff%C3%A9rentes.%20Dans%20ce%20cadre%2C%20%2A%2Ade%20premiers%20chantiers%20exploratoires%20sont%20en%20cours%20au%20sein%20de%20P%C3%B4le%20emploi%20pour%20reprendre%20le%20flambeau%20du%20Groupement%20d%E2%80%99int%C3%A9r%C3%AAt%20public%20%28GIP%29%20Plateforme%20de%20l%E2%80%99inclusion%2A%2A.%20Les%20%C3%A9quipes%20concern%C3%A9es%20peuvent%20capitaliser%20sur%20certains%20acquis%20solides%20de%20Carnet%20de%20bord%20%3A%0A%0A-%20%2A%2AUne%20s%C3%A9curisation%20juridique%20pouss%C3%A9e%2A%2A%20%3A%20un%20%5Bd%C3%A9cret%5D%28https%3A%2F%2Fwww.legifrance.gouv.fr%2Fjorf%2Fid%2FJORFTEXT000047318824%29%20a%20%C3%A9t%C3%A9%20publi%C3%A9%20pour%20encadrer%20les%20%C3%A9changes%20de%20donn%C3%A9es%20entre%20tous%20les%20acteurs%20de%20l%E2%80%99insertion%20%3B%0A-%20%2A%2AR%C3%A9f%C3%A9rentiel%20de%20donn%C3%A9es%2A%2A%20%3A%20une%20nomenclature%20nationale%20des%20donn%C3%A9es%20de%20diagnostic%20socio-professionnel%20et%20des%20%C3%A9l%C3%A9ments%20de%20parcours%20%28objectifs%20et%20actions%29%20a%20%C3%A9t%C3%A9%20co-construite%20avec%20les%20professionnels%20et%20peut%20grandement%20faciliter%20les%20%C3%A9changes%20de%20donn%C3%A9es%20%28les%20interconnections%20techniques%20entre%20SI%20reposant%20en%20effet%20avant%20tout%20sur%20une%20interop%C3%A9rabilit%C3%A9%20s%C3%A9mantique%29%20%3B%0A-%20%2A%2AUn%20mode%20d%E2%80%99habilitation%20simple%2A%2A%20%3A%20une%20matrice%20d%E2%80%99habilitation%20permet%20la%20cr%C3%A9ation%20rapide%20et%20autonome%20de%20nouvelles%20structures%20et%20professionnels%20%28l%E2%80%99outil%20est%20g%C3%A9r%C3%A9%20au%20niveau%20local%29%20%3B%0A-%20%2A%2AUne%20m%C3%A9thode%20it%C3%A9rative%20qui%20a%20fait%20ses%20preuves%2A%2A%20%3A%20des%20%C3%A9changes%20r%C3%A9guliers%20ont%20permis%20de%20bien%20comprendre%20ce%20qui%20%C3%A9tait%20attendu%20par%20les%20professionnels%20de%20l%E2%80%99insertion.%20Plus%20particuli%C3%A8rement%2C%20l%E2%80%99id%C3%A9e%20est%20notamment%20que%20les%20aspects%20de%20l%E2%80%99outil%20qui%20ne%20suscitaient%20pas%20beaucoup%20d%E2%80%99engagement%20de%20la%20part%20des%20utilisateurs%20et%20qui%20n%E2%80%99%C3%A9taient%20pas%20vraiment%20pl%C3%A9biscit%C3%A9s%20disparaissent%20tandis%20que%20les%20fonctionnalit%C3%A9s%20qui%20suscitaient%20le%20plus%20d%E2%80%99int%C3%A9r%C3%AAt%20m%C3%A9tier%20%28et%20celles%20qui%20n%E2%80%99existaient%20pas%20encore%20mais%20qui%20%C3%A9taient%20tr%C3%A8s%20attendues%29%20soient%20am%C3%A9lior%C3%A9es%20%2F%20d%C3%A9velopp%C3%A9es.%0A%0A%23%202021%20%C3%A0%202023%20-%20Archives%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0ALe%20champ%20de%20l%E2%80%99insertion%20sociale%20et%20professionnelle%2C%20et%20en%20particulier%20le%20domaine%20de%20l%E2%80%99accompagnement%20des%20usagers%2C%20se%20caract%C3%A9rise%20par%20une%20multiplicit%C3%A9%20et%20une%20grande%20diversit%C3%A9%20d%E2%80%99acteurs.%20La%20mauvaise%20connaissance%20et%20l%27absence%20de%20partage%20de%20certaines%20donn%C3%A9es%20ne%20permettent%20pas%20aux%20professionnels%20de%20proc%C3%A9der%20%C3%A0%20une%20bonne%20%C3%A9valuation%20des%20situations%20des%20usagers%20et%20un%20suivi%20optimal%20des%20parcours.%20Le%20d%C3%A9ficit%20de%20connaissance%20des%20%C3%A9l%C3%A9ments%20de%20parcours%20d%E2%80%99insertion%20d%E2%80%99un%20usager%20rend%20ainsi%20complexe%20l%E2%80%99analyse%20de%20sa%20situation%20et%20la%20mise%20en%20%C5%93uvre%20d%E2%80%99un%20parcours%20efficient%20entre%20partenaires.%20%0A%0A%23%23%20Notre%20service%0A%0AD%C3%A9velopp%C3%A9%20dans%20le%20cadre%20du%20volet%20num%C3%A9rique%20du%20projet%20de%20Service%20Public%20de%20l%27Insertion%20et%20de%20l%27Emploi%2C%20l%27outil%20Carnet%20de%20bord%20est%20un%20service%20public%20qui%20centralise%20les%20donn%C3%A9es%20essentielles%20%28%C3%A9l%C3%A9ments%20de%20diagnostic%20socio-professionnel%2C%20identit%C3%A9%20et%20contact%20des%20accompagnateurs%2C%20contrats%20de%20parcours%2C%20objectifs%20%C3%A0%20atteindre%20et%20actions%20initi%C3%A9es%2C%20historique%20de%20parcours%29%20en%20une%20seule%20page.%20Il%20regroupe%20l%E2%80%99information%20dans%20un%20espace%20s%C3%A9curis%C3%A9%20permettant%20un%20%C3%A9change%20accru%20des%20donn%C3%A9es%20essentielles%2C%20entre%20les%20accompagnateurs%20et%20le%20b%C3%A9n%C3%A9ficiaire%20afin%20d%E2%80%99amplifier%20la%20coordination%20et%20fluidifier%20le%20parcours%20d%E2%80%99un%20usager%20%21%0A%0A%23%23%20Nos%20publics%0A%0A%2A%2AQui%20sont%20les%20usagers%20en%20insertion%20concern%C3%A9s%20par%20l%27outil%20%3F%2A%2A%20Carnet%20de%20bord%20propose%20la%20cr%C3%A9ation%20de%20%22carnets%22%20d%27usagers%20relevant%20de%20diff%C3%A9rents%20publics%20en%20insertion%20%C3%A0%20l%27instar%20des%20b%C3%A9n%C3%A9ficiaires%20du%20RSA%2C%20des%20demandeurs%20d%27emploi%20%28notamment%20longue%20dur%C3%A9e%2C%20accompagnement%20global%20ou%20concern%C3%A9s%20par%20la%20modalit%C3%A9%20d%27accompagnement%20%22expert%20handicap%22%29%2C%20des%20jeunes%20NEET%2C%20etc.%20%0A%0A%2A%2AQui%20sont%20les%20professionnels%20concern%C3%A9s%20par%20l%27outil%20%3F%2A%2A%20Tous%20les%20accompagnateurs%20des%20personnes%20en%20insertion%20sont%20en%20mesure%20de%20b%C3%A9n%C3%A9ficier%20d%27un%20acc%C3%A8s%20aux%20carnets%20des%20usagers%20qu%27ils%20accompagnent.%20Cela%20concerne%20tant%20les%20accompagnateurs%20publics%20%28P%C3%B4le%20emploi%2C%20Conseils%20d%C3%A9partementaux%2C%20CCAS%2FCIAS%2C%20missions%20locales%2C%20Cap%20emploi%2C%20etc.%29%20que%20les%20acteurs%20priv%C3%A9s%20de%20l%27insertion%20comme%2C%20par%20exemple%2C%20les%20structures%20associatives%20d%C3%A9l%C3%A9gu%C3%A9es%20pour%20l%27accompagnement%20de%20b%C3%A9n%C3%A9ficiaires%20du%20RSA.%20L%27acc%C3%A8s%20de%20tous%20ces%20acteurs%20%C3%A0%20l%27outil%20a%20%C3%A9t%C3%A9%20rendu%20possible%20par%20un%20travail%20juridique%2C%20notamment%20concr%C3%A9tis%C3%A9%20par%20l%27entr%C3%A9e%20en%20vigueur%20de%20l%27%5Barticle%20168%5D%28https%3A%2F%2Fwww.legifrance.gouv.fr%2Fjorf%2Farticle_jo%2FJORFARTI000045197621%23%3A~%3Atext%3D%25C2%25AB%2520La%2520personne%2520dont%2520les%2520informations%2C%25C3%25A0%2520la%2520poursuite%2520du%2520traitement%29%20de%20la%20loi%20du%2021%20f%C3%A9vrier%202022%20relative%20%C3%A0%20la%20diff%C3%A9renciation%2C%20la%20d%C3%A9centralisation%2C%20la%20d%C3%A9concentration%20et%20portant%20diverses%20mesures%20de%20simplification%20de%20l%27action%20publique%20locale%20dont%20le%20%5Bd%C3%A9cret%20d%27application%20n%C2%B0%202023-188%5D%28https%3A%2F%2Fwww.legifrance.gouv.fr%2Fjorf%2Fid%2FJORFTEXT000047318824%29%20est%20paru%2017%20mars%202023.%20%0A", "events": [], "phases": [ - { - "name": "alumni", - "start": "2023-12-01", - "end": "" - }, { "name": "investigation", "start": "2021-01-25", @@ -475577,6 +472846,11 @@ "name": "acceleration", "start": "2021-11-01", "end": "2022-04-30" + }, + { + "name": "alumni", + "start": "2023-12-01", + "end": "" } ] }, @@ -475636,7 +472910,7 @@ "http": { "url": "https://carnet-de-bord.fabrique.social.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:43:15 GMT", + "end_time": "Sun, 14 Jan 2024 01:42:01 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -475644,18 +472918,18 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 01:43:14 GMT", + "Date": "Sun, 14 Jan 2024 01:42:00 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", - "X-Request-ID": "72dd704e-e029-4228-85a9-aa5c06e185da", - "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-YeaUNJXsc7om5QOxuM7EzA=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", - "etag": "W/\"zgzn27\"", + "X-Request-ID": "1a7b2acc-89ec-4303-b2e2-abcecb8163eb", + "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-wu7YaI3krkL9iLGI8zHAdA=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", + "etag": "W/\"4jm0lb\"", "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.358c8082.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.80e7cb6b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.0496c451.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.7d519e3f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.5182cb0d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.0a97f7be.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4796fa19.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.3ed40098.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.59dcd376.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.7b706e10.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.714a6c64.js>; rel=\"modulepreload\"; nopush", "x-sveltekit-page": "true" }, - "scan_id": 46226490, + "scan_id": 46435157, "score": 65, - "start_time": "Sun, 07 Jan 2024 01:43:10 GMT", + "start_time": "Sun, 14 Jan 2024 01:41:57 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -475671,40 +472945,40 @@ "'self'" ], "connect-src": [ + "https://sentry.gip-inclusion.cloud-ed.fr", "'self'", "wss://client.relay.crisp.chat/", - "https://matomo.inclusion.beta.gouv.fr", - "https://sentry.gip-inclusion.cloud-ed.fr", - "https://client.crisp.chat/static/" + "https://client.crisp.chat/static/", + "https://matomo.inclusion.beta.gouv.fr" ], "default-src": [ "https://matomo.inclusion.beta.gouv.fr", "'self'" ], "font-src": [ - "https://client.crisp.chat/static/", "data:", - "'self'" + "'self'", + "https://client.crisp.chat/static/" ], "img-src": [ - "https://*.crisp.chat/", "data:", + "https://*.crisp.chat/", "'self'" ], "media-src": [ - "nextcloud.fabrique.social.gouv.fr", - "'self'" + "'self'", + "nextcloud.fabrique.social.gouv.fr" ], "script-src": [ - "https://matomo.inclusion.beta.gouv.fr", - "'nonce-yeaunjxsc7om5qoxum7eza=='", "https://client.crisp.chat/", - "'self'" + "https://matomo.inclusion.beta.gouv.fr", + "'self'", + "'nonce-wu7yai3krkl9ilgi8zhada=='" ], "style-src": [ - "*.crisp.chat", "'unsafe-inline'", - "'self'" + "'self'", + "*.crisp.chat" ] }, "http": true, @@ -475902,77 +473176,77 @@ "testssl": [ { "id": "service", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -475980,7 +473254,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -475988,7 +473262,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -475996,7 +473270,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -476004,7 +473278,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -476012,7 +473286,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -476020,483 +473294,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-14 04:18" }, { "id": "cert_notAfter", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-13 04:18" }, { "id": "cert_extlifeSpan", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704648620" + "finding": "1705252110" }, { "id": "HSTS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -476504,7 +473778,7 @@ }, { "id": "heartbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -476513,7 +473787,7 @@ }, { "id": "CCS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -476522,7 +473796,7 @@ }, { "id": "ticketbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -476531,7 +473805,7 @@ }, { "id": "ROBOT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -476540,7 +473814,7 @@ }, { "id": "secure_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -476548,7 +473822,7 @@ }, { "id": "secure_client_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -476557,7 +473831,7 @@ }, { "id": "CRIME_TLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -476566,7 +473840,7 @@ }, { "id": "BREACH", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -476575,7 +473849,7 @@ }, { "id": "POODLE_SSL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -476584,14 +473858,14 @@ }, { "id": "fallback_SCSV", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -476600,7 +473874,7 @@ }, { "id": "FREAK", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -476609,7 +473883,7 @@ }, { "id": "DROWN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -476618,7 +473892,7 @@ }, { "id": "DROWN_hint", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -476627,7 +473901,7 @@ }, { "id": "LOGJAM", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -476636,7 +473910,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -476645,7 +473919,7 @@ }, { "id": "BEAST", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -476654,7 +473928,7 @@ }, { "id": "LUCKY13", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -476663,7 +473937,7 @@ }, { "id": "winshock", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -476672,7 +473946,7 @@ }, { "id": "RC4", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -476681,399 +473955,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477081,7 +474355,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477089,7 +474363,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477097,7 +474371,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -477105,7 +474379,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -477113,7 +474387,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -477121,483 +474395,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-14 04:18" }, { "id": "cert_notAfter", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-13 04:18" }, { "id": "cert_extlifeSpan", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704648713" + "finding": "1705252164" }, { "id": "HSTS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -477605,7 +474879,7 @@ }, { "id": "heartbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -477614,7 +474888,7 @@ }, { "id": "CCS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -477623,7 +474897,7 @@ }, { "id": "ticketbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -477632,7 +474906,7 @@ }, { "id": "ROBOT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -477641,7 +474915,7 @@ }, { "id": "secure_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -477649,7 +474923,7 @@ }, { "id": "secure_client_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -477658,7 +474932,7 @@ }, { "id": "CRIME_TLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -477667,7 +474941,7 @@ }, { "id": "BREACH", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -477676,7 +474950,7 @@ }, { "id": "POODLE_SSL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -477685,14 +474959,14 @@ }, { "id": "fallback_SCSV", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -477701,7 +474975,7 @@ }, { "id": "FREAK", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -477710,7 +474984,7 @@ }, { "id": "DROWN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -477719,7 +474993,7 @@ }, { "id": "DROWN_hint", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -477728,7 +475002,7 @@ }, { "id": "LOGJAM", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -477737,7 +475011,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -477746,7 +475020,7 @@ }, { "id": "BEAST", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -477755,7 +475029,7 @@ }, { "id": "LUCKY13", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -477764,7 +475038,7 @@ }, { "id": "winshock", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -477773,7 +475047,7 @@ }, { "id": "RC4", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -477782,399 +475056,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -478182,7 +475456,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -478190,7 +475464,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -478198,7 +475472,7 @@ }, { "id": "cipherlist_LOW", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -478206,7 +475480,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -478214,7 +475488,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -478222,483 +475496,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-14 04:18" }, { "id": "cert_notAfter", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-13 04:18" }, { "id": "cert_extlifeSpan", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704648808" + "finding": "1705252221" }, { "id": "HSTS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -478706,7 +475980,7 @@ }, { "id": "heartbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -478715,7 +475989,7 @@ }, { "id": "CCS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -478724,7 +475998,7 @@ }, { "id": "ticketbleed", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -478733,7 +476007,7 @@ }, { "id": "ROBOT", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -478742,7 +476016,7 @@ }, { "id": "secure_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -478750,7 +476024,7 @@ }, { "id": "secure_client_renego", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -478759,7 +476033,7 @@ }, { "id": "CRIME_TLS", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -478768,7 +476042,7 @@ }, { "id": "BREACH", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -478777,7 +476051,7 @@ }, { "id": "POODLE_SSL", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -478786,14 +476060,14 @@ }, { "id": "fallback_SCSV", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -478802,7 +476076,7 @@ }, { "id": "FREAK", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -478811,7 +476085,7 @@ }, { "id": "DROWN", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -478820,7 +476094,7 @@ }, { "id": "DROWN_hint", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -478829,7 +476103,7 @@ }, { "id": "LOGJAM", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -478838,7 +476112,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -478847,7 +476121,7 @@ }, { "id": "BEAST", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -478856,7 +476130,7 @@ }, { "id": "LUCKY13", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -478865,7 +476139,7 @@ }, { "id": "winshock", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -478874,7 +476148,7 @@ }, { "id": "RC4", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -478883,322 +476157,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "carnet-de-bord.fabrique.social.gouv.fr/185.21.194.105", + "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -479403,14 +476677,14 @@ "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "TLS_timestamp", @@ -479550,7 +476824,7 @@ "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "65 >= 30 days" + "finding": "58 >= 30 days" }, { "id": "cert_notBefore", @@ -479753,7 +477027,7 @@ "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704648901" + "finding": "1705252277" }, { "id": "HSTS", @@ -480309,7 +477583,7 @@ "ip": "carnet-de-bord.fabrique.social.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "378" + "finding": "226" } ], "thirdparties": { @@ -480317,19 +477591,19 @@ "cookies": [], "headers": { "content-encoding": "gzip", - "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-JkYgeh6Zi7Ihw2uLOz2yyQ=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", + "content-security-policy": "default-src 'self' https://matomo.inclusion.beta.gouv.fr; connect-src 'self' wss://client.relay.crisp.chat/ https://client.crisp.chat/static/ https://matomo.inclusion.beta.gouv.fr https://sentry.gip-inclusion.cloud-ed.fr; font-src 'self' data: https://client.crisp.chat/static/; img-src 'self' data: https://*.crisp.chat/; media-src 'self' nextcloud.fabrique.social.gouv.fr; script-src 'self' https://client.crisp.chat/ https://matomo.inclusion.beta.gouv.fr 'nonce-7IzroGB64l6D63TJeK84oQ=='; style-src 'self' *.crisp.chat 'unsafe-inline'; base-uri 'self'", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 17:28:47 GMT", - "etag": "W/\"1rnon0f\"", + "date": "Sun, 14 Jan 2024 17:07:24 GMT", + "etag": "W/\"1qguakf\"", "link": "<./_app/immutable/assets/_layout.e89be0ee.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/LayerCDB.f411fb6c.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/assets/Select.f9d80033.css>; rel=\"preload\";as=\"style\"; nopush, <./_app/immutable/entry/start.358c8082.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b02a4058.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.80e7cb6b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.fb9a9973.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/control.e7f5239e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/parse.d12b0d5b.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.0496c451.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/preload-helper.41c905a7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/exports.c58eb704.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/sentry.7d519e3f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.5182cb0d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_layout.svelte.0a97f7be.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.4796fa19.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/openComponent.a285fe46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/auth.0925dbaa.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/object.1cd31da1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/_commonjsHelpers.725317a4.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/date.66908c46.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.b83d716e.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-svelte.2005ff91.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/ab6c3355.868736ee.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/IconButton.01058e6d.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/helpers.93a9f3bc.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/matomo.203da9d7.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/urql-core.2e866c2f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/_page.svelte.3ed40098.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Footer.59dcd376.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Select.svelte_svelte_type_style_lang.7b706e10.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.ca7c9bd0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Button.1c77ecf0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/Link.714a6c64.js>; rel=\"modulepreload\"; nopush", "strict-transport-security": "max-age=31536000", - "x-request-id": "a81b946e-6efa-4641-8c54-8e40aeb1bf71", + "x-request-id": "bdefa139-0b30-4d86-94ab-1d4e84324c46", "x-sveltekit-page": "true" }, "endpoints": [ { "hostname": "carnet-de-bord.fabrique.social.gouv.fr", - "ip": "185.21.194.105", + "ip": "80.247.13.145", "geoip": { "continent": { "code": "EU", @@ -480397,7 +477671,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 17:28:02", + "@generated": "Sun, 14 Jan 2024 17:06:42", "site": [ { "@name": "https://carnet-de-bord.fabrique.social.gouv.fr", @@ -480516,73 +477790,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "carnet-de-bord.fabrique.social.gouv.fr.", "matched-at": "carnet-de-bord.fabrique.social.gouv.fr", - "timestamp": "2024-01-07T17:36:45.413257603Z", + "extracted-results": [ + "cdb-app-production.osc-secnum-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T17:12:42.687366227Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "carnet-de-bord.fabrique.social.gouv.fr.", "matched-at": "carnet-de-bord.fabrique.social.gouv.fr", - "extracted-results": [ - "cdb-app-production.osc-secnum-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T17:36:45.534730847Z", + "timestamp": "2024-01-14T17:12:42.751270807Z", "matcher-status": true }, { @@ -480611,8 +477885,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T17:44:13.973956413Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T17:19:43.315270403Z", "matcher-status": true }, { @@ -480641,8 +477915,8 @@ "extracted-results": [ "carnet-de-bord.fabrique.social.gouv.fr" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T17:44:13.974081355Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T17:19:43.315386509Z", "matcher-status": true }, { @@ -480672,8 +477946,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T17:44:15.945259631Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T17:19:44.716699506Z", "matcher-status": true }, { @@ -480703,8 +477977,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T17:44:16.350420789Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T17:19:44.934432925Z", "matcher-status": true } ], @@ -480712,7 +477986,7 @@ { "requestedUrl": "https://carnet-de-bord.fabrique.social.gouv.fr/", "finalUrl": "https://carnetdebord.inclusion.beta.gouv.fr/", - "fetchTime": "2024-01-07T17:28:16.961Z", + "fetchTime": "2024-01-14T17:06:56.135Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://carnet-de-bord.fabrique.social.gouv.fr/) was redirected to https://carnetdebord.inclusion.beta.gouv.fr/. Try testing the second URL directly." ], @@ -480777,53 +478051,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6191, + "numericValue": 5809, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3410, - "firstMeaningfulPaint": 3410, - "largestContentfulPaint": 4235, - "interactive": 6191, - "speedIndex": 4821, - "totalBlockingTime": 192, - "maxPotentialFID": 213, - "cumulativeLayoutShift": 0.008128353118896484, - "cumulativeLayoutShiftMainFrame": 0.008128353118896484, - "totalCumulativeLayoutShift": 0.008128353118896484, + "firstContentfulPaint": 3202, + "firstMeaningfulPaint": 3277, + "largestContentfulPaint": 4028, + "interactive": 5809, + "speedIndex": 4137, + "totalBlockingTime": 99, + "maxPotentialFID": 215, + "cumulativeLayoutShift": 0.007981014251708985, + "cumulativeLayoutShiftMainFrame": 0.007981014251708985, + "totalCumulativeLayoutShift": 0.007981014251708985, "observedTimeOrigin": 0, - "observedTimeOriginTs": 233255995, + "observedTimeOriginTs": 186487216, "observedNavigationStart": 0, - "observedNavigationStartTs": 233255995, - "observedFirstPaint": 1439, - "observedFirstPaintTs": 234694580, - "observedFirstContentfulPaint": 1439, - "observedFirstContentfulPaintTs": 234694580, - "observedFirstContentfulPaintAllFrames": 1439, - "observedFirstContentfulPaintAllFramesTs": 234694580, - "observedFirstMeaningfulPaint": 1439, - "observedFirstMeaningfulPaintTs": 234694580, - "observedLargestContentfulPaint": 1684, - "observedLargestContentfulPaintTs": 234939641, - "observedLargestContentfulPaintAllFrames": 1684, - "observedLargestContentfulPaintAllFramesTs": 234939641, - "observedTraceEnd": 4116, - "observedTraceEndTs": 237371663, - "observedLoad": 1654, - "observedLoadTs": 234909999, - "observedDomContentLoaded": 1411, - "observedDomContentLoadedTs": 234667212, - "observedCumulativeLayoutShift": 0.008128353118896484, - "observedCumulativeLayoutShiftMainFrame": 0.008128353118896484, - "observedTotalCumulativeLayoutShift": 0.008128353118896484, - "observedFirstVisualChange": 1417, - "observedFirstVisualChangeTs": 234672995, - "observedLastVisualChange": 2284, - "observedLastVisualChangeTs": 235539995, - "observedSpeedIndex": 1829, - "observedSpeedIndexTs": 235085430 + "observedNavigationStartTs": 186487216, + "observedFirstPaint": 1097, + "observedFirstPaintTs": 187584663, + "observedFirstContentfulPaint": 1097, + "observedFirstContentfulPaintTs": 187584663, + "observedFirstContentfulPaintAllFrames": 1097, + "observedFirstContentfulPaintAllFramesTs": 187584663, + "observedFirstMeaningfulPaint": 1097, + "observedFirstMeaningfulPaintTs": 187584663, + "observedLargestContentfulPaint": 1316, + "observedLargestContentfulPaintTs": 187803707, + "observedLargestContentfulPaintAllFrames": 1316, + "observedLargestContentfulPaintAllFramesTs": 187803707, + "observedTraceEnd": 4492, + "observedTraceEndTs": 190979165, + "observedLoad": 1283, + "observedLoadTs": 187769744, + "observedDomContentLoaded": 1090, + "observedDomContentLoadedTs": 187577122, + "observedCumulativeLayoutShift": 0.007981014251708985, + "observedCumulativeLayoutShiftMainFrame": 0.007981014251708985, + "observedTotalCumulativeLayoutShift": 0.007981014251708985, + "observedFirstVisualChange": 1105, + "observedFirstVisualChangeTs": 187592216, + "observedLastVisualChange": 1921, + "observedLastVisualChangeTs": 188408216, + "observedSpeedIndex": 1433, + "observedSpeedIndexTs": 187920316 }, { "lcpInvalidated": false @@ -480845,19 +478119,19 @@ "numScripts": 43, "numStylesheets": 3, "numFonts": 3, - "numTasks": 1275, - "numTasksOver10ms": 9, - "numTasksOver25ms": 4, + "numTasks": 1301, + "numTasksOver10ms": 8, + "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 130.27499999999998, - "throughput": 6374360.393567912, - "maxRtt": 134.447, - "maxServerLatency": 254.86100000000005, - "totalByteWeight": 541401, - "totalTaskTime": 380.03399999999795, - "mainDocumentTransferSize": 10120 + "rtt": 100.84, + "throughput": 8329103.747002132, + "maxRtt": 103.54, + "maxServerLatency": 197.53700000000003, + "totalByteWeight": 541416, + "totalTaskTime": 329.31599999999924, + "mainDocumentTransferSize": 10119 } ] } @@ -480918,11 +478192,6 @@ "content_url_encoded_markdown": "%23%202024%20-%20Pause%20dans%20le%20d%C3%A9veloppement%20du%20service%20num%C3%A9rique%20%0A%0A%2A%2ALe%20d%C3%A9veloppement%20du%20produit%20num%C3%A9rique%20dans%20sa%20forme%20actuelle%20est%20arr%C3%AAt%C3%A9.%2A%2A%20L%E2%80%99%C3%A9quipe%20continuera%20d%E2%80%99assurer%20dans%20les%20prochains%20mois%20l%E2%80%99accompagnement%20et%20le%20support%20des%20utilisateurs%20actuels%2C%20sans%20%C3%A9volutions%20techniques%20ou%20fonctionnelles.%0A%0AEn%20lien%20avec%20l%E2%80%99incubateur%20de%20P%C3%B4le%20emploi%20et%20dans%20le%20cadre%20des%20exp%C3%A9rimentations%20de%20la%20%5Br%C3%A9forme%20France%20Travail%5D%28https%3A%2F%2Ftravail-emploi.gouv.fr%2Femploi-et-insertion%2Ffrance-travail%2F%29%2C%20la%20promesse%20de%20la%20co-construction%20d%E2%80%99un%20service%20num%C3%A9rique%20public%20de%20suivi%20de%20parcours%20des%20usagers%20n%E2%80%99est%20toutefois%20pas%20abandonn%C3%A9e.%20%2A%2AC%E2%80%99est%20donc%20d%E2%80%99avantage%20une%20deuxi%C3%A8me%20mouture%20de%20%C2%AB%20Carnet%20de%20bord%20%C2%BB%20qui%20se%20profile%20avec%20des%20discussions%20et%20des%20chantiers%20d%E2%80%99ores%20et%20d%C3%A9j%C3%A0%20engag%C3%A9s%20par%20l%E2%80%99%C3%89tat.%20Nous%20vous%20communiquerons%20prochainement%20sur%20cette%20page%20les%20contacts%20des%20%C3%A9quipes%20en%20charge%20de%20ce%20travail.%2A%2A%0A%0A%23%23%20Contexte%20et%20constat%0A%0A%2A%2AEn%20octobre%202023%2C%20un%20%C2%AB%20comit%C3%A9%20produit%20%C2%BB%20s%E2%80%99est%20r%C3%A9uni%2A%2A.%20Il%20s%E2%80%99agit%20d%E2%80%99un%20%C3%A9v%C3%A9nement%20classique%20dans%20l%E2%80%99%C3%A9cosyst%C3%A8me%20%5Bbeta.gouv%5D%28https%3A%2F%2Fbeta.gouv.fr%29%20ayant%20lieu%20tous%20les%206%20mois%20pour%20tous%20les%20produits%20num%C3%A9riques%20publics%20d%C3%A9velopp%C3%A9s%20en%20mode%20%C2%AB%20agile%20%C2%BB%20qui%2C%20pour%20rappel%2C%20sont%20engag%C3%A9s%20dans%20des%20cycles%20de%20d%C3%A9veloppement%20fonctionnel%20courts%2C%20dans%20une%20it%C3%A9ration%20r%C3%A9guli%C3%A8re%20avec%20leurs%20utilisateurs%20et%20dans%20l%27%C3%A9valuation%20par%20l%E2%80%99impact.%0A%0ACe%20comit%C3%A9%20s%E2%80%99inscrivait%20notamment%20dans%20le%20cadre%20de%20la%20%2A%2Amise%20en%20place%20d%E2%80%99une%20nouvelle%20comitologie%20produit%20dans%20le%20cadre%20de%20France%20Travail%2A%2A%2C%20r%C3%A9unissant%20ainsi%20dans%20ce%20cadre%20des%20membres%20de%20la%20direction%20g%C3%A9n%C3%A9rale%20de%20P%C3%B4le%20emploi%20ou%20du%20Haut%20Commissariat%20%C3%A0%20l%E2%80%99Emploi%20et%20%C3%A0%20l%E2%80%99Engagement%20des%20entreprises.%0A%0AL%E2%80%99%C3%A9quipe%20a%20dress%C3%A9%20un%20constat%20de%20l%E2%80%99usage%20de%20Carnet%20de%20bord%20et%20a%20%C3%A9tabli%20que%20%2A%2Al%E2%80%99%5Bimpact%20attendu%5D%28https%3A%2F%2Fmetabase.carnetdebord.inclusion.beta.gouv.fr%2Fpublic%2Fdashboard%2F81a749aa-6c29-46b2-9ca5-df9d90fd3257%29%20%28nombre%20de%20consultations%2C%20nombre%20de%20modification%20de%20carnets%2C%20etc.%29%20n%E2%80%99%C3%A9tait%20peut-%C3%AAtre%20pas%20%C3%A0%20la%20hauteur%20de%20l%E2%80%99investissement%20consenti%20par%20l%E2%80%99Etat%20dans%20son%20d%C3%A9veloppement.%2A%2A%20Il%20a%20donc%20%C3%A9t%C3%A9%20d%C3%A9cid%C3%A9%20-%20non%20pas%20d%E2%80%99arr%C3%AAter%20le%20produit%20-%20mais%20de%20temporiser%20son%20activit%C3%A9%20actuelle%20en%20laissant%20-%20comme%20%C3%A9voqu%C3%A9%20ci-dessus%20-%20uniquement%20de%20la%20ressource%20sur%20le%20seul%20support%20courant%20utilisateur%2C%20d%E2%80%99une%20part%2C%20et%20sur%20la%20r%C3%A9solution%20de%20bugs%20le%20cas%20%C3%A9ch%C3%A9ant%2C%20d%E2%80%99autre%20part.%0A%0A%23%23%20Quels%20apprentissages%20%3F%0A%0ATechniquement%2C%20le%20produit%20dans%20sa%20configuration%20actuelle%20atteignait%20ses%20limites%20%3A%20de%20%2A%2Anombreux%20bugs%20rythmaient%20la%20vie%20de%20l%E2%80%99outil%2A%2A%2C%20d%C3%A9gradant%20fortement%20l%E2%80%99exp%C3%A9rience%20utilisateur%2C%20et%20le%20%2A%2Atemps%20d%E2%80%99impl%C3%A9mentation%20de%20nouvelles%20fonctionnalit%C3%A9s%20%C3%A9tait%20%C3%A9lev%C3%A9%2A%2A.%20%C3%80%20cet%20%C3%A9gard%2C%20il%20s%E2%80%99agit%20de%20relever%20que%20le%20d%C3%A9veloppement%20de%20l%E2%80%99application%20et%20l%E2%80%99exercice%20de%20priorisation%20dans%20la%20feuille%20de%20route%20%C3%A9taient%20souvent%20perturb%C3%A9s%20par%20une%20tension%20intrins%C3%A8que%20au%20produit%20entre%20ceux%20qui%20voyaient%20dans%20Carnet%20de%20bord%20%2A%2Aun%20espace%20privil%C3%A9gi%C3%A9%20de%20partage%20de%20donn%C3%A9es%20automatis%C3%A9es%2A%2A%20et%20provenant%20de%20logiciels%20tiers%20%28logiciels%20%C3%A9diteurs%2C%20autres%20SI%20publics%29%20et%20ceux%20qui%20esp%C3%A9raient%20faire%20de%20Carnet%20de%20bord%20%2A%2Aun%20logiciel%20de%20parcours%20complet%2A%2A%20utilis%C3%A9%20au%20quotidien%20par%20les%20professionnels.%0A%0APar%20ailleurs%2C%20sur%20le%20cas%20d%E2%80%99usage%20majoritaire%20au%20sein%20des%20exp%C3%A9rimentations%20%28l%E2%80%99accompagnement%20de%20b%C3%A9n%C3%A9ficiaires%20du%20RSA%20%3A%20du%20t%C3%A9l%C3%A9chargement%20des%20flux%20%C3%A0%20la%20saisie%20du%20contrat%20d%E2%80%99engagement%20r%C3%A9ciproque%29%2C%20%2A%2Acertaines%20fonctionnalit%C3%A9s%20%C3%A9taient%20fortement%20attendues%20par%20les%20professionnels.%2A%2A%0A%0A-%20L%E2%80%99absence%20de%20celles-ci%20emp%C3%AAchait%20une%20bascule%20int%C3%A9grale%20sur%20Carnet%20de%20bord%20%3A%20interconnexion%20compl%C3%A8te%20avec%20le%20SI%20P%C3%B4le%20emploi%2C%20notamment%20sur%20le%20p%C3%A9rim%C3%A8tre%20du%20diagnostic%20socio-professionnel%20%3B%20r%C3%A9alisation%20d%E2%80%99exports%20et%20possibilit%C3%A9%20de%20requ%C3%AAtage%20%3B%20tableaux%20de%20pilotage%20%3B%20gestion%20compl%C3%A8te%20du%20CER%20dans%20l%E2%80%99outil%20%28%C3%A9dition%2C%20validation%2C%20t%C3%A9l%C3%A9chargement%29%20%3B%20r%C3%A9alisation%20de%20bilans%20d%E2%80%99accompagnement%2C%20possibilit%C3%A9s%20accrues%20d%E2%80%99%C3%A9changes%20entre%20professionnels%20%3B%20interconnexion%20entre%20les%20logiciels%20de%20gestion%20et%20Carnet%20de%20bord.%0A-%20En%20cons%C3%A9quence%2C%20ces%20manques%20fonctionnels%20entrainaient%20bien%20souvent%20pour%20les%20professionnels%20des%20%2A%2Adouble-saisies%2A%2A%2C%20voire%20triple-saisies%2C%20exp%C3%A9rience%20tr%C3%A8s%20pr%C3%A9judiciable%20%C3%A0%20la%20r%C3%A9tention%20des%20utilisateurs.%0A%0AEnfin%2C%20le%20%2A%2Afaible%20nombre%20d%E2%80%99accompagnateurs%2A%2A%20embarqu%C3%A9s%20sur%20Carnet%20de%20bord%2C%20notamment%20en%20dehors%20des%20conseils%20d%C3%A9partementaux%2C%20%2A%2Adiminuait%20fortement%20la%20valeur%20du%20partage%20d%E2%80%99informations%20et%20la%20plus-value%20de%20Carnet%20de%20bord%2A%2A%20pour%20conseillers%20en%20insertion%20et%20travailleurs%20sociaux%20des%20d%C3%A9partements%20%3A%20la%20promesse%20d%E2%80%99un%20gain%20d%E2%80%99informations%20sur%20les%20usagers%20obtenu%20gr%C3%A2ce%20%C3%A0%20Carnet%20de%20bord%20n%E2%80%99%C3%A9tait%20pas%20tenue.%0A%0A%23%23%20Quelle%20suite%20pour%20Carnet%20de%20bord%20et%20l%E2%80%99id%C3%A9e%20d%E2%80%99un%20outil%20de%20suivi%20de%20parcours%20%3F%0A%0ALe%20Haut%20Commissariat%20%C3%A0%20l%E2%80%99Emploi%20et%20%C3%A0%20l%E2%80%99Engagement%20des%20Entreprises%20%28HC3E%29%20s%E2%80%99est%20entretenu%20%C3%A0%20l%E2%80%99automne%202023%20avec%20de%20nombreux%20d%C3%A9partements%20utilisateurs%20de%20Carnet%20de%20bord%20et%2C%20dans%20le%20cadre%20de%20France%20Travail%20notamment%2C%20est%20toutefois%20ressortie%20%2A%2Aune%20forte%20volont%C3%A9%20des%20conseils%20d%C3%A9partementaux%20de%20poursuivre%20la%20co-construction%20d%E2%80%99un%20outil%20num%C3%A9rique%20public%20de%20parcours%20des%20usagers%20en%20insertion%2A%2A%20%28en%20sus%20de%20l%E2%80%99offre%20d%C3%A9j%C3%A0%20propos%C3%A9e%20par%20des%20%C3%A9diteurs%20de%20logiciel%20ou%20se%20mat%C3%A9rialisant%20dans%20les%20logiciels%20%C2%AB%20maison%20%C2%BB%29.%20Un%20Carnet%20de%20bord%20%C2%AB%20V2%20%C2%BB%20a%20donc%20vocation%20%C3%A0%20voir%20le%20jour%2C%20mobilisant%20des%20%C3%A9quipes%20et%20technologies%20diff%C3%A9rentes.%20Dans%20ce%20cadre%2C%20%2A%2Ade%20premiers%20chantiers%20exploratoires%20sont%20en%20cours%20au%20sein%20de%20P%C3%B4le%20emploi%20pour%20reprendre%20le%20flambeau%20du%20Groupement%20d%E2%80%99int%C3%A9r%C3%AAt%20public%20%28GIP%29%20Plateforme%20de%20l%E2%80%99inclusion%2A%2A.%20Les%20%C3%A9quipes%20concern%C3%A9es%20peuvent%20capitaliser%20sur%20certains%20acquis%20solides%20de%20Carnet%20de%20bord%20%3A%0A%0A-%20%2A%2AUne%20s%C3%A9curisation%20juridique%20pouss%C3%A9e%2A%2A%20%3A%20un%20%5Bd%C3%A9cret%5D%28https%3A%2F%2Fwww.legifrance.gouv.fr%2Fjorf%2Fid%2FJORFTEXT000047318824%29%20a%20%C3%A9t%C3%A9%20publi%C3%A9%20pour%20encadrer%20les%20%C3%A9changes%20de%20donn%C3%A9es%20entre%20tous%20les%20acteurs%20de%20l%E2%80%99insertion%20%3B%0A-%20%2A%2AR%C3%A9f%C3%A9rentiel%20de%20donn%C3%A9es%2A%2A%20%3A%20une%20nomenclature%20nationale%20des%20donn%C3%A9es%20de%20diagnostic%20socio-professionnel%20et%20des%20%C3%A9l%C3%A9ments%20de%20parcours%20%28objectifs%20et%20actions%29%20a%20%C3%A9t%C3%A9%20co-construite%20avec%20les%20professionnels%20et%20peut%20grandement%20faciliter%20les%20%C3%A9changes%20de%20donn%C3%A9es%20%28les%20interconnections%20techniques%20entre%20SI%20reposant%20en%20effet%20avant%20tout%20sur%20une%20interop%C3%A9rabilit%C3%A9%20s%C3%A9mantique%29%20%3B%0A-%20%2A%2AUn%20mode%20d%E2%80%99habilitation%20simple%2A%2A%20%3A%20une%20matrice%20d%E2%80%99habilitation%20permet%20la%20cr%C3%A9ation%20rapide%20et%20autonome%20de%20nouvelles%20structures%20et%20professionnels%20%28l%E2%80%99outil%20est%20g%C3%A9r%C3%A9%20au%20niveau%20local%29%20%3B%0A-%20%2A%2AUne%20m%C3%A9thode%20it%C3%A9rative%20qui%20a%20fait%20ses%20preuves%2A%2A%20%3A%20des%20%C3%A9changes%20r%C3%A9guliers%20ont%20permis%20de%20bien%20comprendre%20ce%20qui%20%C3%A9tait%20attendu%20par%20les%20professionnels%20de%20l%E2%80%99insertion.%20Plus%20particuli%C3%A8rement%2C%20l%E2%80%99id%C3%A9e%20est%20notamment%20que%20les%20aspects%20de%20l%E2%80%99outil%20qui%20ne%20suscitaient%20pas%20beaucoup%20d%E2%80%99engagement%20de%20la%20part%20des%20utilisateurs%20et%20qui%20n%E2%80%99%C3%A9taient%20pas%20vraiment%20pl%C3%A9biscit%C3%A9s%20disparaissent%20tandis%20que%20les%20fonctionnalit%C3%A9s%20qui%20suscitaient%20le%20plus%20d%E2%80%99int%C3%A9r%C3%AAt%20m%C3%A9tier%20%28et%20celles%20qui%20n%E2%80%99existaient%20pas%20encore%20mais%20qui%20%C3%A9taient%20tr%C3%A8s%20attendues%29%20soient%20am%C3%A9lior%C3%A9es%20%2F%20d%C3%A9velopp%C3%A9es.%0A%0A%23%202021%20%C3%A0%202023%20-%20Archives%0A%0A%23%23%20Le%20probl%C3%A8me%0A%0ALe%20champ%20de%20l%E2%80%99insertion%20sociale%20et%20professionnelle%2C%20et%20en%20particulier%20le%20domaine%20de%20l%E2%80%99accompagnement%20des%20usagers%2C%20se%20caract%C3%A9rise%20par%20une%20multiplicit%C3%A9%20et%20une%20grande%20diversit%C3%A9%20d%E2%80%99acteurs.%20La%20mauvaise%20connaissance%20et%20l%27absence%20de%20partage%20de%20certaines%20donn%C3%A9es%20ne%20permettent%20pas%20aux%20professionnels%20de%20proc%C3%A9der%20%C3%A0%20une%20bonne%20%C3%A9valuation%20des%20situations%20des%20usagers%20et%20un%20suivi%20optimal%20des%20parcours.%20Le%20d%C3%A9ficit%20de%20connaissance%20des%20%C3%A9l%C3%A9ments%20de%20parcours%20d%E2%80%99insertion%20d%E2%80%99un%20usager%20rend%20ainsi%20complexe%20l%E2%80%99analyse%20de%20sa%20situation%20et%20la%20mise%20en%20%C5%93uvre%20d%E2%80%99un%20parcours%20efficient%20entre%20partenaires.%20%0A%0A%23%23%20Notre%20service%0A%0AD%C3%A9velopp%C3%A9%20dans%20le%20cadre%20du%20volet%20num%C3%A9rique%20du%20projet%20de%20Service%20Public%20de%20l%27Insertion%20et%20de%20l%27Emploi%2C%20l%27outil%20Carnet%20de%20bord%20est%20un%20service%20public%20qui%20centralise%20les%20donn%C3%A9es%20essentielles%20%28%C3%A9l%C3%A9ments%20de%20diagnostic%20socio-professionnel%2C%20identit%C3%A9%20et%20contact%20des%20accompagnateurs%2C%20contrats%20de%20parcours%2C%20objectifs%20%C3%A0%20atteindre%20et%20actions%20initi%C3%A9es%2C%20historique%20de%20parcours%29%20en%20une%20seule%20page.%20Il%20regroupe%20l%E2%80%99information%20dans%20un%20espace%20s%C3%A9curis%C3%A9%20permettant%20un%20%C3%A9change%20accru%20des%20donn%C3%A9es%20essentielles%2C%20entre%20les%20accompagnateurs%20et%20le%20b%C3%A9n%C3%A9ficiaire%20afin%20d%E2%80%99amplifier%20la%20coordination%20et%20fluidifier%20le%20parcours%20d%E2%80%99un%20usager%20%21%0A%0A%23%23%20Nos%20publics%0A%0A%2A%2AQui%20sont%20les%20usagers%20en%20insertion%20concern%C3%A9s%20par%20l%27outil%20%3F%2A%2A%20Carnet%20de%20bord%20propose%20la%20cr%C3%A9ation%20de%20%22carnets%22%20d%27usagers%20relevant%20de%20diff%C3%A9rents%20publics%20en%20insertion%20%C3%A0%20l%27instar%20des%20b%C3%A9n%C3%A9ficiaires%20du%20RSA%2C%20des%20demandeurs%20d%27emploi%20%28notamment%20longue%20dur%C3%A9e%2C%20accompagnement%20global%20ou%20concern%C3%A9s%20par%20la%20modalit%C3%A9%20d%27accompagnement%20%22expert%20handicap%22%29%2C%20des%20jeunes%20NEET%2C%20etc.%20%0A%0A%2A%2AQui%20sont%20les%20professionnels%20concern%C3%A9s%20par%20l%27outil%20%3F%2A%2A%20Tous%20les%20accompagnateurs%20des%20personnes%20en%20insertion%20sont%20en%20mesure%20de%20b%C3%A9n%C3%A9ficier%20d%27un%20acc%C3%A8s%20aux%20carnets%20des%20usagers%20qu%27ils%20accompagnent.%20Cela%20concerne%20tant%20les%20accompagnateurs%20publics%20%28P%C3%B4le%20emploi%2C%20Conseils%20d%C3%A9partementaux%2C%20CCAS%2FCIAS%2C%20missions%20locales%2C%20Cap%20emploi%2C%20etc.%29%20que%20les%20acteurs%20priv%C3%A9s%20de%20l%27insertion%20comme%2C%20par%20exemple%2C%20les%20structures%20associatives%20d%C3%A9l%C3%A9gu%C3%A9es%20pour%20l%27accompagnement%20de%20b%C3%A9n%C3%A9ficiaires%20du%20RSA.%20L%27acc%C3%A8s%20de%20tous%20ces%20acteurs%20%C3%A0%20l%27outil%20a%20%C3%A9t%C3%A9%20rendu%20possible%20par%20un%20travail%20juridique%2C%20notamment%20concr%C3%A9tis%C3%A9%20par%20l%27entr%C3%A9e%20en%20vigueur%20de%20l%27%5Barticle%20168%5D%28https%3A%2F%2Fwww.legifrance.gouv.fr%2Fjorf%2Farticle_jo%2FJORFARTI000045197621%23%3A~%3Atext%3D%25C2%25AB%2520La%2520personne%2520dont%2520les%2520informations%2C%25C3%25A0%2520la%2520poursuite%2520du%2520traitement%29%20de%20la%20loi%20du%2021%20f%C3%A9vrier%202022%20relative%20%C3%A0%20la%20diff%C3%A9renciation%2C%20la%20d%C3%A9centralisation%2C%20la%20d%C3%A9concentration%20et%20portant%20diverses%20mesures%20de%20simplification%20de%20l%27action%20publique%20locale%20dont%20le%20%5Bd%C3%A9cret%20d%27application%20n%C2%B0%202023-188%5D%28https%3A%2F%2Fwww.legifrance.gouv.fr%2Fjorf%2Fid%2FJORFTEXT000047318824%29%20est%20paru%2017%20mars%202023.%20%0A", "events": [], "phases": [ - { - "name": "alumni", - "start": "2023-12-01", - "end": "" - }, { "name": "investigation", "start": "2021-01-25", @@ -480937,6 +478206,11 @@ "name": "acceleration", "start": "2021-11-01", "end": "2022-04-30" + }, + { + "name": "alumni", + "start": "2023-12-01", + "end": "" } ] }, @@ -480992,7 +478266,7 @@ "http": { "url": "https://collectif-objets.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 17:45:06 GMT", + "end_time": "Sun, 14 Jan 2024 17:15:33 GMT", "grade": "C-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -481000,26 +478274,26 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 17:45:05 GMT", + "Date": "Sun, 14 Jan 2024 17:15:32 GMT", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; includeSubDomains", "Transfer-Encoding": "chunked", - "X-Request-ID": "d74d9a03-ad92-49f8-be38-88bc2cb758f5, d74d9a03-ad92-49f8-be38-88bc2cb758f5", + "X-Request-ID": "1908daa2-692e-49d2-a361-77a6e251c80a, 1908daa2-692e-49d2-a361-77a6e251c80a", "cache-control": "max-age=0, private, must-revalidate", - "content-security-policy-report-only": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-LKV2/wu55ZlMhQNHhWSp0w=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-LKV2/wu55ZlMhQNHhWSp0w=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/", - "etag": "W/\"c1adee342da65700a36c610276204b2f\"", + "content-security-policy-report-only": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-MeJ/huu8D7OO2w7uSk9PNw=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-MeJ/huu8D7OO2w7uSk9PNw=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/", + "etag": "W/\"0c312734c29221ae762887b0157a5260\"", "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; crossorigin=anonymous; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_collectif_objets_session=m5bl7jeFAEg4FINaSyYnmx6bANYAPsmZlN6pey3EA8r9R42Gwlu8KPQMj2izkJ4K4SNaM9YxPLLGDPOEQM0wHZ2H4v4GR92J7Hqc3mrzlHYHesEQOCnJIAbgvFHixiKs5PG5A7vXKNCEaS%2Fg1TjQ0rAEwetRavyWCBbOabXfNOmUEEtrO1mm3a4Yz7XS7dx1HMIQrS071o8byN3pYoDkB8Q7K5y1%2FvdmaqfW0Sy7eC5iUarNnWNaoBhjk7YOJFv%2FVD5ltYAha5o2cGFDra9WacWVlt6KloUwNS0LWVL11B4D--gLq8YjGe23QwE8uH--NvEtIJEZev5kYy%2Bp5V33eQ%3D%3D; path=/; secure; httponly; SameSite=Lax", + "set-cookie": "_collectif_objets_session=TWcSiD1z1lmknrvdlQmv9yb78pwBoeLNMdHaRFJgT59dJH%2BvB89BzVOpkG4NviUkChoAZLrh0t4b%2Be6ARKZ6BdeUQ4aBalDh6fFr%2FZh%2FmZWUkF3gGz8myol9qKINhPZUR4Gun6hMPa5Lm7gvWLPLKoBd1Pup31jnBnoeHNIOp8PAhKfGBy0Nf4jhQHSgt6f1qPkKrUG8C7ZPzV5SfdS5JvtaI8Jju7LuEpYKM8b62rbJssFJwkEXOZLKf4s8gcONfR7DziH4TNtCVaSCZCVWylk5UdZXrqKQCD9E%2B4PCM70L--VPUV5G%2Bq%2BjSgFF7d--GRpiebPCqHBGxE%2F6fqX9xg%3D%3D; path=/; secure; httponly; SameSite=Lax", "vary": "Accept", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-runtime": "0.007936", + "x-runtime": "0.007979", "x-xss-protection": "0" }, - "scan_id": 46236749, + "scan_id": 46491913, "score": 45, - "start_time": "Sun, 07 Jan 2024 17:45:02 GMT", + "start_time": "Sun, 14 Jan 2024 17:15:28 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -481224,77 +478498,77 @@ "testssl": [ { "id": "service", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481302,7 +478576,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481310,7 +478584,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481318,7 +478592,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -481326,7 +478600,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -481334,7 +478608,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -481342,553 +478616,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-12-08 13:53" }, { "id": "cert_notAfter", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-03-07 13:53" }, { "id": "cert_extlifeSpan", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704649605" + "finding": "1705252664" }, { "id": "HSTS_multiple", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy-Report-Only", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-Ue021TMZZmF/YG3sQBGuEA=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-Ue021TMZZmF/YG3sQBGuEA=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-0uIrIthy/6wVyh61WqLS5g=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-0uIrIthy/6wVyh61WqLS5g=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" }, { "id": "X-XSS-Protection", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -481896,7 +479170,7 @@ }, { "id": "heartbleed", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -481905,7 +479179,7 @@ }, { "id": "CCS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -481914,7 +479188,7 @@ }, { "id": "ticketbleed", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -481923,7 +479197,7 @@ }, { "id": "ROBOT", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -481932,7 +479206,7 @@ }, { "id": "secure_renego", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -481940,7 +479214,7 @@ }, { "id": "secure_client_renego", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -481949,7 +479223,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -481958,7 +479232,7 @@ }, { "id": "BREACH", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -481967,7 +479241,7 @@ }, { "id": "POODLE_SSL", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -481976,14 +479250,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -481992,7 +479266,7 @@ }, { "id": "FREAK", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -482001,7 +479275,7 @@ }, { "id": "DROWN", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -482010,7 +479284,7 @@ }, { "id": "DROWN_hint", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -482019,7 +479293,7 @@ }, { "id": "LOGJAM", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -482028,7 +479302,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -482037,7 +479311,7 @@ }, { "id": "BEAST", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -482046,7 +479320,7 @@ }, { "id": "LUCKY13", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -482055,7 +479329,7 @@ }, { "id": "winshock", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -482064,7 +479338,7 @@ }, { "id": "RC4", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -482073,392 +479347,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", + "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -482466,7 +479740,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -482474,7 +479748,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -482482,7 +479756,7 @@ }, { "id": "cipherlist_LOW", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -482490,7 +479764,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -482498,7 +479772,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -482506,553 +479780,553 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-12-08 13:53" }, { "id": "cert_notAfter", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-03-07 13:53" }, { "id": "cert_extlifeSpan", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704649664" + "finding": "1705252762" }, { "id": "HSTS_multiple", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy-Report-Only", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-Wzp+Hyw03G+EBaqOrfDOwQ=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-Wzp+Hyw03G+EBaqOrfDOwQ=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-gOAlhslMf5BYEu7miWqM7w=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-gOAlhslMf5BYEu7miWqM7w=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" }, { "id": "X-XSS-Protection", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -483060,7 +480334,7 @@ }, { "id": "heartbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -483069,7 +480343,7 @@ }, { "id": "CCS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -483078,7 +480352,7 @@ }, { "id": "ticketbleed", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -483087,7 +480361,7 @@ }, { "id": "ROBOT", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -483096,7 +480370,7 @@ }, { "id": "secure_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -483104,7 +480378,7 @@ }, { "id": "secure_client_renego", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -483113,7 +480387,7 @@ }, { "id": "CRIME_TLS", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -483122,7 +480396,7 @@ }, { "id": "BREACH", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -483131,7 +480405,7 @@ }, { "id": "POODLE_SSL", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -483140,14 +480414,14 @@ }, { "id": "fallback_SCSV", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -483156,7 +480430,7 @@ }, { "id": "FREAK", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -483165,7 +480439,7 @@ }, { "id": "DROWN", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -483174,7 +480448,7 @@ }, { "id": "DROWN_hint", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -483183,7 +480457,7 @@ }, { "id": "LOGJAM", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -483192,7 +480466,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -483201,7 +480475,7 @@ }, { "id": "BEAST", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -483210,7 +480484,7 @@ }, { "id": "LUCKY13", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -483219,7 +480493,7 @@ }, { "id": "winshock", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -483228,7 +480502,7 @@ }, { "id": "RC4", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -483237,315 +480511,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "collectif-objets.beta.gouv.fr/80.247.12.255", + "ip": "collectif-objets.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" @@ -483897,7 +481171,7 @@ "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "59 >= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", @@ -484100,7 +481374,7 @@ "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704649722" + "finding": "1705252862" }, { "id": "HSTS_multiple", @@ -484191,7 +481465,7 @@ "ip": "collectif-objets.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-udEXjJ7Zms1GY2jB5YlIvw=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-udEXjJ7Zms1GY2jB5YlIvw=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-mNnRaVYnbNkWDHA4db542Q=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-mNnRaVYnbNkWDHA4db542Q=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" }, { "id": "X-XSS-Protection", @@ -485061,7 +482335,7 @@ "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "59 >= 30 days" + "finding": "52 >= 30 days" }, { "id": "cert_notBefore", @@ -485264,7 +482538,7 @@ "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704649780" + "finding": "1705252963" }, { "id": "HSTS_multiple", @@ -485355,7 +482629,7 @@ "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-uWTy0V4dVu7PGqhtcvogwQ=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-uWTy0V4dVu7PGqhtcvogwQ=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" + "finding": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-USB39i/k4l5ZQbMnviJmsw=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-USB39i/k4l5ZQbMnviJmsw=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/" }, { "id": "X-XSS-Protection", @@ -485883,7 +483157,7 @@ "ip": "collectif-objets.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "236" + "finding": "403" } ], "thirdparties": { @@ -485891,11 +483165,11 @@ "cookies": [ { "name": "_collectif_objets_session", - "value": "QXLeUBBhqjjmk3dsgSaRNJwjhPB5pSwpbl0%2BOvllJ6l4ByMJFQmjW%2FKMk8TXBUH8LkDZ5cRtTkwNk%2FZ05PKestVv6QcFzmqMS%2FAQNq6NwEGpv32gfn4fgCwxGSz%2BJAyhcptpTJTDM9xTLC50Sik5gR5NBkQaDovui0JnIVBE3%2BqXHBUGeQyL2TU6XvgRV6b%2BuDllW%2Fl86I73mXHISIFgAN%2FjknLL9xUkYeXjx9b96ZWKD2gnzGKapcW4bsSUtuxxf6FSoJ9U1yZUFp08uA%2FnAhz1PfzUwV%2BrhxJsnB%2FpQ3W9--jPwMsW48o4SGn6Br--yZP6rIy6gGJcYnMT9hIDzA%3D%3D", + "value": "%2B8GG%2FmAxfQKyHtpmaC6QYF8eLEXXJo8fKlh8DgCDmdppuQKXGA3ZJxgYT9PkaTo0jK6uvFiXbhxrogSquaWkHopqOJwKxO%2BsCp4Xwsws3U33xwOlUKMHsjVwfWZaN%2BDI50%2FKxumzJ95MDfolU9UHvrbu1JeIYnxZJblN%2BN8aONhDlVxzkEfK%2FnvEDTQ5P7yl8SxCxK4Ru5RPG0%2BTjNi72kJqmTNGIfi59zn%2B%2BQzafwG6Is656YR0HOIsThLxHAy8okrQ8NnEY%2FUJkvCF4UHYuExXMf%2F%2BCCbeVUgTl9T0IATu--zAHSKgWvKJM5bTVL--KzAd5B90GHRNQ7b89IYIRQ%3D%3D", "domain": "collectif-objets.beta.gouv.fr", "path": "/", "expires": -1, - "size": 397, + "size": 399, "httpOnly": true, "secure": true, "session": true, @@ -485908,25 +483182,25 @@ "headers": { "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", - "content-security-policy-report-only": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-4yCuW2UeyL6SbI86dFvbvg=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-4yCuW2UeyL6SbI86dFvbvg=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/", + "content-security-policy-report-only": "report-uri https://sentry.incubateur.net/api/40/security/?sentry_key=5f6f9cf638ac413b82d1d9c8a9ba2025; default-src 'self' https:; script-src 'self' https: 'nonce-Y6gfrNhdVBurMvOqMxOD5A=='; img-src 'self' data: blob: https://s3.fr-par.scw.cloud/collectif-objets-development2/ https://s3.fr-par.scw.cloud/collectif-objets-staging2/ https://s3.fr-par.scw.cloud/collectif-objets-production/ https://s3.fr-par.scw.cloud/collectif-objets-public/ https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/ https://s3.eu-west-3.amazonaws.com/pop-phototeque/ https://collectif-objets.beta.gouv.fr/; connect-src 'self' https://sentry.incubateur.net https://stats.beta.gouv.fr https://openmaptiles.geo.data.gouv.fr https://collectif-objets-development2.s3.fr-par.scw.cloud/ https://collectif-objets-staging2.s3.fr-par.scw.cloud/ https://collectif-objets-production.s3.fr-par.scw.cloud/ https://collectif-objets-public.s3.fr-par.scw.cloud/; object-src 'none'; font-src 'self' https: data:; child-src blob:; worker-src blob:; style-src 'self' https: 'nonce-Y6gfrNhdVBurMvOqMxOD5A=='; frame-src https://collectif-objets-metabase.osc-secnum-fr1.scalingo.io/", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 17:45:40 GMT", - "etag": "W/\"458076adf4416a0d3f0f1d8e28cba4d6\"", + "date": "Sun, 14 Jan 2024 17:16:03 GMT", + "etag": "W/\"5d85560e936bc413df2b90a58bcbd602\"", "link": "; rel=modulepreload; as=script; crossorigin=anonymous; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; crossorigin=anonymous; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_collectif_objets_session=QXLeUBBhqjjmk3dsgSaRNJwjhPB5pSwpbl0%2BOvllJ6l4ByMJFQmjW%2FKMk8TXBUH8LkDZ5cRtTkwNk%2FZ05PKestVv6QcFzmqMS%2FAQNq6NwEGpv32gfn4fgCwxGSz%2BJAyhcptpTJTDM9xTLC50Sik5gR5NBkQaDovui0JnIVBE3%2BqXHBUGeQyL2TU6XvgRV6b%2BuDllW%2Fl86I73mXHISIFgAN%2FjknLL9xUkYeXjx9b96ZWKD2gnzGKapcW4bsSUtuxxf6FSoJ9U1yZUFp08uA%2FnAhz1PfzUwV%2BrhxJsnB%2FpQ3W9--jPwMsW48o4SGn6Br--yZP6rIy6gGJcYnMT9hIDzA%3D%3D; path=/; secure; httponly; SameSite=Lax", + "set-cookie": "_collectif_objets_session=%2B8GG%2FmAxfQKyHtpmaC6QYF8eLEXXJo8fKlh8DgCDmdppuQKXGA3ZJxgYT9PkaTo0jK6uvFiXbhxrogSquaWkHopqOJwKxO%2BsCp4Xwsws3U33xwOlUKMHsjVwfWZaN%2BDI50%2FKxumzJ95MDfolU9UHvrbu1JeIYnxZJblN%2BN8aONhDlVxzkEfK%2FnvEDTQ5P7yl8SxCxK4Ru5RPG0%2BTjNi72kJqmTNGIfi59zn%2B%2BQzafwG6Is656YR0HOIsThLxHAy8okrQ8NnEY%2FUJkvCF4UHYuExXMf%2F%2BCCbeVUgTl9T0IATu--zAHSKgWvKJM5bTVL--KzAd5B90GHRNQ7b89IYIRQ%3D%3D; path=/; secure; httponly; SameSite=Lax", "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "b1e8d0e7-faef-48d8-932a-4e56f5f53615\nb1e8d0e7-faef-48d8-932a-4e56f5f53615", - "x-runtime": "0.008691", + "x-request-id": "70a545f2-6600-40f2-b727-e032558775dc\n70a545f2-6600-40f2-b727-e032558775dc", + "x-runtime": "0.010110", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "collectif-objets.beta.gouv.fr", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -486154,7 +483428,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 17:44:36", + "@generated": "Sun, 14 Jan 2024 17:15:01", "site": [ { "@name": "https://collectif-objets.beta.gouv.fr", @@ -486322,20 +483596,24 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "ns" + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -486344,37 +483622,37 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "collectif-objets.beta.gouv.fr.", - "matched-at": "collectif-objets.beta.gouv.fr", + "matched-at": "_dmarc.collectif-objets.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T17:51:10.096436105Z", + "timestamp": "2024-01-14T17:24:33.901078267Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -486384,37 +483662,34 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "collectif-objets.beta.gouv.fr.", - "matched-at": "_dmarc.collectif-objets.beta.gouv.fr", + "matched-at": "collectif-objets.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T17:51:10.117137902Z", + "timestamp": "2024-01-14T17:24:33.913626492Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -486429,7 +483704,11 @@ "type": "dns", "host": "collectif-objets.beta.gouv.fr.", "matched-at": "collectif-objets.beta.gouv.fr", - "timestamp": "2024-01-07T17:51:10.260248744Z", + "extracted-results": [ + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." + ], + "timestamp": "2024-01-14T17:24:34.036173049Z", "matcher-status": true }, { @@ -486465,30 +483744,29 @@ "host": "collectif-objets.beta.gouv.fr.", "matched-at": "collectif-objets.beta.gouv.fr", "extracted-results": [ - "\"brevo-code:cbd861ef1a2aacf4030653ea082d45a8\"", - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + "\"v=spf1 include:_spf.alwaysdata.com ~all\"", + "\"brevo-code:cbd861ef1a2aacf4030653ea082d45a8\"" ], - "timestamp": "2024-01-07T17:51:11.134129319Z", + "timestamp": "2024-01-14T17:24:34.243750795Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -486504,22 +483782,19 @@ "type": "dns", "host": "collectif-objets.beta.gouv.fr.", "matched-at": "collectif-objets.beta.gouv.fr", - "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." - ], - "timestamp": "2024-01-07T17:51:11.213481944Z", + "timestamp": "2024-01-14T17:24:35.034723891Z", "matcher-status": true }, { - "template": "http/misconfiguration/httponly-cookie-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/httponly-cookie-detect", - "template-id": "httponly-cookie-detect", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/httponly-cookie-detect.yaml", + "template": "http/misconfiguration/cookies-without-httponly-secure.yaml", + "template-url": "https://templates.nuclei.sh/public/cookies-without-httponly-secure", + "template-id": "cookies-without-httponly-secure", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/cookies-without-httponly-secure.yaml", "info": { - "name": "HttpOnly Cookie - Detect", + "name": "Cookies without HttpOnly or Secure attribute - Detect", "author": [ - "mr. bobo hp" + "princechaddha", + "mr.bobo hp" ], "tags": [ "misconfig", @@ -486528,8 +483803,9 @@ "generic" ], "description": "Checks whether cookies in the HTTP response contain the HttpOnly attribute. If the HttpOnly flag is set, it means that the cookie is HTTP-only\n", + "impact": "Lack of HttpOnly flag on cookies increases the risk of client-side attacks, compromising user session security and data privacy.\n", "reference": [ - "https://stackoverflow.com/questions/4316539/how-do-i-test-httponly-cookie-flag" + "https://owasp.org/www-community/httponly" ], "severity": "info", "metadata": { @@ -486540,13 +483816,14 @@ "cve-id": null, "cwe-id": null, "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } + }, + "remediation": "Ensure that all cookies are set with the HttpOnly attribute to prevent client-side access.\n" }, "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:51:23.749461186Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:25:31.716725329Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486578,12 +483855,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:52:01.469962764Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:25:46.272258631Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486615,12 +483892,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:52:01.47000324Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:25:46.272300519Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486652,12 +483929,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:52:01.470015753Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:25:46.272318573Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486689,12 +483966,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:52:01.470033186Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:25:46.272335985Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486726,12 +484003,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:52:01.470050057Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:25:46.272351223Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr'", "matcher-status": true }, @@ -486758,8 +484035,8 @@ "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr/robots.txt", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:52:13.021162934Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:26:02.864358242Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -486798,8 +484075,8 @@ "type": "http", "host": "https://collectif-objets.beta.gouv.fr", "matched-at": "https://collectif-objets.beta.gouv.fr/", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:52:28.601114939Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:26:25.095705906Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: collectif-objets.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectif-objets.beta.gouv.fr/'", "matcher-status": true }, @@ -486829,8 +484106,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:58:11.57386317Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:32:17.89168068Z", "matcher-status": true }, { @@ -486859,8 +484136,8 @@ "extracted-results": [ "collectif-objets.beta.gouv.fr" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:58:11.57398616Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:32:17.891792259Z", "matcher-status": true }, { @@ -486890,8 +484167,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:58:13.200400719Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:32:20.397939438Z", "matcher-status": true }, { @@ -486921,8 +484198,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T17:58:13.415275109Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:32:20.707670609Z", "matcher-status": true } ], @@ -486930,7 +484207,7 @@ { "requestedUrl": "https://collectif-objets.beta.gouv.fr/", "finalUrl": "https://collectif-objets.beta.gouv.fr/", - "fetchTime": "2024-01-07T17:44:50.206Z", + "fetchTime": "2024-01-14T17:15:15.850Z", "runWarnings": [], "categories": { "performance": { @@ -486941,7 +484218,7 @@ "snapshot" ], "id": "performance", - "score": 0.4978000640869141 + "score": 0.4977882385253906 }, "accessibility": { "title": "Accessibility", @@ -486993,53 +484270,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3799, + "numericValue": 3491, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2931, - "firstMeaningfulPaint": 2931, - "largestContentfulPaint": 3234, - "interactive": 3799, - "speedIndex": 3178, - "totalBlockingTime": 188, - "maxPotentialFID": 187, + "firstContentfulPaint": 3181, + "firstMeaningfulPaint": 3181, + "largestContentfulPaint": 3409, + "interactive": 3491, + "speedIndex": 3743, + "totalBlockingTime": 48, + "maxPotentialFID": 146, "cumulativeLayoutShift": 0.12898750813802085, "cumulativeLayoutShiftMainFrame": 0.12898750813802085, "totalCumulativeLayoutShift": 0.12898750813802085, "observedTimeOrigin": 0, - "observedTimeOriginTs": 282134690, + "observedTimeOriginTs": 262539006, "observedNavigationStart": 0, - "observedNavigationStartTs": 282134690, - "observedFirstPaint": 943, - "observedFirstPaintTs": 283078157, - "observedFirstContentfulPaint": 943, - "observedFirstContentfulPaintTs": 283078157, - "observedFirstContentfulPaintAllFrames": 943, - "observedFirstContentfulPaintAllFramesTs": 283078157, - "observedFirstMeaningfulPaint": 943, - "observedFirstMeaningfulPaintTs": 283078157, - "observedLargestContentfulPaint": 943, - "observedLargestContentfulPaintTs": 283078157, - "observedLargestContentfulPaintAllFrames": 943, - "observedLargestContentfulPaintAllFramesTs": 283078157, - "observedTraceEnd": 4865, - "observedTraceEndTs": 286999827, - "observedLoad": 1643, - "observedLoadTs": 283777256, - "observedDomContentLoaded": 984, - "observedDomContentLoadedTs": 283118300, + "observedNavigationStartTs": 262539006, + "observedFirstPaint": 1303, + "observedFirstPaintTs": 263841964, + "observedFirstContentfulPaint": 1303, + "observedFirstContentfulPaintTs": 263841964, + "observedFirstContentfulPaintAllFrames": 1303, + "observedFirstContentfulPaintAllFramesTs": 263841964, + "observedFirstMeaningfulPaint": 1303, + "observedFirstMeaningfulPaintTs": 263841964, + "observedLargestContentfulPaint": 1303, + "observedLargestContentfulPaintTs": 263841964, + "observedLargestContentfulPaintAllFrames": 1303, + "observedLargestContentfulPaintAllFramesTs": 263841964, + "observedTraceEnd": 4752, + "observedTraceEndTs": 267290827, + "observedLoad": 2443, + "observedLoadTs": 264982163, + "observedDomContentLoaded": 1345, + "observedDomContentLoadedTs": 263884387, "observedCumulativeLayoutShift": 0.12898750813802085, "observedCumulativeLayoutShiftMainFrame": 0.12898750813802085, "observedTotalCumulativeLayoutShift": 0.12898750813802085, - "observedFirstVisualChange": 937, - "observedFirstVisualChangeTs": 283071690, - "observedLastVisualChange": 1553, - "observedLastVisualChangeTs": 283687690, - "observedSpeedIndex": 947, - "observedSpeedIndexTs": 283081510 + "observedFirstVisualChange": 1300, + "observedFirstVisualChangeTs": 263839006, + "observedLastVisualChange": 1917, + "observedLastVisualChangeTs": 264456006, + "observedSpeedIndex": 1312, + "observedSpeedIndexTs": 263850946 }, { "lcpInvalidated": false @@ -487057,23 +484334,23 @@ "type": "debugdata", "items": [ { - "numRequests": 64, + "numRequests": 63, "numScripts": 10, "numStylesheets": 6, "numFonts": 4, - "numTasks": 1466, - "numTasksOver10ms": 7, - "numTasksOver25ms": 4, - "numTasksOver50ms": 0, + "numTasks": 1554, + "numTasksOver10ms": 4, + "numTasksOver25ms": 3, + "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 99.384, - "throughput": 12080079.196070934, - "maxRtt": 100.62400000000001, - "maxServerLatency": 211.19699999999995, - "totalByteWeight": 1060110, - "totalTaskTime": 417.6589999999974, - "mainDocumentTransferSize": 8311 + "rtt": 147.174, + "throughput": 9392723.813443484, + "maxRtt": 148.74999999999997, + "maxServerLatency": 304.611, + "totalByteWeight": 1060172, + "totalTaskTime": 364.03599999999483, + "mainDocumentTransferSize": 8324 } ] } @@ -487170,7 +484447,7 @@ "cookiesCount": 1, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.4978000640869141, + "lighthouse_performance": 0.4977882385253906, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -487199,7 +484476,7 @@ "http": { "url": "https://rdv-insertion.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 17:52:02 GMT", + "end_time": "Sun, 14 Jan 2024 17:28:16 GMT", "grade": "B-", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -487208,24 +484485,24 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 17:52:01 GMT", - "ETag": "W/\"6173f81bfc8a182171ea759156a10118\"", + "Date": "Sun, 14 Jan 2024 17:28:15 GMT", + "ETag": "W/\"2c3fda4031b533b9108a7071894214d2\"", "Referrer-Policy": "strict-origin-when-cross-origin", - "Set-Cookie": "_rdv_insertion_session=zV8%2BOU2wIYPtYJ2EEwoPWKhrnVzZY%2BJqbR1gtldtDo5VNB6uOTGrDQNuX7qCPFXV9xcbviwWdqT%2BpGnQwOD4F%2F5KUOiC9DdS4IUujyIqW5i4t4h%2FZ6NZcAyX3V%2BCsa7rrhRCM78cxxKLFxvav8WNLuHhHusZukVb3DPu4m%2BMmXLAt6HWnGzXk%2BQZIl7PU%2BDkUmfd%2F92i7PxawD%2FYMWU0kTmgPWHeBshL9zDOGVuGQEwsRB9lz6Zdsy%2BOpDd%2Fwh2UE6ew7hWGDPZUzUnuqmkzMu6WCjnqg09hQZKcTIS1--292Tr2S8dXL15ss8--2%2BjWgY%2F87Ru6EWtgBsE%2FQA%3D%3D; path=/; HttpOnly", + "Set-Cookie": "_rdv_insertion_session=peJHkFnlbAPQn%2FXasnOYU9%2BKiqy6F9tSwvou25c9myrqECD4MrMeMoP7UcI10TqOUpW3GaH4%2F%2FSqyocduGpfJMKXLACJPXC2X0zpMn95EL0rHrqnUdEdhTtDdl45i%2B1n%2B7JtkO%2Bd3%2Fysz2V9ZIofEML3e6Xfg6CvxqL7BERmoe9cgHsVvor%2F8jlc%2BqxSQaj4f09qMzgLU0QbVQHEeRIPca%2Bak6OArC9emi4LcO2AkkUvmbr4EsAC5pQ26H9gBvlj7LxHnAKSPX%2BxsBfG8L9Zg6NVRj69GTbGu0%2F6xK8C--H5wMRu1E6Mx2QZim--Q1kr2aR%2BQ6qrUhrMdM38qA%3D%3D; path=/; HttpOnly", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "50bfddd2-bef8-4461-957c-43b07add89c5, 50bfddd2-bef8-4461-957c-43b07add89c5", - "X-Runtime": "0.010913", + "X-Request-ID": "eded74fd-1d35-4470-a297-ae123a362e27, eded74fd-1d35-4470-a297-ae123a362e27", + "X-Runtime": "0.013970", "X-XSS-Protection": "1; mode=block", "vary": "Accept, Origin" }, - "scan_id": 46236795, + "scan_id": 46492798, "score": 65, - "start_time": "Sun, 07 Jan 2024 17:51:58 GMT", + "start_time": "Sun, 14 Jan 2024 17:28:12 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -487430,77 +484707,77 @@ "testssl": [ { "id": "service", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -487508,7 +484785,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -487516,7 +484793,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -487524,7 +484801,7 @@ }, { "id": "cipherlist_LOW", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -487532,7 +484809,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -487540,7 +484817,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -487548,539 +484825,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-11-19 10:17" }, { "id": "cert_notAfter", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-02-17 10:17" }, { "id": "cert_extlifeSpan", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704650017" + "finding": "1705253400" }, { "id": "HSTS_time", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -488088,7 +485365,7 @@ }, { "id": "heartbleed", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -488097,7 +485374,7 @@ }, { "id": "CCS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -488106,7 +485383,7 @@ }, { "id": "ticketbleed", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -488115,7 +485392,7 @@ }, { "id": "ROBOT", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -488124,7 +485401,7 @@ }, { "id": "secure_renego", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -488132,7 +485409,7 @@ }, { "id": "secure_client_renego", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -488141,7 +485418,7 @@ }, { "id": "CRIME_TLS", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -488150,7 +485427,7 @@ }, { "id": "BREACH", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -488159,7 +485436,7 @@ }, { "id": "POODLE_SSL", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -488168,14 +485445,14 @@ }, { "id": "fallback_SCSV", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -488184,7 +485461,7 @@ }, { "id": "FREAK", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -488193,7 +485470,7 @@ }, { "id": "DROWN", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -488202,7 +485479,7 @@ }, { "id": "DROWN_hint", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -488211,7 +485488,7 @@ }, { "id": "LOGJAM", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -488220,7 +485497,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -488229,7 +485506,7 @@ }, { "id": "BEAST", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -488238,7 +485515,7 @@ }, { "id": "LUCKY13", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -488247,7 +485524,7 @@ }, { "id": "winshock", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -488256,7 +485533,7 @@ }, { "id": "RC4", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -488265,392 +485542,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "rdv-insertion.fr/185.21.194.105", + "ip": "rdv-insertion.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488658,7 +485935,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488666,7 +485943,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488674,7 +485951,7 @@ }, { "id": "cipherlist_LOW", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -488682,7 +485959,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -488690,7 +485967,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -488698,539 +485975,539 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "33 >= 30 days" }, { "id": "cert_notBefore", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-19 10:17" }, { "id": "cert_notAfter", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-02-17 10:17" }, { "id": "cert_extlifeSpan", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704650071" + "finding": "1705253460" }, { "id": "HSTS_time", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (1) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "1; mode=block" }, { "id": "Referrer-Policy", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age=0, private, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -489238,7 +486515,7 @@ }, { "id": "heartbleed", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -489247,7 +486524,7 @@ }, { "id": "CCS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -489256,7 +486533,7 @@ }, { "id": "ticketbleed", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -489265,7 +486542,7 @@ }, { "id": "ROBOT", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -489274,7 +486551,7 @@ }, { "id": "secure_renego", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -489282,7 +486559,7 @@ }, { "id": "secure_client_renego", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -489291,7 +486568,7 @@ }, { "id": "CRIME_TLS", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -489300,7 +486577,7 @@ }, { "id": "BREACH", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -489309,7 +486586,7 @@ }, { "id": "POODLE_SSL", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -489318,14 +486595,14 @@ }, { "id": "fallback_SCSV", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -489334,7 +486611,7 @@ }, { "id": "FREAK", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -489343,7 +486620,7 @@ }, { "id": "DROWN", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -489352,7 +486629,7 @@ }, { "id": "DROWN_hint", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -489361,7 +486638,7 @@ }, { "id": "LOGJAM", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -489370,7 +486647,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -489379,7 +486656,7 @@ }, { "id": "BEAST", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -489388,7 +486665,7 @@ }, { "id": "LUCKY13", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -489397,7 +486674,7 @@ }, { "id": "winshock", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -489406,7 +486683,7 @@ }, { "id": "RC4", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -489415,336 +486692,336 @@ }, { "id": "clientsimulation-android_60", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "rdv-insertion.fr/148.253.96.193", + "ip": "rdv-insertion.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "113" + "finding": "121" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://www.rdv-insertion.fr/packs/css/application-41b3dd8e.css" + "url": "https://www.rdv-insertion.fr/packs/css/application-12bcb341.css" }, { "type": "unknown", - "url": "https://www.rdv-insertion.fr/packs/js/application-230ed7546a1df05c96a1.js" + "url": "https://www.rdv-insertion.fr/packs/js/application-c04a5de63fd44477401b.js" }, { "type": "unknown", @@ -489800,11 +487077,11 @@ }, { "type": "unknown", - "url": "https://www.rdv-insertion.fr/packs/css/application-41b3dd8e.css" + "url": "https://sentry.incubateur.net/api/16/envelope/?sentry_key=2ef3f1dac86649e7ae0a2e11301e1a9a&sentry_version=7" }, { "type": "unknown", - "url": "https://sentry.incubateur.net/api/16/envelope/?sentry_key=2ef3f1dac86649e7ae0a2e11301e1a9a&sentry_version=7" + "url": "https://www.rdv-insertion.fr/packs/css/application-12bcb341.css" } ], "cookies": [ @@ -489813,7 +487090,7 @@ "value": "1", "domain": "rdv-insertion.fr", "path": "/", - "expires": 1704651755, + "expires": 1705255133, "size": 17, "httpOnly": false, "secure": false, @@ -489825,10 +487102,10 @@ }, { "name": "_pk_id.214.9398", - "value": "1bd6b26fbacc4932.1704649956.", + "value": "bfa72e7fb42a5c38.1705253334.", "domain": "rdv-insertion.fr", "path": "/", - "expires": 1738605156, + "expires": 1739208534, "size": 43, "httpOnly": false, "secure": false, @@ -489840,11 +487117,11 @@ }, { "name": "_rdv_insertion_session", - "value": "UwxFlGcFdNz7WFVO0tv9KhOuEpBnJNbXU1EZI%2BnmUe0f0dEDclF8IPvDQmCsP7uiKuRpssCNJ9238lHzcEzpRJfs%2BvEi0k%2FNYJ1VSXL%2FXustmEPwhdrAe33j0wjKDIUlPwUolNwJi3bFCeSFvm%2FB3qkEFy7kgUJjnk4AvZbsg%2BsCoIxFnkzCf36MwYtKPRxjZzYVAH%2BJERrKpGEyMKgW8qnL6vAiQ1r1joAqtwiWSplP6vGWF%2B2ERQ9JuxiFJiz2zvicDKb%2F2x4T%2Bl4kJcSL%2FlTn1wHC3eOpKHaAT9gz--ttMPdCKTj75CKwUL--ur6XuR9eY16rptlGh7XR8g%3D%3D", + "value": "9YmHIWcDfCLZmgEc16uKXKS%2BLRuB1gMXF1UUZ%2BMUK19pp8ZNLm8Ru6hJwO9olbCM93KnTIzUusADSj7zsuzdULexpKD15QGdTEeDRVt2aaKw4VcN1oXnm8G0ybJfmLniJBtkwrpxe6SoNpI%2BDrTX%2BtIYW9dymYvcqR%2BKtXDfimEpmERrxIsSjyub1QhOisVBmxwBgoFk7nGo7kV4awauLvMU8kEXvcwJSLMoDIstJ7%2FxAcRRCNKNkOnxBlb2ml79XDir7quGv4KFuoIoWtvsBfbNFjWaZL2AqOI%2Fb4xQ--1q4NX6eKihcfyGhm--XKsahU7aSHQA%2BkzR7SPl7A%3D%3D", "domain": "rdv-insertion.fr", "path": "/", "expires": -1, - "size": 388, + "size": 382, "httpOnly": true, "secure": false, "session": true, @@ -489857,18 +487134,18 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 17:52:34 GMT", - "etag": "W/\"6ee177d08ba8d115493530f1ec3f63ea\"", + "date": "Sun, 14 Jan 2024 17:28:51 GMT", + "etag": "W/\"96d720dbce242d1907537dbb2823bede\"", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_rdv_insertion_session=UwxFlGcFdNz7WFVO0tv9KhOuEpBnJNbXU1EZI%2BnmUe0f0dEDclF8IPvDQmCsP7uiKuRpssCNJ9238lHzcEzpRJfs%2BvEi0k%2FNYJ1VSXL%2FXustmEPwhdrAe33j0wjKDIUlPwUolNwJi3bFCeSFvm%2FB3qkEFy7kgUJjnk4AvZbsg%2BsCoIxFnkzCf36MwYtKPRxjZzYVAH%2BJERrKpGEyMKgW8qnL6vAiQ1r1joAqtwiWSplP6vGWF%2B2ERQ9JuxiFJiz2zvicDKb%2F2x4T%2Bl4kJcSL%2FlTn1wHC3eOpKHaAT9gz--ttMPdCKTj75CKwUL--ur6XuR9eY16rptlGh7XR8g%3D%3D; path=/; HttpOnly", + "set-cookie": "_rdv_insertion_session=9YmHIWcDfCLZmgEc16uKXKS%2BLRuB1gMXF1UUZ%2BMUK19pp8ZNLm8Ru6hJwO9olbCM93KnTIzUusADSj7zsuzdULexpKD15QGdTEeDRVt2aaKw4VcN1oXnm8G0ybJfmLniJBtkwrpxe6SoNpI%2BDrTX%2BtIYW9dymYvcqR%2BKtXDfimEpmERrxIsSjyub1QhOisVBmxwBgoFk7nGo7kV4awauLvMU8kEXvcwJSLMoDIstJ7%2FxAcRRCNKNkOnxBlb2ml79XDir7quGv4KFuoIoWtvsBfbNFjWaZL2AqOI%2Fb4xQ--1q4NX6eKihcfyGhm--XKsahU7aSHQA%2BkzR7SPl7A%3D%3D; path=/; HttpOnly", "strict-transport-security": "max-age=31536000", "vary": "Origin", "x-content-type-options": "nosniff", "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "457f0360-287d-4637-8da5-05ebde8de2fc\n457f0360-287d-4637-8da5-05ebde8de2fc", - "x-runtime": "0.013505", + "x-request-id": "95833f22-cb07-434c-ac32-bd1f6956de3f\n95833f22-cb07-434c-ac32-bd1f6956de3f", + "x-runtime": "0.020482", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -489930,7 +487207,7 @@ }, { "hostname": "www.rdv-insertion.fr", - "ip": "185.21.194.105", + "ip": "148.253.96.193", "geoip": { "continent": { "code": "EU", @@ -489986,7 +487263,7 @@ }, { "hostname": "github-production-user-asset-6210df.s3.amazonaws.com", - "ip": "52.217.227.57", + "ip": "52.217.103.12", "geoip": { "city": { "geoname_id": 4744870, @@ -490013,7 +487290,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -490037,7 +487314,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -490119,7 +487396,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -490414,7 +487691,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 17:51:32", + "@generated": "Sun, 14 Jan 2024 17:27:47", "site": [ { "@name": "https://rdv-insertion.fr", @@ -490568,22 +487845,23 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/dnssec-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dnssec-detection", + "template-id": "dnssec-detection", + "template-path": "/home/runner/nuclei-templates/dns/dnssec-detection.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "DNSSEC Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "dnssec" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "Domain Name System Security Extensions (DNSSEC) are enabled. The Delegation of Signing (DS) record provides information about a signed zone file when DNSSEC enabled.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.icann.org/resources/pages/dnssec-what-is-it-why-important-2019-03-05-en", + "https://www.cyberciti.biz/faq/unix-linux-test-and-validate-dnssec-using-dig-command-line/" ], "severity": "info", "metadata": { @@ -490599,14 +487877,7 @@ "type": "dns", "host": "rdv-insertion.fr.", "matched-at": "rdv-insertion.fr", - "extracted-results": [ - "\"google-site-verification=5c-bH2RgJsjwcmF5pPbaIRvRN2BDuxzRyxvfIjO4LIo\"", - "\"v=spf1 mx include:spf.sendinblue.com ~all\"", - "\"Sendinblue-code:8a7575490e676f56fad614fdf8a16cda\"", - "\"4|https://www.rdv-insertion.fr\"", - "\"v=spf1 include:mx.ovh.com ~all\"" - ], - "timestamp": "2024-01-07T17:55:57.304337518Z", + "timestamp": "2024-01-14T17:32:29.490152303Z", "matcher-status": true }, { @@ -490641,43 +487912,7 @@ "type": "dns", "host": "rdv-insertion.fr.", "matched-at": "rdv-insertion.fr", - "timestamp": "2024-01-07T17:55:57.30509929Z", - "matcher-status": true - }, - { - "template": "dns/dnssec-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dnssec-detection", - "template-id": "dnssec-detection", - "template-path": "/home/runner/nuclei-templates/dns/dnssec-detection.yaml", - "info": { - "name": "DNSSEC Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "dnssec" - ], - "description": "Domain Name System Security Extensions (DNSSEC) are enabled. The Delegation of Signing (DS) record provides information about a signed zone file when DNSSEC enabled.", - "reference": [ - "https://www.icann.org/resources/pages/dnssec-what-is-it-why-important-2019-03-05-en", - "https://www.cyberciti.biz/faq/unix-linux-test-and-validate-dnssec-using-dig-command-line/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "rdv-insertion.fr.", - "matched-at": "rdv-insertion.fr", - "timestamp": "2024-01-07T17:55:58.136733566Z", + "timestamp": "2024-01-14T17:32:29.59981976Z", "matcher-status": true }, { @@ -490713,7 +487948,7 @@ "ns106.ovh.net.", "dns106.ovh.net." ], - "timestamp": "2024-01-07T17:55:58.293034591Z", + "timestamp": "2024-01-14T17:32:30.623808243Z", "matcher-status": true }, { @@ -490750,50 +487985,53 @@ "host": "rdv-insertion.fr.", "matched-at": "rdv-insertion.fr", "extracted-results": [ - "100 mx3.mail.ovh.net.", "1 mx1.mail.ovh.net.", - "5 mx2.mail.ovh.net." + "5 mx2.mail.ovh.net.", + "100 mx3.mail.ovh.net." ], - "timestamp": "2024-01-07T17:55:58.305000665Z", + "timestamp": "2024-01-14T17:32:30.632076918Z", "matcher-status": true }, { - "template": "http/misconfiguration/httponly-cookie-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/httponly-cookie-detect", - "template-id": "httponly-cookie-detect", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/httponly-cookie-detect.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "HttpOnly Cookie - Detect", + "name": "DNS TXT Record Detected", "author": [ - "mr. bobo hp" + "pdteam" ], "tags": [ - "misconfig", - "http", - "cookie", - "generic" + "dns", + "txt" ], - "description": "Checks whether cookies in the HTTP response contain the HttpOnly attribute. If the HttpOnly flag is set, it means that the cookie is HTTP-only\n", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://stackoverflow.com/questions/4316539/how-do-i-test-httponly-cookie-flag" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { - "max-request": 1, - "verified": true + "max-request": 1 }, "classification": { "cve-id": null, - "cwe-id": null, - "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + "cwe-id": [ + "cwe-200" + ] } }, - "type": "http", - "host": "https://rdv-insertion.fr", - "matched-at": "https://rdv-insertion.fr", - "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:08.918074221Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", + "type": "dns", + "host": "rdv-insertion.fr.", + "matched-at": "rdv-insertion.fr", + "extracted-results": [ + "\"4|https://www.rdv-insertion.fr\"", + "\"v=spf1 include:mx.ovh.com ~all\"", + "\"v=spf1 mx include:spf.sendinblue.com ~all\"", + "\"Sendinblue-code:8a7575490e676f56fad614fdf8a16cda\"", + "\"google-site-verification=5c-bH2RgJsjwcmF5pPbaIRvRN2BDuxzRyxvfIjO4LIo\"" + ], + "timestamp": "2024-01-14T17:32:30.689844659Z", "matcher-status": true }, { @@ -490833,7 +488071,7 @@ "1; mode=block" ], "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:08.926662133Z", + "timestamp": "2024-01-14T17:32:43.470857305Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -490871,7 +488109,7 @@ "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:32.194105428Z", + "timestamp": "2024-01-14T17:33:10.905798446Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -490909,7 +488147,7 @@ "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:32.194153918Z", + "timestamp": "2024-01-14T17:33:10.905860392Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -490941,12 +488179,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:40.884086813Z", + "timestamp": "2024-01-14T17:33:21.59664064Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -490978,12 +488216,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:40.884125094Z", + "timestamp": "2024-01-14T17:33:21.59668323Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491015,12 +488253,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:40.884136425Z", + "timestamp": "2024-01-14T17:33:21.596694431Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491052,12 +488290,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:40.884151232Z", + "timestamp": "2024-01-14T17:33:21.596708908Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491089,12 +488327,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:40.884167543Z", + "timestamp": "2024-01-14T17:33:21.596723145Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491126,12 +488364,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr", "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:40.88418208Z", + "timestamp": "2024-01-14T17:33:21.596737292Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr'", "matcher-status": true }, @@ -491169,15 +488407,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "registrantOrg", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "active" + "" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T17:56:51.136070716Z", + "timestamp": "2024-01-14T17:33:34.425752976Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491215,15 +488453,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "nameServers", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "2021-07-06T15:47:47Z" + "ns106.ovh.net", + "dns106.ovh.net" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T17:56:51.136118114Z", + "timestamp": "2024-01-14T17:33:34.425799814Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491261,15 +488500,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrationDate", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "2023-05-27T20:47:10.173177Z" + "2021-07-06T15:47:47Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T17:56:51.136133884Z", + "timestamp": "2024-01-14T17:33:34.425817197Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491307,15 +488546,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "Ano Nymous" + "2023-05-27T20:47:10.173177Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T17:56:51.136151276Z", + "timestamp": "2024-01-14T17:33:34.425835201Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491361,7 +488600,7 @@ "2025-07-06T15:47:47Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T17:56:51.13616441Z", + "timestamp": "2024-01-14T17:33:34.425853154Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491399,15 +488638,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "secureDNS", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "" + "true" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T17:56:51.136178346Z", + "timestamp": "2024-01-14T17:33:34.425867471Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491445,15 +488684,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "status", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "" + "active" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T17:56:51.136192472Z", + "timestamp": "2024-01-14T17:33:34.425880837Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491491,16 +488730,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantName", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "ns106.ovh.net", - "dns106.ovh.net" + "Ano Nymous" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T17:56:51.136210405Z", + "timestamp": "2024-01-14T17:33:34.425894182Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491538,15 +488776,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantCountry", "type": "http", "host": "https://rdv-insertion.fr", "matched-at": "https://rdap.nic.fr/domain/rdv-insertion.fr", "extracted-results": [ - "true" + "" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T17:56:51.136232346Z", + "timestamp": "2024-01-14T17:33:34.425907957Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/rdv-insertion.fr'", "matcher-status": true }, @@ -491580,10 +488818,10 @@ "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr/", "extracted-results": [ - "https://www.rdv-insertion.fr/packs/js/application-230ed7546a1df05c96a1.js" + "https://www.rdv-insertion.fr/packs/js/application-c04a5de63fd44477401b.js" ], "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:56:56.44297096Z", + "timestamp": "2024-01-14T17:33:40.62018843Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: rdv-insertion.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr/'", "matcher-status": true }, @@ -491623,7 +488861,7 @@ "host": "https://rdv-insertion.fr", "matched-at": "https://rdv-insertion.fr/", "ip": "148.253.96.193", - "timestamp": "2024-01-07T17:57:03.699901825Z", + "timestamp": "2024-01-14T17:33:49.277697726Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: rdv-insertion.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://rdv-insertion.fr/'", "matcher-status": true }, @@ -491654,7 +488892,7 @@ "Let's Encrypt" ], "ip": "148.253.96.193", - "timestamp": "2024-01-07T18:00:03.469957487Z", + "timestamp": "2024-01-14T17:36:53.186838495Z", "matcher-status": true }, { @@ -491684,7 +488922,7 @@ "rdv-insertion.fr" ], "ip": "148.253.96.193", - "timestamp": "2024-01-07T18:00:03.470086156Z", + "timestamp": "2024-01-14T17:36:53.186982877Z", "matcher-status": true }, { @@ -491715,7 +488953,7 @@ "tls12" ], "ip": "148.253.96.193", - "timestamp": "2024-01-07T18:00:04.910323318Z", + "timestamp": "2024-01-14T17:36:54.955053958Z", "matcher-status": true }, { @@ -491746,7 +488984,7 @@ "tls13" ], "ip": "148.253.96.193", - "timestamp": "2024-01-07T18:00:05.120319411Z", + "timestamp": "2024-01-14T17:36:55.174867453Z", "matcher-status": true } ], @@ -491754,7 +488992,7 @@ { "requestedUrl": "https://rdv-insertion.fr/", "finalUrl": "https://rdv-insertion.fr/", - "fetchTime": "2024-01-07T17:51:46.317Z", + "fetchTime": "2024-01-14T17:28:01.158Z", "runWarnings": [], "categories": { "performance": { @@ -491817,53 +489055,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6153, + "numericValue": 6183, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4138, - "firstMeaningfulPaint": 4886, - "largestContentfulPaint": 6457, - "interactive": 6153, - "speedIndex": 4324, - "totalBlockingTime": 172, - "maxPotentialFID": 168, + "firstContentfulPaint": 4356, + "firstMeaningfulPaint": 5153, + "largestContentfulPaint": 6669, + "interactive": 6183, + "speedIndex": 4737, + "totalBlockingTime": 129, + "maxPotentialFID": 139, "cumulativeLayoutShift": 0.00023618570963541668, "cumulativeLayoutShiftMainFrame": 0.00023618570963541668, "totalCumulativeLayoutShift": 0.00023618570963541668, "observedTimeOrigin": 0, - "observedTimeOriginTs": 347091575, + "observedTimeOriginTs": 182625102, "observedNavigationStart": 0, - "observedNavigationStartTs": 347091575, - "observedFirstPaint": 1055, - "observedFirstPaintTs": 348146598, - "observedFirstContentfulPaint": 1055, - "observedFirstContentfulPaintTs": 348146598, - "observedFirstContentfulPaintAllFrames": 1055, - "observedFirstContentfulPaintAllFramesTs": 348146598, - "observedFirstMeaningfulPaint": 1556, - "observedFirstMeaningfulPaintTs": 348647767, - "observedLargestContentfulPaint": 1556, - "observedLargestContentfulPaintTs": 348647767, - "observedLargestContentfulPaintAllFrames": 1556, - "observedLargestContentfulPaintAllFramesTs": 348647767, - "observedTraceEnd": 4645, - "observedTraceEndTs": 351736726, - "observedLoad": 1617, - "observedLoadTs": 348708124, - "observedDomContentLoaded": 1058, - "observedDomContentLoadedTs": 348149584, + "observedNavigationStartTs": 182625102, + "observedFirstPaint": 1256, + "observedFirstPaintTs": 183880710, + "observedFirstContentfulPaint": 1256, + "observedFirstContentfulPaintTs": 183880710, + "observedFirstContentfulPaintAllFrames": 1256, + "observedFirstContentfulPaintAllFramesTs": 183880710, + "observedFirstMeaningfulPaint": 1892, + "observedFirstMeaningfulPaintTs": 184516880, + "observedLargestContentfulPaint": 1892, + "observedLargestContentfulPaintTs": 184516880, + "observedLargestContentfulPaintAllFrames": 1892, + "observedLargestContentfulPaintAllFramesTs": 184516880, + "observedTraceEnd": 4308, + "observedTraceEndTs": 186933233, + "observedLoad": 1880, + "observedLoadTs": 184505413, + "observedDomContentLoaded": 1269, + "observedDomContentLoadedTs": 183894518, "observedCumulativeLayoutShift": 0.00023618570963541668, "observedCumulativeLayoutShiftMainFrame": 0.00023618570963541668, "observedTotalCumulativeLayoutShift": 0.00023618570963541668, - "observedFirstVisualChange": 1061, - "observedFirstVisualChangeTs": 348152575, - "observedLastVisualChange": 1561, - "observedLastVisualChangeTs": 348652575, - "observedSpeedIndex": 1206, - "observedSpeedIndexTs": 348297734 + "observedFirstVisualChange": 1267, + "observedFirstVisualChangeTs": 183892102, + "observedLastVisualChange": 1900, + "observedLastVisualChangeTs": 184525102, + "observedSpeedIndex": 1451, + "observedSpeedIndexTs": 184076303 }, { "lcpInvalidated": false @@ -491885,19 +489123,19 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 2, - "numTasks": 770, - "numTasksOver10ms": 9, + "numTasks": 760, + "numTasksOver10ms": 5, "numTasksOver25ms": 2, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 6.595999999999998, - "throughput": 9339502.747652283, - "maxRtt": 84.855, - "maxServerLatency": 102.094, - "totalByteWeight": 961622, - "totalTaskTime": 276.15599999999796, - "mainDocumentTransferSize": 4309 + "rtt": 17.028999999999996, + "throughput": 10107166.912046326, + "maxRtt": 100.703, + "maxServerLatency": 99.94500000000002, + "totalByteWeight": 984591, + "totalTaskTime": 220.6149999999977, + "mainDocumentTransferSize": 4321 } ] } @@ -491990,7 +489228,7 @@ "http": { "url": "https://metiers.numerique.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 17:58:00 GMT", + "end_time": "Sun, 14 Jan 2024 17:35:04 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -491999,19 +489237,19 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 17:57:57 GMT", + "Date": "Sun, 14 Jan 2024 17:35:02 GMT", "ETag": "\"ad04-45PolNXOe/X0AWkUe+kqtWoLfso\"", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Frame-Options": "DENY", "X-Powered-By": "Next.js", - "X-Request-ID": "ba8e5743-2f49-4421-8eb7-c5e0e5711a85", - "x-nextjs-cache": "HIT" + "X-Request-ID": "e0e063cb-1f37-4a1a-aaa9-221503761f5c", + "x-nextjs-cache": "STALE" }, - "scan_id": 46236846, + "scan_id": 46493099, "score": 60, - "start_time": "Sun, 07 Jan 2024 17:57:54 GMT", + "start_time": "Sun, 14 Jan 2024 17:33:04 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -492197,8 +489435,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T17:43:56Z", - "next_check_at": "2024-01-07T18:43:49Z", + "last_check_at": "2024-01-14T16:53:16Z", + "next_check_at": "2024-01-14T17:53:13Z", "created_at": "2021-12-10T12:58:55Z", "mute_until": null, "favicon_url": "https://metiers.numerique.gouv.fr/favicons/favicon.ico", @@ -492206,7 +489444,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T15:44:47Z", + "tested_at": "2024-01-14T16:53:17Z", "expires_at": "2024-02-22T06:36:10Z", "valid": true, "error": null @@ -492241,77 +489479,77 @@ "testssl": [ { "id": "service", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -492319,7 +489557,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -492327,7 +489565,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -492335,7 +489573,7 @@ }, { "id": "cipherlist_LOW", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -492343,7 +489581,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -492351,7 +489589,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -492359,504 +489597,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-11-24 06:36" }, { "id": "cert_notAfter", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-02-22 06:36" }, { "id": "cert_extlifeSpan", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704650381" + "finding": "1705253791" }, { "id": "HSTS_time", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "Cache-Control", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "s-maxage=300, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -492864,7 +490102,7 @@ }, { "id": "heartbleed", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -492873,7 +490111,7 @@ }, { "id": "CCS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -492882,7 +490120,7 @@ }, { "id": "ticketbleed", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -492891,7 +490129,7 @@ }, { "id": "ROBOT", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -492900,7 +490138,7 @@ }, { "id": "secure_renego", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -492908,7 +490146,7 @@ }, { "id": "secure_client_renego", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -492917,7 +490155,7 @@ }, { "id": "CRIME_TLS", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -492926,7 +490164,7 @@ }, { "id": "BREACH", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -492935,7 +490173,7 @@ }, { "id": "POODLE_SSL", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -492944,14 +490182,14 @@ }, { "id": "fallback_SCSV", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -492960,7 +490198,7 @@ }, { "id": "FREAK", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -492969,7 +490207,7 @@ }, { "id": "DROWN", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -492978,7 +490216,7 @@ }, { "id": "DROWN_hint", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -492987,7 +490225,7 @@ }, { "id": "LOGJAM", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -492996,7 +490234,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -493005,7 +490243,7 @@ }, { "id": "BEAST", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -493014,7 +490252,7 @@ }, { "id": "LUCKY13", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -493023,7 +490261,7 @@ }, { "id": "winshock", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -493032,7 +490270,7 @@ }, { "id": "RC4", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -493041,315 +490279,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "metiers.numerique.gouv.fr/80.247.12.255", + "ip": "metiers.numerique.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" @@ -493701,7 +490939,7 @@ "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", @@ -493904,7 +491142,7 @@ "ip": "metiers.numerique.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704650440" + "finding": "1705253849" }, { "id": "HSTS_time", @@ -494471,77 +491709,77 @@ }, { "id": "service", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -494549,7 +491787,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -494557,7 +491795,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -494565,7 +491803,7 @@ }, { "id": "cipherlist_LOW", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -494573,7 +491811,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -494581,7 +491819,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -494589,504 +491827,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-11-24 06:36" }, { "id": "cert_notAfter", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-02-22 06:36" }, { "id": "cert_extlifeSpan", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704650500" + "finding": "1705253907" }, { "id": "HSTS_time", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "Cache-Control", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "s-maxage=300, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -495094,7 +492332,7 @@ }, { "id": "heartbleed", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -495103,7 +492341,7 @@ }, { "id": "CCS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -495112,7 +492350,7 @@ }, { "id": "ticketbleed", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -495121,7 +492359,7 @@ }, { "id": "ROBOT", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -495130,7 +492368,7 @@ }, { "id": "secure_renego", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -495138,7 +492376,7 @@ }, { "id": "secure_client_renego", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -495147,7 +492385,7 @@ }, { "id": "CRIME_TLS", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -495156,7 +492394,7 @@ }, { "id": "BREACH", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -495165,7 +492403,7 @@ }, { "id": "POODLE_SSL", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -495174,14 +492412,14 @@ }, { "id": "fallback_SCSV", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -495190,7 +492428,7 @@ }, { "id": "FREAK", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -495199,7 +492437,7 @@ }, { "id": "DROWN", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -495208,7 +492446,7 @@ }, { "id": "DROWN_hint", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -495217,7 +492455,7 @@ }, { "id": "LOGJAM", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -495226,7 +492464,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -495235,7 +492473,7 @@ }, { "id": "BEAST", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -495244,7 +492482,7 @@ }, { "id": "LUCKY13", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -495253,7 +492491,7 @@ }, { "id": "winshock", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -495262,7 +492500,7 @@ }, { "id": "RC4", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -495271,392 +492509,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "metiers.numerique.gouv.fr/80.247.13.145", + "ip": "metiers.numerique.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -495664,7 +492902,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -495672,7 +492910,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -495680,7 +492918,7 @@ }, { "id": "cipherlist_LOW", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -495688,7 +492926,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -495696,7 +492934,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -495704,504 +492942,504 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-11-24 06:36" }, { "id": "cert_notAfter", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-02-22 06:36" }, { "id": "cert_extlifeSpan", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704650559" + "finding": "1705253965" }, { "id": "HSTS_time", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "Cache-Control", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "s-maxage=300, stale-while-revalidate" }, { "id": "banner_reverseproxy", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -496209,7 +493447,7 @@ }, { "id": "heartbleed", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -496218,7 +493456,7 @@ }, { "id": "CCS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -496227,7 +493465,7 @@ }, { "id": "ticketbleed", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -496236,7 +493474,7 @@ }, { "id": "ROBOT", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -496245,7 +493483,7 @@ }, { "id": "secure_renego", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -496253,7 +493491,7 @@ }, { "id": "secure_client_renego", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -496262,7 +493500,7 @@ }, { "id": "CRIME_TLS", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -496271,7 +493509,7 @@ }, { "id": "BREACH", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -496280,7 +493518,7 @@ }, { "id": "POODLE_SSL", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -496289,14 +493527,14 @@ }, { "id": "fallback_SCSV", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -496305,7 +493543,7 @@ }, { "id": "FREAK", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -496314,7 +493552,7 @@ }, { "id": "DROWN", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -496323,7 +493561,7 @@ }, { "id": "DROWN_hint", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -496332,7 +493570,7 @@ }, { "id": "LOGJAM", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -496341,7 +493579,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -496350,7 +493588,7 @@ }, { "id": "BEAST", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -496359,7 +493597,7 @@ }, { "id": "LUCKY13", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -496368,7 +493606,7 @@ }, { "id": "winshock", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -496377,7 +493615,7 @@ }, { "id": "RC4", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -496386,325 +493624,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "metiers.numerique.gouv.fr/185.21.194.105", + "ip": "metiers.numerique.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "246" + "finding": "234" } ], "thirdparties": { @@ -496731,15 +493969,15 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/3fbfa45d-3642-49fd-8fe8-4f11ae3539bb/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-17-58" + "url": "https://client.crisp.chat/settings/website/3fbfa45d-3642-49fd-8fe8-4f11ae3539bb/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-17-35" }, { "type": "unknown", @@ -496747,16 +493985,16 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/en.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/en.js?e0efffc" } ], "cookies": [ { "name": "_pk_id.191.4581", - "value": "ef74e226dce2631c.1704650313.", + "value": "1585cc95aeaa1f18.1705253727.", "domain": "metiers.numerique.gouv.fr", "path": "/", - "expires": 1738605513, + "expires": 1739208927, "size": 43, "httpOnly": false, "secure": false, @@ -496771,7 +494009,7 @@ "value": "1", "domain": "metiers.numerique.gouv.fr", "path": "/", - "expires": 1704652112, + "expires": 1705255527, "size": 17, "httpOnly": false, "secure": false, @@ -496798,7 +494036,7 @@ }, { "name": "__Host-next-auth.csrf-token", - "value": "360015d2414e08db47b94eea80c66d889a91a96faf99f3274367a9ebe30b55e7%7C1f0335f4ff6501e7e7ea751c3fe361f5e9aa6af980b94c0495758cd8db369cb8", + "value": "677774ff16ac6c1f5a8d378a1246f8503beb7c61e361a945475955d74b6d3a59%7Ca41a6a5b32076250cc8dbf88c1dbb12d8eca83a1ae283db9ce3994a862974885", "domain": "metiers.numerique.gouv.fr", "path": "/", "expires": -1, @@ -496816,14 +494054,14 @@ "cache-control": "s-maxage=300, stale-while-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 17:58:31 GMT", + "date": "Sun, 14 Jan 2024 17:35:26 GMT", "etag": "\"ad04-45PolNXOe/X0AWkUe+kqtWoLfso\"", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-frame-options": "DENY", "x-nextjs-cache": "HIT", "x-powered-by": "Next.js", - "x-request-id": "cbce6ae1-6674-4b09-aee8-7faac0f2c3a5" + "x-request-id": "217f0294-0c25-4788-9992-5b255a9e921b" }, "endpoints": [ { @@ -496884,7 +494122,7 @@ }, { "hostname": "betagouv-metiers-numeriques.s3.eu-west-3.amazonaws.com", - "ip": "16.12.18.30", + "ip": "3.5.225.18", "geoip": { "city": { "geoname_id": 2988507, @@ -496941,7 +494179,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -496960,7 +494198,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -497032,7 +494272,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -497068,47 +494308,13 @@ }, { "hostname": "client.crisp.chat", - "ip": "172.64.153.75", + "ip": "104.18.34.181", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -497367,7 +494573,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 17:57:28", + "@generated": "Sun, 14 Jan 2024 17:32:38", "site": [ { "@name": "https://metiers.numerique.gouv.fr", @@ -497514,6 +494720,13 @@ "confidence": "2", "riskdesc": "Informational (Medium)", "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" + }, + { + "name": "Storable but Non-Cacheable Content", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" } ] } @@ -497521,23 +494734,23 @@ }, "nuclei": [ { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -497547,17 +494760,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "metiers.numerique.gouv.fr.", - "matched-at": "metiers.numerique.gouv.fr", + "matched-at": "_dmarc.metiers.numerique.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T18:04:13.900597307Z", + "timestamp": "2024-01-14T17:40:54.951835867Z", "matcher-status": true }, { @@ -497592,24 +494805,27 @@ "type": "dns", "host": "metiers.numerique.gouv.fr.", "matched-at": "metiers.numerique.gouv.fr", - "timestamp": "2024-01-07T18:04:13.956260323Z", + "timestamp": "2024-01-14T17:40:55.035541615Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -497625,30 +494841,29 @@ "host": "metiers.numerique.gouv.fr.", "matched-at": "metiers.numerique.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2024-01-07T18:04:14.017324329Z", + "timestamp": "2024-01-14T17:40:55.038239826Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -497658,37 +494873,34 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "metiers.numerique.gouv.fr.", - "matched-at": "_dmarc.metiers.numerique.gouv.fr", + "matched-at": "metiers.numerique.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." ], - "timestamp": "2024-01-07T18:04:14.085583916Z", + "timestamp": "2024-01-14T17:40:56.107147102Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -497704,9 +494916,10 @@ "host": "metiers.numerique.gouv.fr.", "matched-at": "metiers.numerique.gouv.fr", "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T18:04:14.79103084Z", + "timestamp": "2024-01-14T17:40:56.114497215Z", "matcher-status": true }, { @@ -497732,11 +494945,11 @@ "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", "extracted-results": [ - "GET", - "HEAD" + "HEAD", + "GET" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:04:22.127794926Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:03.266964788Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497766,8 +494979,8 @@ "extracted-results": [ "tim.berners-lee@w3c.org" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:04:27.599127757Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:08.917119966Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497789,12 +495002,12 @@ "max-request": 1 } }, - "matcher-name": "next.js", + "matcher-name": "react", "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:04:55.649971452Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:37.360206547Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497816,12 +495029,197 @@ "max-request": 1 } }, - "matcher-name": "react", + "matcher-name": "next.js", "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:04:55.650027216Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:37.360259336Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://metiers.numerique.gouv.fr", + "matched-at": "https://metiers.numerique.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:46.621749099Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://metiers.numerique.gouv.fr", + "matched-at": "https://metiers.numerique.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:46.621790617Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://metiers.numerique.gouv.fr", + "matched-at": "https://metiers.numerique.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:46.621801297Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://metiers.numerique.gouv.fr", + "matched-at": "https://metiers.numerique.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:46.621810584Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://metiers.numerique.gouv.fr", + "matched-at": "https://metiers.numerique.gouv.fr", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:46.621822967Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497853,86 +495251,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://metiers.numerique.gouv.fr", - "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:05.50760313Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://metiers.numerique.gouv.fr", - "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:05.50765676Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:05.507671658Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:46.622220432Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -497968,8 +495292,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:05.507685764Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:46.622249878Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -498005,8 +495329,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:05.50772121Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:46.622279523Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -498042,119 +495366,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:05.507737049Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://metiers.numerique.gouv.fr", - "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:05.507757367Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://metiers.numerique.gouv.fr", - "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:05.507771714Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://metiers.numerique.gouv.fr", - "matched-at": "https://metiers.numerique.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:05.507785029Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:41:46.622298048Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr'", "matcher-status": true }, @@ -498188,9 +495401,9 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr/api/graphql", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:21.663124403Z", - "curl-command": "curl -X 'POST' -d '{\"query\":\"query {\\n qusfg1:__typename \\n qusfg2:__typename \\n qusfg3:__typename \\n qusfg4:__typename \\n qusfg5:__typename \\n qusfg6:__typename \\n }\"}' -H 'Content-Type: application/json' -H 'Host: metiers.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr/api/graphql'", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:42:02.662487193Z", + "curl-command": "curl -X 'POST' -d '{\"query\":\"query {\\n tlqhn1:__typename \\n tlqhn2:__typename \\n tlqhn3:__typename \\n tlqhn4:__typename \\n tlqhn5:__typename \\n tlqhn6:__typename \\n }\"}' -H 'Content-Type: application/json' -H 'Host: metiers.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr/api/graphql'", "matcher-status": true }, { @@ -498222,8 +495435,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr/api/graphql", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:21.707179999Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:42:02.675843474Z", "curl-command": "curl -X 'POST' -d '{\"query\":\"query {\\n __schema {\\n directive\\n }\\n}\",\"variables\":null}' -H 'Content-Type: application/json' -H 'Host: metiers.numerique.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr/api/graphql'", "matcher-status": true }, @@ -498256,8 +495469,8 @@ "type": "http", "host": "https://metiers.numerique.gouv.fr", "matched-at": "https://metiers.numerique.gouv.fr/api/graphql?query={__typename}", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:05:21.727986946Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:42:02.677074822Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://metiers.numerique.gouv.fr/api/graphql?query={__typename}'", "matcher-status": true }, @@ -498287,8 +495500,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:11:16.952547704Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:47:57.336006629Z", "matcher-status": true }, { @@ -498317,8 +495530,8 @@ "extracted-results": [ "metiers.numerique.gouv.fr" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:11:16.952675451Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:47:57.336143164Z", "matcher-status": true }, { @@ -498348,8 +495561,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:11:19.143851489Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:47:58.816613116Z", "matcher-status": true }, { @@ -498379,8 +495592,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:11:19.980678378Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T17:47:59.030807024Z", "matcher-status": true } ], @@ -498388,7 +495601,7 @@ { "requestedUrl": "https://metiers.numerique.gouv.fr/", "finalUrl": "https://metiers.numerique.gouv.fr/", - "fetchTime": "2024-01-07T17:57:42.349Z", + "fetchTime": "2024-01-14T17:32:53.152Z", "runWarnings": [], "categories": { "performance": { @@ -498451,53 +495664,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 21793, + "numericValue": 21613, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1907, - "firstMeaningfulPaint": 1907, - "largestContentfulPaint": 2156, - "interactive": 21793, - "speedIndex": 2144, - "totalBlockingTime": 255, - "maxPotentialFID": 668, + "firstContentfulPaint": 1937, + "firstMeaningfulPaint": 1937, + "largestContentfulPaint": 2185, + "interactive": 21613, + "speedIndex": 2135, + "totalBlockingTime": 237, + "maxPotentialFID": 321, "cumulativeLayoutShift": 0.008099200354682074, "cumulativeLayoutShiftMainFrame": 0.008099200354682074, "totalCumulativeLayoutShift": 0.008099200354682074, "observedTimeOrigin": 0, - "observedTimeOriginTs": 1742690475, + "observedTimeOriginTs": 321687826, "observedNavigationStart": 0, - "observedNavigationStartTs": 1742690475, - "observedFirstPaint": 785, - "observedFirstPaintTs": 1743475567, - "observedFirstContentfulPaint": 785, - "observedFirstContentfulPaintTs": 1743475567, - "observedFirstContentfulPaintAllFrames": 785, - "observedFirstContentfulPaintAllFramesTs": 1743475567, - "observedFirstMeaningfulPaint": 785, - "observedFirstMeaningfulPaintTs": 1743475567, - "observedLargestContentfulPaint": 785, - "observedLargestContentfulPaintTs": 1743475567, - "observedLargestContentfulPaintAllFrames": 785, - "observedLargestContentfulPaintAllFramesTs": 1743475567, - "observedTraceEnd": 3819, - "observedTraceEndTs": 1746508998, - "observedLoad": 1510, - "observedLoadTs": 1744200442, - "observedDomContentLoaded": 1064, - "observedDomContentLoadedTs": 1743754014, + "observedNavigationStartTs": 321687826, + "observedFirstPaint": 787, + "observedFirstPaintTs": 322474904, + "observedFirstContentfulPaint": 787, + "observedFirstContentfulPaintTs": 322474904, + "observedFirstContentfulPaintAllFrames": 787, + "observedFirstContentfulPaintAllFramesTs": 322474904, + "observedFirstMeaningfulPaint": 787, + "observedFirstMeaningfulPaintTs": 322474904, + "observedLargestContentfulPaint": 787, + "observedLargestContentfulPaintTs": 322474904, + "observedLargestContentfulPaintAllFrames": 787, + "observedLargestContentfulPaintAllFramesTs": 322474904, + "observedTraceEnd": 3856, + "observedTraceEndTs": 325543489, + "observedLoad": 1530, + "observedLoadTs": 323217424, + "observedDomContentLoaded": 1084, + "observedDomContentLoadedTs": 322771595, "observedCumulativeLayoutShift": 0.008099200354682074, "observedCumulativeLayoutShiftMainFrame": 0.008099200354682074, "observedTotalCumulativeLayoutShift": 0.008099200354682074, - "observedFirstVisualChange": 789, - "observedFirstVisualChangeTs": 1743479475, - "observedLastVisualChange": 1106, - "observedLastVisualChangeTs": 1743796475, - "observedSpeedIndex": 825, - "observedSpeedIndexTs": 1743515090 + "observedFirstVisualChange": 765, + "observedFirstVisualChangeTs": 322452826, + "observedLastVisualChange": 1115, + "observedLastVisualChangeTs": 322802826, + "observedSpeedIndex": 804, + "observedSpeedIndexTs": 322492266 }, { "lcpInvalidated": false @@ -498519,19 +495732,19 @@ "numScripts": 25, "numStylesheets": 3, "numFonts": 4, - "numTasks": 838, - "numTasksOver10ms": 5, - "numTasksOver25ms": 4, - "numTasksOver50ms": 3, + "numTasks": 880, + "numTasksOver10ms": 6, + "numTasksOver25ms": 5, + "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 1.6880000000000002, - "throughput": 53224451.722417004, - "maxRtt": 108.88400000000001, - "maxServerLatency": 111.068, - "totalByteWeight": 6489177, - "totalTaskTime": 505.2439999999995, - "mainDocumentTransferSize": 11502 + "rtt": 2.526, + "throughput": 50371651.3386873, + "maxRtt": 107.00600000000001, + "maxServerLatency": 147.87900000000002, + "totalByteWeight": 6489673, + "totalTaskTime": 493.89699999999897, + "mainDocumentTransferSize": 11501 } ] } @@ -498672,33 +495885,33 @@ "http": { "url": "https://territoiresentransitions.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 18:10:47 GMT", + "end_time": "Sun, 14 Jan 2024 03:42:17 GMT", "grade": "A", - "hidden": false, + "hidden": true, "likelihood_indicator": "LOW", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "841e28b82b83d01d-SJC", + "CF-RAY": "8452de2539d99669-SJC", "Cache-Control": "private, no-cache, no-store, max-age=0, must-revalidate", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 18:10:43 GMT", + "Date": "Sun, 14 Jan 2024 03:42:14 GMT", "Server": "cloudflare", "Transfer-Encoding": "chunked", "alt-svc": "h3=\":443\"; ma=86400", - "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-OWQyZDg4ZjMtZWE2YS00Yzc0LTg2NGMtMmE2YWZkNDhiNWQ0' 'strict-dynamic';; style-src 'self' 'unsafe-inline'; img-src 'self' blob: data: ytimg.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self'; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://localhost:3000; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com; block-all-mixed-content; upgrade-insecure-requests;", + "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-YTAzZTNmZTItNmE4Ny00NzMyLTg2ODktMzA0NmRhYjZjOGU1' 'strict-dynamic';; style-src 'self' 'unsafe-inline'; img-src 'self' blob: data: ytimg.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self'; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://localhost:3000; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com; block-all-mixed-content; upgrade-insecure-requests;", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "x-b3-traceid": "2aa8a180c13a04a1", - "x-envoy-upstream-service-time": "763", + "x-b3-traceid": "b18b599ca0e0b206", + "x-envoy-upstream-service-time": "765", "x-koyeb-backend": "par1", "x-koyeb-glb": "sfo1", "x-powered-by": "Next.js" }, - "scan_id": 46236922, + "scan_id": 46437053, "score": 95, - "start_time": "Sun, 07 Jan 2024 18:10:30 GMT", + "start_time": "Sun, 14 Jan 2024 03:42:10 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -498717,10 +495930,10 @@ "'none'" ], "connect-src": [ - "'self'", - "ws://localhost:3000", + "https://rlarzronkgoyvtdkltqy.supabase.co", "https://phenomenal-trust-ee3da2c906.strapiapp.com", - "https://rlarzronkgoyvtdkltqy.supabase.co" + "'self'", + "ws://localhost:3000" ], "default-src": [ "'self'" @@ -498741,18 +495954,18 @@ "www.youtube.com" ], "img-src": [ - "ytimg.com", - "'self'", - "blob:", + "https://phenomenal-trust-ee3da2c906.media.strapiapp.com", "data:", - "https://phenomenal-trust-ee3da2c906.media.strapiapp.com" + "blob:", + "ytimg.com", + "'self'" ], "object-src": [ "'none'" ], "script-src": [ "'strict-dynamic'", - "'nonce-owqyzdg4zjmtzwe2ys00yzc0ltg2ngmtmme2ywzkndhinwq0'" + "'nonce-ytazztnmztitnme4ny00nzmyltg2odktmza0nmrhyjzjogu1'" ], "style-src": [ "'self'", @@ -499347,7 +496560,7 @@ "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", - "finding": "70 >= 60 days" + "finding": "63 >= 60 days" }, { "id": "cert_notBefore", @@ -499515,7 +496728,7 @@ "ip": "territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "1704651118" + "finding": "1705254384" }, { "id": "HSTS", @@ -500464,7 +497677,7 @@ "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "70 >= 60 days" + "finding": "63 >= 60 days" }, { "id": "cert_notBefore", @@ -500632,7 +497845,7 @@ "ip": "territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "1704651157" + "finding": "1705254422" }, { "id": "HSTS", @@ -501581,7 +498794,7 @@ "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", - "finding": "70 >= 60 days" + "finding": "63 >= 60 days" }, { "id": "cert_notBefore", @@ -501749,7 +498962,7 @@ "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", - "finding": "1704651196" + "finding": "1705254461" }, { "id": "HSTS", @@ -502328,7 +499541,7 @@ "ip": "territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", - "finding": "119" + "finding": "116" } ], "thirdparties": { @@ -502567,16 +499780,16 @@ "alt-svc": "h3=\":443\"; ma=86400", "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "cf-cache-status": "DYNAMIC", - "cf-ray": "841e2947db380949-IAD", + "cf-ray": "8457b189cc261369-IAD", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-MGNlMjBlYWMtYzhiYy00NGZmLWE4MmYtNzUwNDQzMTZmMDE1' 'strict-dynamic';; style-src 'self' 'unsafe-inline'; img-src 'self' blob: data: ytimg.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self'; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://localhost:3000; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com; block-all-mixed-content; upgrade-insecure-requests;", + "content-security-policy": "default-src 'self'; script-src 'self' 'nonce-MDU2MjkyMDYtMTRiMS00OWIxLWIxYjUtYWRlZTc5NjQ4NGE1' 'strict-dynamic';; style-src 'self' 'unsafe-inline'; img-src 'self' blob: data: ytimg.com https://phenomenal-trust-ee3da2c906.media.strapiapp.com; font-src 'self'; object-src 'none'; connect-src 'self' https://rlarzronkgoyvtdkltqy.supabase.co https://phenomenal-trust-ee3da2c906.strapiapp.com ws://localhost:3000; base-uri 'self'; form-action 'self'; frame-ancestors 'none'; frame-src youtube.com www.youtube.com dailymotion.com www.dailymotion.com; block-all-mixed-content; upgrade-insecure-requests;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 18:11:06 GMT", + "date": "Sun, 14 Jan 2024 17:45:35 GMT", "server": "cloudflare", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", - "x-b3-traceid": "d0cea88ee2a0f3e0", - "x-envoy-upstream-service-time": "1153", + "x-b3-traceid": "f4bafab59c078d29", + "x-envoy-upstream-service-time": "279", "x-koyeb-backend": "par1", "x-koyeb-glb": "was1", "x-powered-by": "Next.js" @@ -502584,13 +499797,13 @@ "endpoints": [ { "hostname": "territoiresentransitions.fr", - "ip": "104.22.78.190", + "ip": "104.22.79.190", "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -502610,7 +499823,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -502630,7 +499843,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -502644,13 +499857,47 @@ }, { "hostname": "rlarzronkgoyvtdkltqy.supabase.co", - "ip": "104.18.38.107", + "ip": "172.64.149.149", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -502947,7 +500194,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 18:09:58", + "@generated": "Sun, 14 Jan 2024 17:44:54", "site": [ { "@name": "https://territoiresentransitions.fr", @@ -503059,20 +500306,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -503088,31 +500338,104 @@ "host": "territoiresentransitions.fr.", "matched-at": "territoiresentransitions.fr", "extracted-results": [ - "camilo.ns.cloudflare.com.", - "chelsea.ns.cloudflare.com." + "\"Sendinblue-code:72a393fa3aa006d7e49e420aaadeac02\"", + "\"google-site-verification=j9Cg-2lZW0psadVPHIJP7f3qB8rAmS59jfQ1npXbay4\"", + "\"v=spf1 include:_mailcust.gandi.net ?all\"", + "\"v=spf1 include:spf.sendinblue.com mx ~all\"" ], - "timestamp": "2024-01-07T18:14:13.36577888Z", + "timestamp": "2024-01-14T17:48:38.380789079Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", + "author": [ + "juliosmelo" + ], + "tags": [ + "dns", + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "dns", + "host": "territoiresentransitions.fr.", + "matched-at": "_dmarc.territoiresentransitions.fr", + "extracted-results": [ + "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + ], + "timestamp": "2024-01-14T17:48:38.38227943Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "territoiresentransitions.fr.", + "matched-at": "territoiresentransitions.fr", + "timestamp": "2024-01-14T17:48:38.386507708Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -503128,29 +500451,30 @@ "host": "territoiresentransitions.fr.", "matched-at": "territoiresentransitions.fr", "extracted-results": [ - "10 spool.mail.gandi.net.", - "50 fb.mail.gandi.net." + "camilo.ns.cloudflare.com.", + "chelsea.ns.cloudflare.com." ], - "timestamp": "2024-01-07T18:14:13.36827397Z", + "timestamp": "2024-01-14T17:48:39.377614594Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -503167,12 +500491,10 @@ "host": "territoiresentransitions.fr.", "matched-at": "territoiresentransitions.fr", "extracted-results": [ - "\"v=spf1 include:_mailcust.gandi.net ?all\"", - "\"v=spf1 include:spf.sendinblue.com mx ~all\"", - "\"Sendinblue-code:72a393fa3aa006d7e49e420aaadeac02\"", - "\"google-site-verification=j9Cg-2lZW0psadVPHIJP7f3qB8rAmS59jfQ1npXbay4\"" + "10 spool.mail.gandi.net.", + "50 fb.mail.gandi.net." ], - "timestamp": "2024-01-07T18:14:13.368499151Z", + "timestamp": "2024-01-14T17:48:39.382529307Z", "matcher-status": true }, { @@ -503206,31 +500528,61 @@ "type": "dns", "host": "territoiresentransitions.fr.", "matched-at": "territoiresentransitions.fr", - "timestamp": "2024-01-07T18:14:14.360580099Z", + "timestamp": "2024-01-14T17:48:39.384127893Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "Wappalyzer Technology Detection", "author": [ - "juliosmelo" + "hakluke" ], "tags": [ - "dns", - "dmarc" + "tech" ], - "description": "DNS DMARC information was detected.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cloudflare", + "type": "http", + "host": "https://territoiresentransitions.fr", + "matched-at": "https://territoiresentransitions.fr", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:49:03.511405429Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://territoiresentransitions.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://about.rdap.org/" ], "severity": "info", "metadata": { - "max-request": 1 + "max-request": 1, + "verified": true }, "classification": { "cve-id": null, @@ -503240,75 +500592,108 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "type": "dns", - "host": "territoiresentransitions.fr.", - "matched-at": "_dmarc.territoiresentransitions.fr", + "extractor-name": "status", + "type": "http", + "host": "https://territoiresentransitions.fr", + "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" + "active" ], - "timestamp": "2024-01-07T18:14:14.366129562Z", + "ip": "45.77.228.254", + "timestamp": "2024-01-14T17:49:16.288367692Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", "info": { - "name": "CAA Record", + "name": "RDAP WHOIS", "author": [ - "pdteam" + "ricardomaia", + "sttlr" ], "tags": [ - "dns", - "caa" + "whois", + "rdap", + "osint", + "misc" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://about.rdap.org/" ], "severity": "info", "metadata": { - "max-request": 1 + "max-request": 1, + "verified": true }, "classification": { "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "type": "dns", - "host": "territoiresentransitions.fr.", - "matched-at": "territoiresentransitions.fr", - "timestamp": "2024-01-07T18:14:14.493840315Z", + "extractor-name": "lastChangeDate", + "type": "http", + "host": "https://territoiresentransitions.fr", + "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", + "extracted-results": [ + "2023-12-09T15:31:23.512729Z" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T17:49:16.288415631Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", "info": { - "name": "Wappalyzer Technology Detection", + "name": "RDAP WHOIS", "author": [ - "hakluke" + "ricardomaia", + "sttlr" ], "tags": [ - "tech" + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" ], "severity": "info", "metadata": { - "max-request": 1 + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "matcher-name": "cloudflare", + "extractor-name": "registrantName", "type": "http", "host": "https://territoiresentransitions.fr", - "matched-at": "https://territoiresentransitions.fr", - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:14:38.859176672Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://territoiresentransitions.fr'", + "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", + "extracted-results": [ + "Ano Nymous" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T17:49:16.288428605Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, { @@ -503345,15 +500730,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "registrantOrg", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "2024-12-18T16:38:51Z" + "" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T18:14:51.452399722Z", + "timestamp": "2024-01-14T17:49:16.288439205Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503391,15 +500776,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantCountry", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "false" + "" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T18:14:51.452449685Z", + "timestamp": "2024-01-14T17:49:16.288456798Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503437,15 +500822,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "secureDNS", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "active" + "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T18:14:51.452469201Z", + "timestamp": "2024-01-14T17:49:16.288471886Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503491,145 +500876,7 @@ "2020-12-18T16:38:51Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T18:14:51.452484941Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "lastChangeDate", - "type": "http", - "host": "https://territoiresentransitions.fr", - "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", - "extracted-results": [ - "2023-12-09T15:31:23.512729Z" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T18:14:51.452498927Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantName", - "type": "http", - "host": "https://territoiresentransitions.fr", - "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", - "extracted-results": [ - "Ano Nymous" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T18:14:51.452512622Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrantOrg", - "type": "http", - "host": "https://territoiresentransitions.fr", - "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", - "extracted-results": [ - "" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T18:14:51.452526107Z", + "timestamp": "2024-01-14T17:49:16.288487555Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503667,15 +500914,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "expirationDate", "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://rdap.nic.fr/domain/territoiresentransitions.fr", "extracted-results": [ - "" + "2024-12-18T16:38:51Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T18:14:51.452540113Z", + "timestamp": "2024-01-14T17:49:16.288501321Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503722,7 +500969,7 @@ "chelsea.ns.cloudflare.com" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T18:14:51.452555041Z", + "timestamp": "2024-01-14T17:49:16.288513934Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/territoiresentransitions.fr'", "matcher-status": true }, @@ -503761,8 +501008,8 @@ "type": "http", "host": "https://territoiresentransitions.fr", "matched-at": "https://territoiresentransitions.fr/", - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:14:58.517969172Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:49:23.424712858Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: territoiresentransitions.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://territoiresentransitions.fr/'", "matcher-status": true }, @@ -503792,8 +501039,8 @@ "extracted-results": [ "Cloudflare, Inc." ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:03.910147064Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.61674926Z", "matcher-status": true }, { @@ -503820,12 +501067,12 @@ "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ + "sni.cloudflaressl.com", "territoiresentransitions.fr", - "*.territoiresentransitions.fr", - "sni.cloudflaressl.com" + "*.territoiresentransitions.fr" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:03.910288829Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.616882949Z", "matcher-status": true }, { @@ -503859,35 +501106,30 @@ "CN: sni.cloudflaressl.com", " SAN: [*.territoiresentransitions.fr sni.cloudflaressl.com territoiresentransitions.fr]" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:03.910336057Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.616928293Z", "matcher-status": true }, { - "template": "ssl/deprecated-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/deprecated-tls", - "template-id": "deprecated-tls", - "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "name": "TLS Version - Detect", "author": [ - "righettod", - "forgedhallpass" + "pdteam", + "pussycat0x" ], "tags": [ "ssl", "tls" ], - "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", - "reference": [ - "https://ssl-config.mozilla.org/#config=intermediate" - ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 3, - "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" - }, - "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + "max-request": 4 + } }, "type": "ssl", "host": "territoiresentransitions.fr", @@ -503895,44 +501137,44 @@ "extracted-results": [ "tls10" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:04.00293659Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.785843263Z", "matcher-status": true }, { - "template": "ssl/deprecated-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/deprecated-tls", - "template-id": "deprecated-tls", - "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", + "name": "Weak Cipher Suites Detection", "author": [ - "righettod", - "forgedhallpass" + "pussycat0x" ], "tags": [ "ssl", - "tls" + "tls", + "misconfig" ], - "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", "reference": [ - "https://ssl-config.mozilla.org/#config=intermediate" + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" ], - "severity": "info", + "severity": "low", "metadata": { - "max-request": 3, - "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" - }, - "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" + "max-request": 4 + } }, + "matcher-name": "tls-1.0", "type": "ssl", "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ - "tls11" + "[tls10 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:04.069241707Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.786927081Z", "matcher-status": true }, { @@ -503960,72 +501202,82 @@ "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ - "tls10" + "tls11" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:04.404388539Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.851472493Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Weak Cipher Suites Detection", "author": [ - "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls" + "tls", + "misconfig" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" + ], + "severity": "low", "metadata": { "max-request": 4 } }, + "matcher-name": "tls-1.1", "type": "ssl", "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ - "tls11" + "[tls11 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:04.471825094Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.853431987Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/deprecated-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/deprecated-tls", + "template-id": "deprecated-tls", + "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", "author": [ - "pdteam", - "pussycat0x" + "righettod", + "forgedhallpass" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "reference": [ + "https://ssl-config.mozilla.org/#config=intermediate" + ], "severity": "info", "metadata": { - "max-request": 4 - } + "max-request": 3, + "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" + }, + "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" }, "type": "ssl", "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ - "tls12" + "tls10" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:04.537451519Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.91620528Z", "matcher-status": true }, { @@ -504053,82 +501305,77 @@ "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ - "tls13" + "tls12" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:04.598907373Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.917154635Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "TLS Version - Detect", "author": [ + "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "tls" ], - "severity": "low", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", "metadata": { "max-request": 4 } }, - "matcher-name": "tls-1.0", "type": "ssl", "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ - "[tls10 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" + "tls13" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:04.665423032Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.977550262Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/deprecated-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/deprecated-tls", + "template-id": "deprecated-tls", + "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", "author": [ - "pussycat0x" + "righettod", + "forgedhallpass" ], "tags": [ "ssl", - "tls", - "misconfig" + "tls" ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "https://ssl-config.mozilla.org/#config=intermediate" ], - "severity": "low", + "severity": "info", "metadata": { - "max-request": 4 - } + "max-request": 3, + "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" + }, + "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" }, - "matcher-name": "tls-1.1", "type": "ssl", "host": "territoiresentransitions.fr", "matched-at": "territoiresentransitions.fr:443", "extracted-results": [ - "[tls11 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA]" + "tls11" ], - "ip": "104.22.79.190", - "timestamp": "2024-01-07T18:19:04.732215036Z", + "ip": "172.67.24.44", + "timestamp": "2024-01-14T17:53:37.988386301Z", "matcher-status": true } ], @@ -504136,7 +501383,7 @@ { "requestedUrl": "https://territoiresentransitions.fr/", "finalUrl": "https://www.territoiresentransitions.fr/", - "fetchTime": "2024-01-07T18:10:12.962Z", + "fetchTime": "2024-01-14T17:45:08.291Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://territoiresentransitions.fr/) was redirected to https://www.territoiresentransitions.fr/. Try testing the second URL directly." ], @@ -504201,53 +501448,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6040, + "numericValue": 5795, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2277, - "firstMeaningfulPaint": 2277, - "largestContentfulPaint": 4106, - "interactive": 6040, - "speedIndex": 2822, - "totalBlockingTime": 57, - "maxPotentialFID": 163, - "cumulativeLayoutShift": 0.011018330891927082, - "cumulativeLayoutShiftMainFrame": 0.011018330891927082, - "totalCumulativeLayoutShift": 0.011018330891927082, + "firstContentfulPaint": 2392, + "firstMeaningfulPaint": 2392, + "largestContentfulPaint": 4220, + "interactive": 5795, + "speedIndex": 2392, + "totalBlockingTime": 9, + "maxPotentialFID": 68, + "cumulativeLayoutShift": 0.007072835286458333, + "cumulativeLayoutShiftMainFrame": 0.007072835286458333, + "totalCumulativeLayoutShift": 0.007072835286458333, "observedTimeOrigin": 0, - "observedTimeOriginTs": 194296970, + "observedTimeOriginTs": 270283246, "observedNavigationStart": 0, - "observedNavigationStartTs": 194296970, - "observedFirstPaint": 1105, - "observedFirstPaintTs": 195401958, - "observedFirstContentfulPaint": 1105, - "observedFirstContentfulPaintTs": 195401958, - "observedFirstContentfulPaintAllFrames": 1105, - "observedFirstContentfulPaintAllFramesTs": 195401958, - "observedFirstMeaningfulPaint": 1105, - "observedFirstMeaningfulPaintTs": 195401958, - "observedLargestContentfulPaint": 1105, - "observedLargestContentfulPaintTs": 195401958, - "observedLargestContentfulPaintAllFrames": 1105, - "observedLargestContentfulPaintAllFramesTs": 195401958, - "observedTraceEnd": 4717, - "observedTraceEndTs": 199013939, - "observedLoad": 1562, - "observedLoadTs": 195858501, - "observedDomContentLoaded": 1114, - "observedDomContentLoadedTs": 195410589, - "observedCumulativeLayoutShift": 0.011018330891927082, - "observedCumulativeLayoutShiftMainFrame": 0.011018330891927082, - "observedTotalCumulativeLayoutShift": 0.011018330891927082, - "observedFirstVisualChange": 1111, - "observedFirstVisualChangeTs": 195407970, - "observedLastVisualChange": 1328, - "observedLastVisualChangeTs": 195624970, - "observedSpeedIndex": 1137, - "observedSpeedIndexTs": 195434182 + "observedNavigationStartTs": 270283246, + "observedFirstPaint": 565, + "observedFirstPaintTs": 270848416, + "observedFirstContentfulPaint": 565, + "observedFirstContentfulPaintTs": 270848416, + "observedFirstContentfulPaintAllFrames": 565, + "observedFirstContentfulPaintAllFramesTs": 270848416, + "observedFirstMeaningfulPaint": 565, + "observedFirstMeaningfulPaintTs": 270848416, + "observedLargestContentfulPaint": 565, + "observedLargestContentfulPaintTs": 270848416, + "observedLargestContentfulPaintAllFrames": 565, + "observedLargestContentfulPaintAllFramesTs": 270848416, + "observedTraceEnd": 4577, + "observedTraceEndTs": 274860178, + "observedLoad": 1031, + "observedLoadTs": 271314048, + "observedDomContentLoaded": 581, + "observedDomContentLoadedTs": 270863845, + "observedCumulativeLayoutShift": 0.007072835286458333, + "observedCumulativeLayoutShiftMainFrame": 0.007072835286458333, + "observedTotalCumulativeLayoutShift": 0.007072835286458333, + "observedFirstVisualChange": 572, + "observedFirstVisualChangeTs": 270855246, + "observedLastVisualChange": 1189, + "observedLastVisualChangeTs": 271472246, + "observedSpeedIndex": 614, + "observedSpeedIndexTs": 270897497 }, { "lcpInvalidated": false @@ -504269,19 +501516,19 @@ "numScripts": 11, "numStylesheets": 3, "numFonts": 4, - "numTasks": 741, - "numTasksOver10ms": 4, - "numTasksOver25ms": 3, + "numTasks": 770, + "numTasksOver10ms": 3, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.207, - "throughput": 35627528.138792455, - "maxRtt": 5.635000000000001, - "maxServerLatency": 88.022, - "totalByteWeight": 972593, - "totalTaskTime": 285.0159999999983, - "mainDocumentTransferSize": 29241 + "rtt": 5.11, + "throughput": 65415007.193074405, + "maxRtt": 5.8069999999999995, + "maxServerLatency": 128.60699999999997, + "totalByteWeight": 972363, + "totalTaskTime": 220.87099999999919, + "mainDocumentTransferSize": 29235 } ] } @@ -504419,32 +501666,32 @@ "http": { "url": "https://app.territoiresentransitions.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:04:59 GMT", + "end_time": "Sun, 14 Jan 2024 02:01:37 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "8418a2106865ce44-SJC", + "CF-RAY": "84524ac41ac52513-SJC", "Cache-Control": "public, max-age=0", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 07 Jan 2024 02:04:58 GMT", + "Date": "Sun, 14 Jan 2024 02:01:36 GMT", "Server": "cloudflare", "Transfer-Encoding": "chunked", "alt-svc": "h3=\":443\"; ma=86400", - "etag": "W/\"a84-18cca80d510\"", - "last-modified": "Tue, 02 Jan 2024 14:08:10 GMT", - "x-b3-traceid": "6913259c499216f9", - "x-envoy-upstream-service-time": "156", + "etag": "W/\"a84-18cee861d80\"", + "last-modified": "Tue, 09 Jan 2024 14:00:16 GMT", + "x-b3-traceid": "ea80df3d4d0d7565", + "x-envoy-upstream-service-time": "155", "x-koyeb-backend": "par1", "x-koyeb-glb": "sfo1", "x-powered-by": "Express" }, - "scan_id": 46226693, + "scan_id": 46435393, "score": 0, - "start_time": "Sun, 07 Jan 2024 02:04:56 GMT", + "start_time": "Sun, 14 Jan 2024 02:01:34 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -505000,7 +502247,7 @@ "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "OK", - "finding": "68 >= 60 days" + "finding": "61 >= 60 days" }, { "id": "cert_notBefore", @@ -505210,7 +502457,7 @@ "ip": "app.territoiresentransitions.fr/172.67.24.44", "port": "443", "severity": "INFO", - "finding": "1704651174" + "finding": "1705254550" }, { "id": "HSTS", @@ -506108,7 +503355,7 @@ "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "OK", - "finding": "68 >= 60 days" + "finding": "61 >= 60 days" }, { "id": "cert_notBefore", @@ -506318,7 +503565,7 @@ "ip": "app.territoiresentransitions.fr/104.22.79.190", "port": "443", "severity": "INFO", - "finding": "1704651231" + "finding": "1705254606" }, { "id": "HSTS", @@ -507216,7 +504463,7 @@ "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "OK", - "finding": "68 >= 60 days" + "finding": "61 >= 60 days" }, { "id": "cert_notBefore", @@ -507426,7 +504673,7 @@ "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", - "finding": "1704651289" + "finding": "1705254664" }, { "id": "HSTS", @@ -507982,7 +505229,7 @@ "ip": "app.territoiresentransitions.fr/104.22.78.190", "port": "443", "severity": "INFO", - "finding": "174" + "finding": "172" } ], "thirdparties": { @@ -507997,19 +505244,19 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/582ff50a-5ac4-4f38-a8bc-62f51beeef89/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-18-11" + "url": "https://client.crisp.chat/settings/website/582ff50a-5ac4-4f38-a8bc-62f51beeef89/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-17-48" }, { "type": "unknown", - "url": "https://static.userguiding.com/media/sdk-006614964ID.json" + "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/ongoing_maintenance?select=*" }, { "type": "unknown", @@ -508017,7 +505264,7 @@ }, { "type": "unknown", - "url": "https://rlarzronkgoyvtdkltqy.supabase.co/rest/v1/ongoing_maintenance?select=*" + "url": "https://static.userguiding.com/media/sdk-006614964ID.json" }, { "type": "unknown", @@ -508025,7 +505272,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?e0efffc" }, { "type": "unknown", @@ -508037,15 +505284,15 @@ "alt-svc": "h3=\":443\"; ma=86400", "cache-control": "public, max-age=0", "cf-cache-status": "DYNAMIC", - "cf-ray": "841e2a8dea962c2c-ORD", + "cf-ray": "8457b567aaf98133-ORD", "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 18:11:57 GMT", - "etag": "W/\"a84-18cca80d510\"", - "last-modified": "Tue, 02 Jan 2024 14:08:10 GMT", + "date": "Sun, 14 Jan 2024 17:48:13 GMT", + "etag": "W/\"a84-18cee861d80\"", + "last-modified": "Tue, 09 Jan 2024 14:00:16 GMT", "server": "cloudflare", - "x-b3-traceid": "9b657cbca9a4e608", - "x-envoy-upstream-service-time": "81", + "x-b3-traceid": "52905fa301c67215", + "x-envoy-upstream-service-time": "85", "x-koyeb-backend": "par1", "x-koyeb-glb": "was1", "x-powered-by": "Express" @@ -508053,13 +505300,47 @@ "endpoints": [ { "hostname": "app.territoiresentransitions.fr", - "ip": "104.22.78.190", + "ip": "172.67.24.44", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -508079,7 +505360,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -508113,7 +505394,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -508133,7 +505414,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -508147,13 +505428,47 @@ }, { "hostname": "rlarzronkgoyvtdkltqy.supabase.co", - "ip": "104.18.38.107", + "ip": "172.64.149.149", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -508221,7 +505536,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -508504,7 +505819,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 18:11:16", + "@generated": "Sun, 14 Jan 2024 17:47:32", "site": [ { "@name": "https://app.territoiresentransitions.fr", @@ -508637,73 +505952,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "app.territoiresentransitions.fr.", "matched-at": "app.territoiresentransitions.fr", - "timestamp": "2024-01-07T18:16:06.759574005Z", + "extracted-results": [ + "7ff11ac5-c270-4fe6-8358-2a72b4749851.cname.koyeb.app." + ], + "timestamp": "2024-01-14T17:52:19.914926411Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "app.territoiresentransitions.fr.", "matched-at": "app.territoiresentransitions.fr", - "extracted-results": [ - "7ff11ac5-c270-4fe6-8358-2a72b4749851.cname.koyeb.app." - ], - "timestamp": "2024-01-07T18:16:06.79648633Z", + "timestamp": "2024-01-14T17:52:19.977680887Z", "matcher-status": true }, { @@ -508732,7 +506047,7 @@ "GET,HEAD" ], "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:11.449416306Z", + "timestamp": "2024-01-14T17:52:25.00846764Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508759,7 +506074,7 @@ "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:32.110617609Z", + "timestamp": "2024-01-14T17:52:45.525802358Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508786,7 +506101,7 @@ "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:32.110667142Z", + "timestamp": "2024-01-14T17:52:45.525853263Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508818,12 +506133,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.667623659Z", + "timestamp": "2024-01-14T17:52:51.14772077Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508855,12 +506170,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.667675306Z", + "timestamp": "2024-01-14T17:52:51.147782585Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508892,12 +506207,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.667685976Z", + "timestamp": "2024-01-14T17:52:51.147814133Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508929,12 +506244,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "referrer-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.66769868Z", + "timestamp": "2024-01-14T17:52:51.14783391Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -508966,12 +506281,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.667714911Z", + "timestamp": "2024-01-14T17:52:51.1479471Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509003,12 +506318,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.66773034Z", + "timestamp": "2024-01-14T17:52:51.147967398Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509040,12 +506355,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.667743635Z", + "timestamp": "2024-01-14T17:52:51.147982115Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509077,12 +506392,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.667757471Z", + "timestamp": "2024-01-14T17:52:51.147999297Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509114,12 +506429,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.667770535Z", + "timestamp": "2024-01-14T17:52:51.148013844Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509151,12 +506466,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.66778358Z", + "timestamp": "2024-01-14T17:52:51.148030034Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509188,12 +506503,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:37.667795833Z", + "timestamp": "2024-01-14T17:52:51.148043349Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr'", "matcher-status": true }, @@ -509221,7 +506536,7 @@ "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr/robots.txt", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:43.599707809Z", + "timestamp": "2024-01-14T17:52:57.200108132Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr/robots.txt'", "matcher-status": true }, @@ -509261,7 +506576,7 @@ "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr/", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:51.347449099Z", + "timestamp": "2024-01-14T17:53:05.012647396Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.territoiresentransitions.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr/'", "matcher-status": true }, @@ -509301,55 +506616,56 @@ "host": "https://app.territoiresentransitions.fr", "matched-at": "https://app.territoiresentransitions.fr/", "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:16:51.347509332Z", + "timestamp": "2024-01-14T17:53:05.012693111Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: app.territoiresentransitions.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://app.territoiresentransitions.fr/'", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "TLS Version - Detect", "author": [ - "lingtren" + "pdteam", + "pussycat0x" ], "tags": [ "ssl", "tls" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "app.territoiresentransitions.fr", "matched-at": "app.territoiresentransitions.fr:443", "extracted-results": [ - "Google Trust Services LLC" + "tls12" ], "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:21:01.02221463Z", + "timestamp": "2024-01-14T17:57:18.919225993Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "SSL DNS Names", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam" + "lingtren" ], "tags": [ "ssl", "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { "max-request": 1 @@ -509359,41 +506675,40 @@ "host": "app.territoiresentransitions.fr", "matched-at": "app.territoiresentransitions.fr:443", "extracted-results": [ - "app.territoiresentransitions.fr" + "Google Trust Services LLC" ], "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:21:01.022348983Z", + "timestamp": "2024-01-14T17:57:18.920056563Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "app.territoiresentransitions.fr", "matched-at": "app.territoiresentransitions.fr:443", "extracted-results": [ - "tls12" + "app.territoiresentransitions.fr" ], "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:21:01.322310597Z", + "timestamp": "2024-01-14T17:57:18.920183997Z", "matcher-status": true }, { @@ -509424,7 +506739,7 @@ "tls13" ], "ip": "104.22.78.190", - "timestamp": "2024-01-07T18:21:01.346714723Z", + "timestamp": "2024-01-14T17:57:18.948032457Z", "matcher-status": true } ], @@ -509432,7 +506747,7 @@ { "requestedUrl": "https://app.territoiresentransitions.fr/", "finalUrl": "https://app.territoiresentransitions.fr/", - "fetchTime": "2024-01-07T18:11:30.146Z", + "fetchTime": "2024-01-14T17:47:45.867Z", "runWarnings": [], "categories": { "performance": { @@ -509443,7 +506758,7 @@ "snapshot" ], "id": "performance", - "score": 0.9940683364868164 + "score": 0.9940820693969726 }, "accessibility": { "title": "Accessibility", @@ -509495,53 +506810,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7969, + "numericValue": 7980, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1991, - "firstMeaningfulPaint": 2787, - "largestContentfulPaint": 6808, - "interactive": 7969, - "speedIndex": 4425, - "totalBlockingTime": 401, - "maxPotentialFID": 267, - "cumulativeLayoutShift": 0.019623046875, - "cumulativeLayoutShiftMainFrame": 0.019623046875, - "totalCumulativeLayoutShift": 0.019623046875, + "firstContentfulPaint": 1989, + "firstMeaningfulPaint": 2784, + "largestContentfulPaint": 6736, + "interactive": 7980, + "speedIndex": 4975, + "totalBlockingTime": 383, + "maxPotentialFID": 301, + "cumulativeLayoutShift": 0.025487983703613278, + "cumulativeLayoutShiftMainFrame": 0.025487983703613278, + "totalCumulativeLayoutShift": 0.025487983703613278, "observedTimeOrigin": 0, - "observedTimeOriginTs": 203490140, + "observedTimeOriginTs": 261878971, "observedNavigationStart": 0, - "observedNavigationStartTs": 203490140, - "observedFirstPaint": 798, - "observedFirstPaintTs": 204288168, - "observedFirstContentfulPaint": 798, - "observedFirstContentfulPaintTs": 204288168, - "observedFirstContentfulPaintAllFrames": 798, - "observedFirstContentfulPaintAllFramesTs": 204288168, - "observedFirstMeaningfulPaint": 798, - "observedFirstMeaningfulPaintTs": 204288168, - "observedLargestContentfulPaint": 798, - "observedLargestContentfulPaintTs": 204288168, - "observedLargestContentfulPaintAllFrames": 798, - "observedLargestContentfulPaintAllFramesTs": 204288168, - "observedTraceEnd": 3534, - "observedTraceEndTs": 207024316, - "observedLoad": 669, - "observedLoadTs": 204158886, - "observedDomContentLoaded": 669, - "observedDomContentLoadedTs": 204158844, - "observedCumulativeLayoutShift": 0.019623046875, - "observedCumulativeLayoutShiftMainFrame": 0.019623046875, - "observedTotalCumulativeLayoutShift": 0.019623046875, - "observedFirstVisualChange": 801, - "observedFirstVisualChangeTs": 204291140, - "observedLastVisualChange": 1085, - "observedLastVisualChangeTs": 204575140, - "observedSpeedIndex": 857, - "observedSpeedIndexTs": 204347159 + "observedNavigationStartTs": 261878971, + "observedFirstPaint": 1075, + "observedFirstPaintTs": 262953595, + "observedFirstContentfulPaint": 1075, + "observedFirstContentfulPaintTs": 262953595, + "observedFirstContentfulPaintAllFrames": 1075, + "observedFirstContentfulPaintAllFramesTs": 262953595, + "observedFirstMeaningfulPaint": 1075, + "observedFirstMeaningfulPaintTs": 262953595, + "observedLargestContentfulPaint": 1075, + "observedLargestContentfulPaintTs": 262953595, + "observedLargestContentfulPaintAllFrames": 1075, + "observedLargestContentfulPaintAllFramesTs": 262953595, + "observedTraceEnd": 3815, + "observedTraceEndTs": 265694001, + "observedLoad": 941, + "observedLoadTs": 262819902, + "observedDomContentLoaded": 941, + "observedDomContentLoadedTs": 262819850, + "observedCumulativeLayoutShift": 0.025487983703613278, + "observedCumulativeLayoutShiftMainFrame": 0.025487983703613278, + "observedTotalCumulativeLayoutShift": 0.025487983703613278, + "observedFirstVisualChange": 1077, + "observedFirstVisualChangeTs": 262955971, + "observedLastVisualChange": 1527, + "observedLastVisualChangeTs": 263405971, + "observedSpeedIndex": 1159, + "observedSpeedIndexTs": 263037811 }, { "lcpInvalidated": false @@ -509563,19 +506878,19 @@ "numScripts": 3, "numStylesheets": 1, "numFonts": 3, - "numTasks": 672, - "numTasksOver10ms": 5, + "numTasks": 730, + "numTasksOver10ms": 4, "numTasksOver25ms": 4, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.7890000000000001, - "throughput": 77888794.70483203, - "maxRtt": 2.717, - "maxServerLatency": 189.81900000000002, - "totalByteWeight": 1079675, - "totalTaskTime": 338.6079999999996, - "mainDocumentTransferSize": 1448 + "rtt": 1.774, + "throughput": 64262083.33342874, + "maxRtt": 2.045, + "maxServerLatency": 189.16299999999998, + "totalByteWeight": 1079603, + "totalTaskTime": 317.18099999999816, + "mainDocumentTransferSize": 1449 } ] } @@ -509679,7 +506994,7 @@ "cookiesCount": 0, "trackersGrade": "F", "trackersCount": 11, - "lighthouse_performance": 0.9940683364868164, + "lighthouse_performance": 0.9940820693969726, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -509705,7 +507020,7 @@ "http": { "url": "https://candidat.pole-emploi.fr/simucalculreprise", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 18:24:47 GMT", + "end_time": "Sun, 14 Jan 2024 18:01:12 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -509713,16 +507028,16 @@ "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 18:24:46 GMT", - "Last-Modified": "Tue, 19 Dec 2023 15:06:12 GMT", - "Set-Cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1771244298.20480.0000; path=/; Httponly; Secure, TS01a771c6=0150c672c301a0a852139299bdf3845eea194e02efc933c867f9df2bb11994526d7cf680b374718bd53f8dd681a061d0a9cefb260e; Path=/", + "Date": "Sun, 14 Jan 2024 18:01:11 GMT", + "Last-Modified": "Tue, 09 Jan 2024 09:04:39 GMT", + "Set-Cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1687358218.20480.0000; path=/; Httponly; Secure, TS01a771c6=0150c672c349e282513f2e038262fe9aaf05fb546c9106715423df07670e092ef8705d68e2b915f4849cfd74cacddcb09281fb8536; Path=/", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "X-Vcap-Request-Id": "95b242dc-719f-41ea-41d7-55fb1ea24640" + "X-Vcap-Request-Id": "4acaf739-13cb-40bc-7f6e-a07ccf7f953a" }, - "scan_id": 46237033, + "scan_id": 46495216, "score": 0, - "start_time": "Sun, 07 Jan 2024 18:24:42 GMT", + "start_time": "Sun, 14 Jan 2024 18:01:07 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -510298,7 +507613,7 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "253 >= 60 days" + "finding": "246 >= 60 days" }, { "id": "cert_notBefore", @@ -511050,7 +508365,7 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "55" + "finding": "94" } ], "thirdparties": { @@ -511081,7 +508396,7 @@ }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lr3tqnopxnyj5gip" + "url": "https://hd.pe.fr/event?s=475540&idclient=lrdsza89ic3pon2f" }, { "type": "unknown", @@ -511099,7 +508414,7 @@ "cookies": [ { "name": "TS01a771c6", - "value": "0150c672c3593563006797edfa6d4f09ae661e623c60f47d44ea6149a0e6c072d30f1dac2d6701853c11b2182fa0177987822689c3", + "value": "0150c672c376cee856187a78ac7c6e725a7251213f17c71ebb7115cc444dae698a1ee46f337395b154943eb3e4e47f913096a55c12", "domain": "candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -511113,7 +508428,7 @@ }, { "name": "BIGipServerPOOL_TAS_SDDC_HTTP", - "value": "1737689866.20480.0000", + "value": "1720912650.20480.0000", "domain": "candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -511129,12 +508444,12 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 18:25:18 GMT", + "date": "Sun, 14 Jan 2024 18:01:42 GMT", "last-modified": "Mon, 19 Jun 2023 13:53:14 GMT", - "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1737689866.20480.0000; path=/; Httponly; Secure\nTS01a771c6=0150c672c3593563006797edfa6d4f09ae661e623c60f47d44ea6149a0e6c072d30f1dac2d6701853c11b2182fa0177987822689c3; Path=/", + "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1720912650.20480.0000; path=/; Httponly; Secure\nTS01a771c6=0150c672c376cee856187a78ac7c6e725a7251213f17c71ebb7115cc444dae698a1ee46f337395b154943eb3e4e47f913096a55c12; Path=/", "transfer-encoding": "chunked", "vary": "Accept-Encoding", - "x-vcap-request-id": "c9e3e408-6567-4080-4aad-0a2f8620fd33" + "x-vcap-request-id": "eebec0a7-1e03-4fe7-7e80-16f98d820d40" }, "endpoints": [ { @@ -511271,7 +508586,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -511291,7 +508606,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -511375,7 +508690,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "18.160.18.10", + "ip": "65.8.161.63", "geoip": { "continent": { "code": "NA", @@ -511395,7 +508710,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -511415,7 +508730,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -511429,7 +508744,7 @@ }, { "hostname": "hd.pe.fr", - "ip": "18.160.18.7", + "ip": "18.239.199.17", "geoip": { "continent": { "code": "NA", @@ -511449,7 +508764,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -511469,7 +508784,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -511539,7 +508854,7 @@ }, { "hostname": "privacy.trustcommander.net", - "ip": "13.37.27.232", + "ip": "15.188.71.235", "geoip": { "city": { "geoname_id": 2988507, @@ -511596,7 +508911,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -511615,7 +508930,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -511747,7 +509064,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 18:24:14", + "@generated": "Sun, 14 Jan 2024 18:00:37", "site": [ { "@name": "https://candidat.pole-emploi.fr", @@ -511965,13 +509282,6 @@ "riskdesc": "Informational (Medium)", "desc": "

The response contents are storable by caching components such as proxy servers, and may be retrieved directly from the cache, rather than from the origin server by the caching servers, in response to similar requests from other users. If the response data is sensitive, personal or user-specific, this may result in sensitive information being leaked. In some cases, this may even result in a user gaining complete control of the session of another user, depending on the configuration of the caching components in use in their environment. This is primarily an issue where \"shared\" caching servers such as \"proxy\" caches are configured on the local network. This configuration is typically found in corporate or educational environments, for instance.

" }, - { - "name": "Storable but Non-Cacheable Content", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The response contents are storable by caching components such as proxy servers, but will not be retrieved directly from the cache, without validating the request upstream, in response to similar requests from other users.

" - }, { "name": "User Controllable HTML Element Attribute (Potential XSS)", "riskcode": "0", @@ -511983,587 +509293,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "candidat.pole-emploi.fr.", - "matched-at": "candidat.pole-emploi.fr", - "timestamp": "2024-01-07T18:27:13.198229612Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.415366057Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.415428614Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.415446407Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.415459842Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.415478197Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.415492644Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.415505998Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.415518492Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.41553363Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.415546985Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:15.41556033Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise'", - "matcher-status": true - }, - { - "template": "http/technologies/waf-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/waf-detect", - "template-id": "waf-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", - "info": { - "name": "WAF Detection", - "author": [ - "dwisiswant0", - "lu4nx" - ], - "tags": [ - "waf", - "tech", - "misc" - ], - "description": "A web application firewall was detected.", - "reference": [ - "https://github.com/ekultek/whatwaf" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "asm", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simucalculreprise", - "matched-at": "https://candidat.pole-emploi.fr/simucalculreprise/", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:28:48.185394092Z", - "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: candidat.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simucalculreprise/'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "candidat.pole-emploi.fr", - "matched-at": "candidat.pole-emploi.fr:443", - "extracted-results": [ - "Entrust, Inc." - ], - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:32:48.451109271Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "candidat.pole-emploi.fr", - "matched-at": "candidat.pole-emploi.fr:443", - "extracted-results": [ - "www.candidat.pole-emploi.fr", - "candidat.pole-emploi.fr" - ], - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:32:48.451227421Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "candidat.pole-emploi.fr", - "matched-at": "candidat.pole-emploi.fr:443", - "extracted-results": [ - "tls12" - ], - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:32:50.992823153Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://candidat.pole-emploi.fr/simucalculreprise", "finalUrl": "https://candidat.pole-emploi.fr/simucalculreprise", - "fetchTime": "2024-01-07T18:24:28.956Z", + "fetchTime": "2024-01-14T18:00:52.181Z", "runWarnings": [], "categories": { "performance": { @@ -512574,7 +509309,7 @@ "snapshot" ], "id": "performance", - "score": 0.7221040725708008 + "score": 0.7220874786376953 }, "accessibility": { "title": "Accessibility", @@ -512626,53 +509361,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11345, + "numericValue": 11998, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4401, - "firstMeaningfulPaint": 7303, - "largestContentfulPaint": 11168, - "interactive": 11345, - "speedIndex": 8125, - "totalBlockingTime": 2588, - "maxPotentialFID": 2555, - "cumulativeLayoutShift": 1.1941223713556923, - "cumulativeLayoutShiftMainFrame": 1.1941223713556923, - "totalCumulativeLayoutShift": 1.1941223713556923, + "firstContentfulPaint": 4958, + "firstMeaningfulPaint": 7789, + "largestContentfulPaint": 12423, + "interactive": 11998, + "speedIndex": 9564, + "totalBlockingTime": 2586, + "maxPotentialFID": 2553, + "cumulativeLayoutShift": 1.2091148437923853, + "cumulativeLayoutShiftMainFrame": 1.2091148437923853, + "totalCumulativeLayoutShift": 1.2091148437923853, "observedTimeOrigin": 0, - "observedTimeOriginTs": 326171803, + "observedTimeOriginTs": 374194908, "observedNavigationStart": 0, - "observedNavigationStartTs": 326171803, - "observedFirstPaint": 740, - "observedFirstPaintTs": 326911424, - "observedFirstContentfulPaint": 2683, - "observedFirstContentfulPaintTs": 328855028, - "observedFirstContentfulPaintAllFrames": 2683, - "observedFirstContentfulPaintAllFramesTs": 328855028, - "observedFirstMeaningfulPaint": 2987, - "observedFirstMeaningfulPaintTs": 329159190, - "observedLargestContentfulPaint": 3231, - "observedLargestContentfulPaintTs": 329403262, - "observedLargestContentfulPaintAllFrames": 3231, - "observedLargestContentfulPaintAllFramesTs": 329403262, - "observedTraceEnd": 6010, - "observedTraceEndTs": 332181497, - "observedLoad": 1697, - "observedLoadTs": 327868832, - "observedDomContentLoaded": 1697, - "observedDomContentLoadedTs": 327868336, - "observedCumulativeLayoutShift": 1.1941223713556923, - "observedCumulativeLayoutShiftMainFrame": 1.1941223713556923, - "observedTotalCumulativeLayoutShift": 1.1941223713556923, - "observedFirstVisualChange": 731, - "observedFirstVisualChangeTs": 326902803, - "observedLastVisualChange": 4014, - "observedLastVisualChangeTs": 330185803, - "observedSpeedIndex": 2933, - "observedSpeedIndexTs": 329104335 + "observedNavigationStartTs": 374194908, + "observedFirstPaint": 1361, + "observedFirstPaintTs": 375556148, + "observedFirstContentfulPaint": 3509, + "observedFirstContentfulPaintTs": 377704222, + "observedFirstContentfulPaintAllFrames": 3509, + "observedFirstContentfulPaintAllFramesTs": 377704222, + "observedFirstMeaningfulPaint": 4000, + "observedFirstMeaningfulPaintTs": 378195345, + "observedLargestContentfulPaint": 4217, + "observedLargestContentfulPaintTs": 378412033, + "observedLargestContentfulPaintAllFrames": 4217, + "observedLargestContentfulPaintAllFramesTs": 378412033, + "observedTraceEnd": 8063, + "observedTraceEndTs": 382258377, + "observedLoad": 2689, + "observedLoadTs": 376883979, + "observedDomContentLoaded": 2689, + "observedDomContentLoadedTs": 376883518, + "observedCumulativeLayoutShift": 1.2091148437923853, + "observedCumulativeLayoutShiftMainFrame": 1.2091148437923853, + "observedTotalCumulativeLayoutShift": 1.2091148437923853, + "observedFirstVisualChange": 1356, + "observedFirstVisualChangeTs": 375550908, + "observedLastVisualChange": 5689, + "observedLastVisualChangeTs": 379883908, + "observedSpeedIndex": 3961, + "observedSpeedIndexTs": 378155707 }, { "lcpInvalidated": false @@ -512694,18 +509429,18 @@ "numScripts": 10, "numStylesheets": 1, "numFonts": 6, - "numTasks": 1048, - "numTasksOver10ms": 13, + "numTasks": 1051, + "numTasksOver10ms": 14, "numTasksOver25ms": 4, "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 1, - "rtt": 5.195, - "throughput": 8571227.960346457, - "maxRtt": 95.41999999999999, - "maxServerLatency": 5.214000000000027, - "totalByteWeight": 2505551, - "totalTaskTime": 1060.4670000000024, + "rtt": 1.4220000000000002, + "throughput": 5188488.83620057, + "maxRtt": 161.489, + "maxServerLatency": 178.976, + "totalByteWeight": 2505638, + "totalTaskTime": 1079.911000000002, "mainDocumentTransferSize": 1203 } ] @@ -512820,7 +509555,7 @@ "cookiesCount": 2, "trackersGrade": "C", "trackersCount": 10, - "lighthouse_performance": 0.7221040725708008, + "lighthouse_performance": 0.7220874786376953, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", @@ -512846,7 +509581,7 @@ "http": { "url": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 18:24:47 GMT", + "end_time": "Sun, 14 Jan 2024 18:01:12 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -512854,16 +509589,16 @@ "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 18:24:46 GMT", - "Last-Modified": "Tue, 19 Dec 2023 15:06:12 GMT", - "Set-Cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1771244298.20480.0000; path=/; Httponly; Secure, TS01a771c6=0150c672c301a0a852139299bdf3845eea194e02efc933c867f9df2bb11994526d7cf680b374718bd53f8dd681a061d0a9cefb260e; Path=/", + "Date": "Sun, 14 Jan 2024 18:01:11 GMT", + "Last-Modified": "Tue, 09 Jan 2024 09:04:39 GMT", + "Set-Cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1687358218.20480.0000; path=/; Httponly; Secure, TS01a771c6=0150c672c349e282513f2e038262fe9aaf05fb546c9106715423df07670e092ef8705d68e2b915f4849cfd74cacddcb09281fb8536; Path=/", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", - "X-Vcap-Request-Id": "95b242dc-719f-41ea-41d7-55fb1ea24640" + "X-Vcap-Request-Id": "4acaf739-13cb-40bc-7f6e-a07ccf7f953a" }, - "scan_id": 46237033, + "scan_id": 46495216, "score": 0, - "start_time": "Sun, 07 Jan 2024 18:24:42 GMT", + "start_time": "Sun, 14 Jan 2024 18:01:07 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -513439,7 +510174,7 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "OK", - "finding": "253 >= 60 days" + "finding": "246 >= 60 days" }, { "id": "cert_notBefore", @@ -514191,7 +510926,7 @@ "ip": "candidat.pole-emploi.fr/185.215.64.30", "port": "443", "severity": "INFO", - "finding": "93" + "finding": "56" } ], "thirdparties": { @@ -514222,7 +510957,7 @@ }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lr3u08vlm8m20iw6" + "url": "https://hd.pe.fr/event?s=475540&idclient=lrdt55ssqoqqovpx" }, { "type": "unknown", @@ -514244,7 +510979,7 @@ "cookies": [ { "name": "TS01a771c6", - "value": "0150c672c3433b3d0496cb27704fea58315f901a3aa25fe7abf4f38137a8ccd5b099a095bb32ffd9324b5bc37c23ee05f698b86290", + "value": "0150c672c36d9c393ed15c56ca99f8c35b4d66d0c6562d829af36794815bc1a2fcc4990a84454f69fa5e43ef32fd81222d8c03f9e3", "domain": "candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -514258,7 +510993,7 @@ }, { "name": "BIGipServerPOOL_TAS_SDDC_HTTP", - "value": "1838353162.20480.0000", + "value": "1720912650.20480.0000", "domain": "candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -514274,13 +511009,13 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 18:32:45 GMT", - "last-modified": "Tue, 28 Nov 2023 16:40:42 GMT", - "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1838353162.20480.0000; path=/; Httponly; Secure\nTS01a771c6=0150c672c3433b3d0496cb27704fea58315f901a3aa25fe7abf4f38137a8ccd5b099a095bb32ffd9324b5bc37c23ee05f698b86290; Path=/", + "date": "Sun, 14 Jan 2024 18:06:17 GMT", + "last-modified": "Tue, 09 Jan 2024 14:47:07 GMT", + "set-cookie": "BIGipServerPOOL_TAS_SDDC_HTTP=1720912650.20480.0000; path=/; Httponly; Secure\nTS01a771c6=0150c672c36d9c393ed15c56ca99f8c35b4d66d0c6562d829af36794815bc1a2fcc4990a84454f69fa5e43ef32fd81222d8c03f9e3; Path=/", "transfer-encoding": "chunked", "vary": "Accept-Encoding", "x-robots-tag": "noindex, nofollow, nosnippet, noarchive", - "x-vcap-request-id": "19cc3b4c-4690-4780-4b1e-d24445d79287" + "x-vcap-request-id": "5558d77e-a1a8-4390-4af1-b11f4257fe6f" }, "endpoints": [ { @@ -514361,7 +511096,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -514381,7 +511116,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -514521,7 +511256,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "65.8.161.16", + "ip": "18.160.18.10", "geoip": { "continent": { "code": "NA", @@ -514541,7 +511276,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -514561,7 +511296,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -514575,7 +511310,7 @@ }, { "hostname": "hd.pe.fr", - "ip": "18.239.199.23", + "ip": "18.160.18.42", "geoip": { "continent": { "code": "NA", @@ -514595,7 +511330,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -514615,7 +511350,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -514629,7 +511364,7 @@ }, { "hostname": "privacy.trustcommander.net", - "ip": "13.37.27.232", + "ip": "15.188.71.235", "geoip": { "city": { "geoname_id": 2988507, @@ -514686,7 +511421,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -514705,7 +511440,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -514910,7 +511647,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 18:32:00", + "@generated": "Sun, 14 Jan 2024 18:05:36", "site": [ { "@name": "https://candidat.pole-emploi.fr", @@ -515172,7 +511909,7 @@ "type": "dns", "host": "candidat.pole-emploi.fr.", "matched-at": "candidat.pole-emploi.fr", - "timestamp": "2024-01-07T18:35:27.997271445Z", + "timestamp": "2024-01-14T18:08:13.524766234Z", "matcher-status": true }, { @@ -515203,12 +511940,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936111646Z", + "timestamp": "2024-01-14T18:09:16.176874632Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515240,12 +511977,49 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936163363Z", + "timestamp": "2024-01-14T18:09:16.176929513Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "ip": "185.215.64.30", + "timestamp": "2024-01-14T18:09:16.176949861Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515282,7 +512056,229 @@ "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936182839Z", + "timestamp": "2024-01-14T18:09:16.176966963Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "ip": "185.215.64.30", + "timestamp": "2024-01-14T18:09:16.176985697Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "ip": "185.215.64.30", + "timestamp": "2024-01-14T18:09:16.177003701Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "ip": "185.215.64.30", + "timestamp": "2024-01-14T18:09:16.17701944Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "ip": "185.215.64.30", + "timestamp": "2024-01-14T18:09:16.177034548Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "ip": "185.215.64.30", + "timestamp": "2024-01-14T18:09:16.17707865Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", + "ip": "185.215.64.30", + "timestamp": "2024-01-14T18:09:16.177096813Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515319,266 +512315,7 @@ "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936198618Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936213686Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936226981Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936239895Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936255054Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936270632Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936287734Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:37:08.936299837Z", + "timestamp": "2024-01-14T18:09:16.177112422Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation'", "matcher-status": true }, @@ -515618,7 +512355,7 @@ "host": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "matched-at": "https://candidat.pole-emploi.fr/simulation-ressources-formation/", "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:38:03.491352749Z", + "timestamp": "2024-01-14T18:09:49.468913011Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: candidat.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://candidat.pole-emploi.fr/simulation-ressources-formation/'", "matcher-status": true }, @@ -515649,7 +512386,7 @@ "Entrust, Inc." ], "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:40:31.186106315Z", + "timestamp": "2024-01-14T18:13:02.34152613Z", "matcher-status": true }, { @@ -515680,7 +512417,7 @@ "www.candidat.pole-emploi.fr" ], "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:40:31.186242859Z", + "timestamp": "2024-01-14T18:13:02.341643427Z", "matcher-status": true }, { @@ -515711,7 +512448,7 @@ "tls12" ], "ip": "185.215.64.30", - "timestamp": "2024-01-07T18:40:33.72712819Z", + "timestamp": "2024-01-14T18:13:05.612294776Z", "matcher-status": true } ], @@ -515719,7 +512456,7 @@ { "requestedUrl": "https://candidat.pole-emploi.fr/simulation-ressources-formation", "finalUrl": "https://candidat.pole-emploi.fr/simulation-ressources-formation", - "fetchTime": "2024-01-07T18:32:15.047Z", + "fetchTime": "2024-01-14T18:05:50.419Z", "runWarnings": [], "categories": { "performance": { @@ -515730,7 +512467,7 @@ "snapshot" ], "id": "performance", - "score": 0.8808750152587891 + "score": 0.8806753158569336 }, "accessibility": { "title": "Accessibility", @@ -515782,53 +512519,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 13429, + "numericValue": 12854, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 8999, - "firstMeaningfulPaint": 8999, - "largestContentfulPaint": 13853, - "interactive": 13429, - "speedIndex": 12201, - "totalBlockingTime": 506, - "maxPotentialFID": 451, - "cumulativeLayoutShift": 0.002440004454718696, - "cumulativeLayoutShiftMainFrame": 0.002440004454718696, - "totalCumulativeLayoutShift": 0.002440004454718696, + "firstContentfulPaint": 8573, + "firstMeaningfulPaint": 8573, + "largestContentfulPaint": 13443, + "interactive": 12854, + "speedIndex": 9182, + "totalBlockingTime": 228, + "maxPotentialFID": 205, + "cumulativeLayoutShift": 0.0024329955842759873, + "cumulativeLayoutShiftMainFrame": 0.0024329955842759873, + "totalCumulativeLayoutShift": 0.0024329955842759873, "observedTimeOrigin": 0, - "observedTimeOriginTs": 347345161, + "observedTimeOriginTs": 240263909, "observedNavigationStart": 0, - "observedNavigationStartTs": 347345161, - "observedFirstPaint": 751, - "observedFirstPaintTs": 348095887, - "observedFirstContentfulPaint": 4081, - "observedFirstContentfulPaintTs": 351426222, - "observedFirstContentfulPaintAllFrames": 4081, - "observedFirstContentfulPaintAllFramesTs": 351426222, - "observedFirstMeaningfulPaint": 4081, - "observedFirstMeaningfulPaintTs": 351426222, - "observedLargestContentfulPaint": 4580, - "observedLargestContentfulPaintTs": 351924994, - "observedLargestContentfulPaintAllFrames": 4580, - "observedLargestContentfulPaintAllFramesTs": 351924994, - "observedTraceEnd": 8011, - "observedTraceEndTs": 355355959, - "observedLoad": 3428, - "observedLoadTs": 350773120, - "observedDomContentLoaded": 3428, - "observedDomContentLoadedTs": 350773054, - "observedCumulativeLayoutShift": 0.002440004454718696, - "observedCumulativeLayoutShiftMainFrame": 0.002440004454718696, - "observedTotalCumulativeLayoutShift": 0.002440004454718696, - "observedFirstVisualChange": 4090, - "observedFirstVisualChangeTs": 351435161, - "observedLastVisualChange": 5724, - "observedLastVisualChangeTs": 353069161, - "observedSpeedIndex": 4471, - "observedSpeedIndexTs": 351816427 + "observedNavigationStartTs": 240263909, + "observedFirstPaint": 415, + "observedFirstPaintTs": 240678856, + "observedFirstContentfulPaint": 2423, + "observedFirstContentfulPaintTs": 242687057, + "observedFirstContentfulPaintAllFrames": 2423, + "observedFirstContentfulPaintAllFramesTs": 242687057, + "observedFirstMeaningfulPaint": 2423, + "observedFirstMeaningfulPaintTs": 242687057, + "observedLargestContentfulPaint": 2722, + "observedLargestContentfulPaintTs": 242986141, + "observedLargestContentfulPaintAllFrames": 2722, + "observedLargestContentfulPaintAllFramesTs": 242986141, + "observedTraceEnd": 5272, + "observedTraceEndTs": 245536407, + "observedLoad": 2025, + "observedLoadTs": 242288725, + "observedDomContentLoaded": 2025, + "observedDomContentLoadedTs": 242288662, + "observedCumulativeLayoutShift": 0.0024329955842759873, + "observedCumulativeLayoutShiftMainFrame": 0.0024329955842759873, + "observedTotalCumulativeLayoutShift": 0.0024329955842759873, + "observedFirstVisualChange": 2426, + "observedFirstVisualChangeTs": 242689909, + "observedLastVisualChange": 2976, + "observedLastVisualChangeTs": 243239909, + "observedSpeedIndex": 2679, + "observedSpeedIndexTs": 242943282 }, { "lcpInvalidated": false @@ -515850,18 +512587,18 @@ "numScripts": 7, "numStylesheets": 1, "numFonts": 3, - "numTasks": 638, - "numTasksOver10ms": 12, - "numTasksOver25ms": 6, - "numTasksOver50ms": 3, - "numTasksOver100ms": 1, + "numTasks": 639, + "numTasksOver10ms": 9, + "numTasksOver25ms": 3, + "numTasksOver50ms": 2, + "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.025, - "throughput": 5091706.136528477, - "maxRtt": 161.279, - "maxServerLatency": 175.50700000000003, - "totalByteWeight": 1673134, - "totalTaskTime": 558.7119999999987, + "rtt": 5.130999999999999, + "throughput": 10921827.512169663, + "maxRtt": 93.481, + "maxServerLatency": 3.426000000000002, + "totalByteWeight": 1674181, + "totalTaskTime": 371.03399999999885, "mainDocumentTransferSize": 1824 } ] @@ -515949,7 +512686,7 @@ "cookiesCount": 2, "trackersGrade": "F", "trackersCount": 11, - "lighthouse_performance": 0.8808750152587891, + "lighthouse_performance": 0.8806753158569336, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.93, "lighthouse_accessibilityGrade": "A", @@ -515975,7 +512712,7 @@ "http": { "url": "https://mobiville.pole-emploi.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 18:32:59 GMT", + "end_time": "Sun, 14 Jan 2024 18:09:21 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -515983,10 +512720,10 @@ "Cache-Control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 18:32:57 GMT", + "Date": "Sun, 14 Jan 2024 18:09:20 GMT", "Last-Modified": "Thu, 14 Dec 2023 16:17:00 GMT", "Referrer-Policy": "no-referrer-when-downgrade", - "Set-Cookie": "Path=/; HttpOnly; Secure, BIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure, TS014195a1=0150c672c3af9779a1b26691bee954e30de96acace6e3e750ae3a188e5586ae7b25c31aba1959cd6c2d8ffb1323841ddd10a06dcf0; Path=/; Domain=.candidat.pole-emploi.fr", + "Set-Cookie": "Path=/; HttpOnly; Secure, BIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure, TS014195a1=0150c672c343fd7abf3223f013e5ea7c3b1156908734ed97599a5eb260a08480b08db829259eb60cce2786e2d94fcb4662fb14063b; Path=/; Domain=.candidat.pole-emploi.fr", "Strict-Transport-Security": "max-age=31536000; includeSubDomains; preload", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", @@ -515994,9 +512731,9 @@ "X-Frame-Options": "DENY", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 46237067, + "scan_id": 46495915, "score": 70, - "start_time": "Sun, 07 Jan 2024 18:32:53 GMT", + "start_time": "Sun, 14 Jan 2024 18:09:15 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -516239,39 +512976,39 @@ "vulnerabilities": [ { "cvss": "6.8", - "is_exploit": "false", + "type": "cve", "id": "CVE-2020-15778", - "type": "cve" + "is_exploit": "false" }, { "cvss": "6.8", - "is_exploit": "true", + "type": "githubexploit", "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3", - "type": "githubexploit" + "is_exploit": "true" }, { "cvss": "6.8", - "is_exploit": "true", + "type": "githubexploit", "id": "10213DBE-F683-58BB-B6D3-353173626207", - "type": "githubexploit" + "is_exploit": "true" }, { "cvss": "5.0", - "is_exploit": "false", + "type": "prion", "id": "PRION:CVE-2020-12062", - "type": "prion" + "is_exploit": "false" }, { "cvss": "5.0", - "is_exploit": "false", + "type": "prion", "id": "PRION:CVE-2016-20012", - "type": "prion" + "is_exploit": "false" }, { "cvss": "5.0", - "is_exploit": "false", + "type": "cve", "id": "CVE-2020-12062", - "type": "cve" + "is_exploit": "false" } ] } @@ -516652,7 +513389,7 @@ "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "OK", - "finding": "158 >= 60 days" + "finding": "151 >= 60 days" }, { "id": "cert_notBefore", @@ -516862,7 +513599,7 @@ "ip": "mobiville.pole-emploi.fr/51.68.80.218", "port": "443", "severity": "INFO", - "finding": "1704652479" + "finding": "1705255864" }, { "id": "HSTS_time", @@ -517572,11 +514309,11 @@ }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=475540&idclient=lr3u15nveuu77o4r" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/home-bg.4e918c4b2800bcb748fa.avif" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/home-bg.4e918c4b2800bcb748fa.avif" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-500.f25d774ecfe0996f8eb5.woff2" }, { "type": "unknown", @@ -517584,11 +514321,15 @@ }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-500.f25d774ecfe0996f8eb5.woff2" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/guide-banner-mobile.b55883ebdb202a57031f.png" }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-italic.e10742dbb1d4a0864ba8.woff2" + "url": "https://candidat.pole-emploi.fr/mobiville/api/helps/get-previews" + }, + { + "type": "unknown", + "url": "https://hd.pe.fr/event?s=475540&idclient=lrdt9rbgx5es4p2v" }, { "type": "unknown", @@ -517596,7 +514337,7 @@ }, { "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/api/helps/get-previews" + "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-italic.e10742dbb1d4a0864ba8.woff2" }, { "type": "unknown", @@ -517614,10 +514355,6 @@ "type": "unknown", "url": "https://candidat.pole-emploi.fr/mobiville/static/media/roboto-v30-latin-700italic.d92a5d1451f249359639.woff2" }, - { - "type": "unknown", - "url": "https://candidat.pole-emploi.fr/mobiville/static/media/guide-banner-mobile.b55883ebdb202a57031f.png" - }, { "type": "unknown", "url": "https://candidat.pole-emploi.fr/mobiville/help-logos/120px/pole-emploi.png" @@ -517658,7 +514395,7 @@ "cookies": [ { "name": "TS014195a1", - "value": "0150c672c3439f595236d90ec6b4965cd09dc13d1302d92a4ab4db0aca510be5b7a96487447fcfce007a269f77a2848d5b2338cdaa", + "value": "0150c672c36bb5ca8eab30cff0fa8b7db318c7d2169c11ef9e4da7fa276fc59471f74e0681149a99560daebd05dd5eaf7209dab384", "domain": ".candidat.pole-emploi.fr", "path": "/", "expires": -1, @@ -517703,10 +514440,10 @@ "cache-control": "no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 18:33:28 GMT", + "date": "Sun, 14 Jan 2024 18:09:52 GMT", "last-modified": "Thu, 14 Dec 2023 16:17:00 GMT", "referrer-policy": "no-referrer-when-downgrade", - "set-cookie": "Path=/; HttpOnly; Secure\nBIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure\nTS014195a1=0150c672c3439f595236d90ec6b4965cd09dc13d1302d92a4ab4db0aca510be5b7a96487447fcfce007a269f77a2848d5b2338cdaa; Path=/; Domain=.candidat.pole-emploi.fr", + "set-cookie": "Path=/; HttpOnly; Secure\nBIGipServerPOOL_Z2_PROD_MOP_HTTP=2023492362.20480.0000; path=/; Httponly; Secure\nTS014195a1=0150c672c36bb5ca8eab30cff0fa8b7db318c7d2169c11ef9e4da7fa276fc59471f74e0681149a99560daebd05dd5eaf7209dab384; Path=/; Domain=.candidat.pole-emploi.fr", "strict-transport-security": "max-age=31536000; includeSubDomains; preload", "transfer-encoding": "chunked", "vary": "Accept-Encoding", @@ -517749,7 +514486,7 @@ } }, "location": { - "accuracy_radius": 1000, + "accuracy_radius": 500, "latitude": 48.8582, "longitude": 2.3387, "time_zone": "Europe/Paris" @@ -517829,7 +514566,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.251.46.202", + "ip": "142.250.217.138", "geoip": { "continent": { "code": "NA", @@ -517849,7 +514586,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -517869,7 +514606,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -518071,7 +514808,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -518091,7 +514828,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -518119,7 +514856,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "65.8.161.16", + "ip": "13.33.21.125", "geoip": { "continent": { "code": "NA", @@ -518139,7 +514876,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -518159,7 +514896,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -518173,7 +514910,7 @@ }, { "hostname": "hd.pe.fr", - "ip": "18.239.199.19", + "ip": "18.164.174.84", "geoip": { "continent": { "code": "NA", @@ -518193,7 +514930,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -518213,7 +514950,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -518283,7 +515020,7 @@ }, { "hostname": "privacy.trustcommander.net", - "ip": "35.181.254.247", + "ip": "15.188.71.235", "geoip": { "city": { "geoname_id": 2988507, @@ -518340,7 +515077,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -518359,7 +515096,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -518449,7 +515188,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 18:32:25", + "@generated": "Sun, 14 Jan 2024 18:08:47", "site": [ { "@name": "https://mobiville.pole-emploi.fr", @@ -518575,22 +515314,23 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -518607,9 +515347,9 @@ "host": "mobiville.pole-emploi.fr.", "matched-at": "mobiville.pole-emploi.fr", "extracted-results": [ - "\"v=spf1 a mx ip4:213.32.73.220 include:spf.mailjet.com ?all\" \"\"" + "10 213.32.73.220." ], - "timestamp": "2024-01-07T18:36:40.915897788Z", + "timestamp": "2024-01-14T18:13:05.626101911Z", "matcher-status": true }, { @@ -518644,27 +515384,26 @@ "type": "dns", "host": "mobiville.pole-emploi.fr.", "matched-at": "mobiville.pole-emploi.fr", - "timestamp": "2024-01-07T18:36:41.071727908Z", + "timestamp": "2024-01-14T18:13:05.808470704Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -518681,9 +515420,9 @@ "host": "mobiville.pole-emploi.fr.", "matched-at": "mobiville.pole-emploi.fr", "extracted-results": [ - "10 213.32.73.220." + "\"v=spf1 a mx ip4:213.32.73.220 include:spf.mailjet.com ?all\" \"\"" ], - "timestamp": "2024-01-07T18:36:41.922277374Z", + "timestamp": "2024-01-14T18:13:05.808717931Z", "matcher-status": true }, { @@ -518709,7 +515448,7 @@ "host": "https://mobiville.pole-emploi.fr", "matched-at": "https://mobiville.pole-emploi.fr", "ip": "51.68.80.218", - "timestamp": "2024-01-07T18:37:56.465470706Z", + "timestamp": "2024-01-14T18:14:24.43240853Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobiville.pole-emploi.fr'", "matcher-status": true }, @@ -518749,7 +515488,7 @@ "host": "https://mobiville.pole-emploi.fr", "matched-at": "https://mobiville.pole-emploi.fr/", "ip": "51.68.80.218", - "timestamp": "2024-01-07T18:39:08.585657633Z", + "timestamp": "2024-01-14T18:15:37.773721059Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mobiville.pole-emploi.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mobiville.pole-emploi.fr/'", "matcher-status": true }, @@ -518799,7 +515538,7 @@ "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11" ], "ip": "51.68.80.218", - "timestamp": "2024-01-07T18:40:21.099633389Z", + "timestamp": "2024-01-14T18:16:51.282040928Z", "matcher-status": true }, { @@ -518829,7 +515568,7 @@ "Entrust, Inc." ], "ip": "51.68.80.218", - "timestamp": "2024-01-07T18:41:11.26999329Z", + "timestamp": "2024-01-14T18:17:42.06668838Z", "matcher-status": true }, { @@ -518859,7 +515598,7 @@ "mobiville.pole-emploi.fr" ], "ip": "51.68.80.218", - "timestamp": "2024-01-07T18:41:11.270119856Z", + "timestamp": "2024-01-14T18:17:42.066811229Z", "matcher-status": true }, { @@ -518890,7 +515629,7 @@ "tls12" ], "ip": "51.68.80.218", - "timestamp": "2024-01-07T18:41:13.548161239Z", + "timestamp": "2024-01-14T18:17:44.087724672Z", "matcher-status": true } ], @@ -518898,7 +515637,7 @@ { "requestedUrl": "https://mobiville.pole-emploi.fr/", "finalUrl": "https://candidat.pole-emploi.fr/mobiville/", - "fetchTime": "2024-01-07T18:32:39.458Z", + "fetchTime": "2024-01-14T18:09:02.306Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mobiville.pole-emploi.fr/) was redirected to https://candidat.pole-emploi.fr/mobiville/. Try testing the second URL directly." ], @@ -518963,53 +515702,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 13130, + "numericValue": 13147, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3796, - "firstMeaningfulPaint": 5072, - "largestContentfulPaint": 10507, - "interactive": 13130, - "speedIndex": 6935, - "totalBlockingTime": 232, - "maxPotentialFID": 188, + "firstContentfulPaint": 3721, + "firstMeaningfulPaint": 5233, + "largestContentfulPaint": 10549, + "interactive": 13147, + "speedIndex": 6946, + "totalBlockingTime": 194, + "maxPotentialFID": 187, "cumulativeLayoutShift": 0.8054050408469305, "cumulativeLayoutShiftMainFrame": 0.8054050408469305, "totalCumulativeLayoutShift": 0.8054050408469305, "observedTimeOrigin": 0, - "observedTimeOriginTs": 264650576, + "observedTimeOriginTs": 491763498, "observedNavigationStart": 0, - "observedNavigationStartTs": 264650576, - "observedFirstPaint": 1719, - "observedFirstPaintTs": 266369779, - "observedFirstContentfulPaint": 1719, - "observedFirstContentfulPaintTs": 266369779, - "observedFirstContentfulPaintAllFrames": 1719, - "observedFirstContentfulPaintAllFramesTs": 266369779, - "observedFirstMeaningfulPaint": 2236, - "observedFirstMeaningfulPaintTs": 266886744, - "observedLargestContentfulPaint": 2584, - "observedLargestContentfulPaintTs": 267234558, - "observedLargestContentfulPaintAllFrames": 2584, - "observedLargestContentfulPaintAllFramesTs": 267234558, - "observedTraceEnd": 5556, - "observedTraceEndTs": 270206210, - "observedLoad": 1687, - "observedLoadTs": 266337083, - "observedDomContentLoaded": 1686, - "observedDomContentLoadedTs": 266336593, + "observedNavigationStartTs": 491763498, + "observedFirstPaint": 1611, + "observedFirstPaintTs": 493374426, + "observedFirstContentfulPaint": 1611, + "observedFirstContentfulPaintTs": 493374426, + "observedFirstContentfulPaintAllFrames": 1611, + "observedFirstContentfulPaintAllFramesTs": 493374426, + "observedFirstMeaningfulPaint": 2250, + "observedFirstMeaningfulPaintTs": 494013568, + "observedLargestContentfulPaint": 2408, + "observedLargestContentfulPaintTs": 494171019, + "observedLargestContentfulPaintAllFrames": 2408, + "observedLargestContentfulPaintAllFramesTs": 494171019, + "observedTraceEnd": 5267, + "observedTraceEndTs": 497030889, + "observedLoad": 1561, + "observedLoadTs": 493324353, + "observedDomContentLoaded": 1560, + "observedDomContentLoadedTs": 493323863, "observedCumulativeLayoutShift": 0.8054050408469305, "observedCumulativeLayoutShiftMainFrame": 0.8054050408469305, "observedTotalCumulativeLayoutShift": 0.8054050408469305, - "observedFirstVisualChange": 2105, - "observedFirstVisualChangeTs": 266755576, - "observedLastVisualChange": 3596, - "observedLastVisualChangeTs": 268246576, - "observedSpeedIndex": 2584, - "observedSpeedIndexTs": 267234291 + "observedFirstVisualChange": 2050, + "observedFirstVisualChangeTs": 493813498, + "observedLastVisualChange": 3000, + "observedLastVisualChangeTs": 494763498, + "observedSpeedIndex": 2459, + "observedSpeedIndexTs": 494222564 }, { "lcpInvalidated": false @@ -519031,18 +515770,18 @@ "numScripts": 16, "numStylesheets": 7, "numFonts": 8, - "numTasks": 881, + "numTasks": 879, "numTasksOver10ms": 11, - "numTasksOver25ms": 4, + "numTasksOver25ms": 3, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.503, - "throughput": 14212856.524921397, - "maxRtt": 161.364, - "maxServerLatency": 175.84500000000003, - "totalByteWeight": 928354, - "totalTaskTime": 509.14799999999883, + "rtt": 8.610000000000014, + "throughput": 21921720.29794656, + "maxRtt": 151.329, + "maxServerLatency": 66.17899999999997, + "totalByteWeight": 927557, + "totalTaskTime": 532.2839999999989, "mainDocumentTransferSize": 1515 } ] @@ -519175,7 +515914,7 @@ "http": { "url": "https://www.monservicesecurise.ssi.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 18:46:07 GMT", + "end_time": "Sun, 14 Jan 2024 18:26:14 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -519183,23 +515922,23 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 18:46:05 GMT", - "ETag": "W/\"14c4-JGsF9Op3Zj/Eil4Fzc3Z7mjaCM0\"", - "Set-Cookie": "token=eyJfY3NyZlNlY3JldCI6Ik5VRURvRHRWUmVZK0d3PT0iLCJtYWludGVuYW50IjoyODQxMDg4Nn0=; path=/; expires=Sun, 07 Jan 2024 19:46:05 GMT; samesite=strict; secure; httponly, token.sig=IzAX0ALehctzsgEJ-tOvc_9UjYE; path=/; expires=Sun, 07 Jan 2024 19:46:05 GMT; samesite=strict; secure; httponly, sc-sticky-session=FxvDO09DbjFWz8R4I/L0K/7YOkEJscjQU3gXR5bvnC7rci7HUbMGqX6YU8jehok6Y8iw3FFQWm11lHSSfRYO84fNaLUNXyIODPpolomq848=; Expires=Mon, 08-Jan-24 18:46:05 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "Date": "Sun, 14 Jan 2024 18:26:13 GMT", + "ETag": "W/\"152a-019XQ6D7hpKg5kPznFDIoJKzgdU\"", + "Set-Cookie": "token=eyJfY3NyZlNlY3JldCI6ImdTSUhKYmJsaERXdGx3PT0iLCJtYWludGVuYW50IjoyODQyMDk0Nn0=; path=/; expires=Sun, 14 Jan 2024 19:26:13 GMT; samesite=strict; secure; httponly, token.sig=K8u8I25SkDoW0Ny3YCz-4wEA34A; path=/; expires=Sun, 14 Jan 2024 19:26:13 GMT; samesite=strict; secure; httponly, sc-sticky-session=89bEsjI4J84S96Rc4L0Br5U7lxqgwRoHb0VBU00ihj92iA80xPGidvfl2mHX3SjCitx29AahQkjmkKyluEA4ihufDCpyYkEhPsJ22QTSkyc=; Expires=Mon, 15-Jan-24 18:26:13 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "X-RateLimit-Limit": "600", "X-RateLimit-Remaining": "598", - "X-RateLimit-Reset": "1704653207", - "X-Request-ID": "6a0fc900-c02b-41cc-953c-18e8b80486fb", + "X-RateLimit-Reset": "1705256821", + "X-Request-ID": "30bfba22-3183-434d-85ee-7f5123d7834b", "content-security-policy": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/", "referrer-policy": "no-referrer", "x-content-type-options": "nosniff", "x-frame-options": "deny" }, - "scan_id": 46237109, + "scan_id": 46497121, "score": 115, - "start_time": "Sun, 07 Jan 2024 18:45:43 GMT", + "start_time": "Sun, 14 Jan 2024 18:26:10 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -519212,8 +515951,8 @@ "output": { "data": { "connect-src": [ - "https://stats.beta.gouv.fr/matomo.php", - "'self'" + "'self'", + "https://stats.beta.gouv.fr/matomo.php" ], "default-src": [ "'self'" @@ -519222,8 +515961,8 @@ "https://metabase.monservicesecurise.ssi.gouv.fr/" ], "img-src": [ - "data:", - "'self'" + "'self'", + "data:" ], "script-src": [ "'self'" @@ -519269,7 +516008,7 @@ "data": { "sc-sticky-session": { "domain": "www.monservicesecurise.ssi.gouv.fr", - "expires": 1704739566, + "expires": 1705343174, "httponly": true, "max-age": null, "path": "/", @@ -519279,7 +516018,7 @@ }, "token": { "domain": "www.monservicesecurise.ssi.gouv.fr", - "expires": 1704656765, + "expires": 1705260373, "httponly": true, "max-age": null, "path": "/", @@ -519289,7 +516028,7 @@ }, "token.sig": { "domain": "www.monservicesecurise.ssi.gouv.fr", - "expires": 1704656765, + "expires": 1705260373, "httponly": true, "max-age": null, "path": "/", @@ -519453,8 +516192,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T18:59:47Z", - "next_check_at": "2024-01-07T19:04:45Z", + "last_check_at": "2024-01-14T18:39:58Z", + "next_check_at": "2024-01-14T18:44:56Z", "created_at": "2023-10-10T07:28:36Z", "mute_until": null, "favicon_url": "https://www.monservicesecurise.ssi.gouv.fr/statique/assets/images/favicons/favicon.ico", @@ -519462,7 +516201,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T18:34:58Z", + "tested_at": "2024-01-14T18:05:08Z", "expires_at": "2024-06-14T21:59:59Z", "valid": true, "error": null @@ -519471,11 +516210,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 16, + "namelookup": 28, "connection": 18, - "handshake": 23, - "response": 25, - "total": 82 + "handshake": 24, + "response": 24, + "total": 94 } }, "uptimeGrade": "A", @@ -519508,77 +516247,77 @@ "testssl": [ { "id": "service", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519586,7 +516325,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519594,7 +516333,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519602,7 +516341,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -519610,7 +516349,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -519618,7 +516357,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -519626,490 +516365,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "152 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-06-15 22:00" }, { "id": "cert_notAfter", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-06-14 21:59" }, { "id": "cert_extlifeSpan", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704653262" + "finding": "1705256863" }, { "id": "HSTS_time", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3 at '/'" }, { "id": "cookie_secure", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "X-Content-Type-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -520117,7 +516856,7 @@ }, { "id": "heartbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -520126,7 +516865,7 @@ }, { "id": "CCS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -520135,7 +516874,7 @@ }, { "id": "ticketbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -520144,7 +516883,7 @@ }, { "id": "ROBOT", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -520153,7 +516892,7 @@ }, { "id": "secure_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -520161,7 +516900,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -520170,7 +516909,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -520179,7 +516918,7 @@ }, { "id": "BREACH", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -520188,7 +516927,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -520197,14 +516936,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -520213,7 +516952,7 @@ }, { "id": "FREAK", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -520222,7 +516961,7 @@ }, { "id": "DROWN", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -520231,7 +516970,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -520240,7 +516979,7 @@ }, { "id": "LOGJAM", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -520249,7 +516988,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -520258,7 +516997,7 @@ }, { "id": "BEAST", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -520267,7 +517006,7 @@ }, { "id": "LUCKY13", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -520276,7 +517015,7 @@ }, { "id": "winshock", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -520285,7 +517024,7 @@ }, { "id": "RC4", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -520294,392 +517033,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520687,7 +517426,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520695,7 +517434,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520703,7 +517442,7 @@ }, { "id": "cipherlist_LOW", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -520711,7 +517450,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -520719,7 +517458,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -520727,490 +517466,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "152 >= 60 days" }, { "id": "cert_notBefore", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-06-15 22:00" }, { "id": "cert_notAfter", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-06-14 21:59" }, { "id": "cert_extlifeSpan", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://crl.dhimyotis.com/servicesca.crl http://crl.certigna.fr/servicesca.crl" }, { "id": "cert_ocspURL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://servicesca.ocsp.certigna.fr http://servicesca.ocsp.dhimyotis.com" }, { "id": "OCSP_stapling", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Certigna Services CA (DHIMYOTIS from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIGFjCCBP6gAwIBAgIQb4L6KKzW94S7WxILqHNnrTANBgkqhkiG9w0BAQsFADA0MQswCQYDVQQGEwJGUjESMBAGA1UECgwJRGhpbXlvdGlzMREwDwYDVQQDDAhDZXJ0aWduYTAeFw0xNTExMjUxMTMzNTJaFw0yNTExMjIxMTMzNTJaMH0xCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlESElNWU9USVMxHDAaBgNVBAsMEzAwMDIgNDgxNDYzMDgxMDAwMzYxHTAbBgNVBGEMFE5UUkZSLTQ4MTQ2MzA4MTAwMDM2MR0wGwYDVQQDDBRDZXJ0aWduYSBTZXJ2aWNlcyBDQTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALPM+7LpWBz9wFcPaTc3xnB+5g0XrnptB0EPPfrR04vO52Ykm4ky1d4ZLd10tbM1fa1RqNSOVWWg93O4pL7zCFKlz6JV74ZZVhHpEAwzBwv2oPnxvVbxtSN67xsSY66ahUYxjzs8+3FhmsiRxqwnTYvK2u70uglUvRisOKyTL/M6JnrC4y8tlmoz7OSa5BmBMVplJFQtvmON6N9aHLvYMz+EyJPCbXL6pELxeHjFT5QmIaRamsr2DOTaCjtBZKI1Wnh3X7lnbjM8MESJiV2t7E9tIQNG0Z/HI3tO4aaUMum3KysY5sC8v3vi7rryGidgzHQhrtP0ZXWW5UH/k7umLS/P/XXWnCFpc2Lxa1uDGfc2im7xibRoPP+JNZszN76euFlls6jyEXAiwnVr14tVVTewLK0OWs5SJHpEKp8PGMZRDj59EmMvokWwzL6QzNZ6vVAp00oOm05sbspNY9+MFqGKKUsKvhFGEa4XmRNxDe6KswLcjPZB+NKHZ0QWFd4ip5C5XmEK/8qIPjwVr9dah9+oiHGGO8Wx7gJAMF5DTmkvW7GhqCKj1LmHnabjzc8av6kxWVQZi/C7HCm9i/W4wio+JA2EAFLqNL3GPNbK9kau4yPhQt/c7zxzo0OHnlsV4THCG7oOCd3cfCiyfQcb3FBt6OSpaKRZxjCLBwP00r0fAgMBAAGjggHZMIIB1TASBgNVHRMBAf8ECDAGAQH/AgEAMA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUrOyGj0s3HLh/FxsZ0K7oTuM0XBIwZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzjAQ/JSP8wSQYDVR0gBEIwQDA+BgoqgXoBgTEBAAECMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmNlcnRpZ25hLmZyL2F1dG9yaXRlcy8wfAYIKwYBBQUHAQEEcDBuMDQGCCsGAQUFBzAChihodHRwOi8vYXV0b3JpdGUuY2VydGlnbmEuZnIvY2VydGlnbmEuZGVyMDYGCCsGAQUFBzAChipodHRwOi8vYXV0b3JpdGUuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5kZXIwYQYDVR0fBFowWDApoCegJYYjaHR0cDovL2NybC5jZXJ0aWduYS5mci9jZXJ0aWduYS5jcmwwK6ApoCeGJWh0dHA6Ly9jcmwuZGhpbXlvdGlzLmNvbS9jZXJ0aWduYS5jcmwwDQYJKoZIhvcNAQELBQADggEBAGLft7gIuGPZVfg0cTM+HT2xAZFPDb/2+siH06x+dH044zMKbBINbRzhKipwB1A3MW8FQjveE9tyrfyuqZE/X+o2SlGcdNV44ybYkxo4f6kcLEavV/IW+oFEnojZlhpksYcxrvQoEyqkAwshe8IS2KtZHKVACrt+XSs0lwvy7ALGmHaF7A4by6cZWItA7Lhj8XWp+8tBJDj7HocRbWtxzEODdBuyMgJzFrNjc+97J0vH/K0+3yjmkczpKshMA0tM+MF9XDMN/MuwrPmUWGO/fHiqHgUp8yqeWtl1n44ZxkkK1t9GRwhnDWLv73/xhTmdhWYQ/reo0GbgBoLiltKmIJQ=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "71E653BFBF5E72515B4099BBD5EC8872812B47C6EC1FA9ADD327E1C92C9EA16D" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2015-11-25 11:33" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-11-22 11:33" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Certigna Services CA <-- Certigna" }, { "id": "intermediate_cert_badOCSP", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704653320" + "finding": "1705256917" }, { "id": "HSTS_time", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3 at '/'" }, { "id": "cookie_secure", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "All (3) at '/' marked as HttpOnly" }, { "id": "X-Frame-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "deny" }, { "id": "X-Content-Type-Options", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/" }, { "id": "Referrer-Policy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "banner_reverseproxy", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -521218,7 +517957,7 @@ }, { "id": "heartbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -521227,7 +517966,7 @@ }, { "id": "CCS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -521236,7 +517975,7 @@ }, { "id": "ticketbleed", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -521245,7 +517984,7 @@ }, { "id": "ROBOT", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -521254,7 +517993,7 @@ }, { "id": "secure_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -521262,7 +518001,7 @@ }, { "id": "secure_client_renego", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -521271,7 +518010,7 @@ }, { "id": "CRIME_TLS", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -521280,7 +518019,7 @@ }, { "id": "BREACH", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -521289,7 +518028,7 @@ }, { "id": "POODLE_SSL", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -521298,14 +518037,14 @@ }, { "id": "fallback_SCSV", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -521314,7 +518053,7 @@ }, { "id": "FREAK", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -521323,7 +518062,7 @@ }, { "id": "DROWN", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -521332,7 +518071,7 @@ }, { "id": "DROWN_hint", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -521341,7 +518080,7 @@ }, { "id": "LOGJAM", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -521350,7 +518089,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -521359,7 +518098,7 @@ }, { "id": "BEAST", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -521368,7 +518107,7 @@ }, { "id": "LUCKY13", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -521377,7 +518116,7 @@ }, { "id": "winshock", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -521386,7 +518125,7 @@ }, { "id": "RC4", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -521395,315 +518134,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.13.145", + "ip": "www.monservicesecurise.ssi.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" @@ -522055,7 +518794,7 @@ "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "159 >= 60 days" + "finding": "152 >= 60 days" }, { "id": "cert_notBefore", @@ -522216,7 +518955,7 @@ "ip": "www.monservicesecurise.ssi.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704653379" + "finding": "1705256971" }, { "id": "HSTS_time", @@ -523156,7 +519895,7 @@ "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "159 >= 60 days" + "finding": "152 >= 60 days" }, { "id": "cert_notBefore", @@ -523310,14 +520049,14 @@ "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704653436" + "finding": "1705257026" }, { "id": "HSTS_time", @@ -523915,7 +520654,7 @@ "ip": "www.monservicesecurise.ssi.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "235" + "finding": "220" } ], "thirdparties": { @@ -523926,7 +520665,7 @@ "value": "1", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1704655001, + "expires": 1705258606, "size": 16, "httpOnly": false, "secure": false, @@ -523938,10 +520677,10 @@ }, { "name": "_pk_id.28.64a2", - "value": "5b698dd11bc06737.1704653202.", + "value": "38d3fa66c7b6c4b5.1705256807.", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1738608402, + "expires": 1739212007, "size": 42, "httpOnly": false, "secure": false, @@ -523953,10 +520692,10 @@ }, { "name": "token.sig", - "value": "QtQJY4ZPTVsATwg1IcmxQRUQZqk", + "value": "PS9YIY4LGXH3-ninNayLUQ-91KI", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1704656800.994457, + "expires": 1705260406.51417, "size": 36, "httpOnly": true, "secure": true, @@ -523968,10 +520707,10 @@ }, { "name": "sc-sticky-session", - "value": "Gy3nAx22o6I7P4+GjOUQS1JQsBfodbhIGRXgqY9DwyBSf5bhSAVXEdx70VNVO0X4LAD3y2n3e8odwxCWJ4Do+nla1rUNi0QNzkKzKmGNzxE=", + "value": "89bEsjI4J84S96Rc4L0Brwatdb0+PJx29w4KeWUYmbxj1+vW2TbwfhIFK7XAChc/Fu3plf7jn5X2AaOMXIFxzBFKdbyKsk7goAYvccfn/co=", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1704739601.711753, + "expires": 1705343207.145933, "size": 125, "httpOnly": true, "secure": true, @@ -523983,10 +520722,10 @@ }, { "name": "token", - "value": "eyJfY3NyZlNlY3JldCI6IjU3MHlnWHVOYmNwLzVBPT0iLCJtYWludGVuYW50IjoyODQxMDg4Nn0=", + "value": "eyJfY3NyZlNlY3JldCI6IkVEc3JvZ05tZnF3QWV3PT0iLCJtYWludGVuYW50IjoyODQyMDk0Nn0=", "domain": "www.monservicesecurise.ssi.gouv.fr", "path": "/", - "expires": 1704656800.994347, + "expires": 1705260406.514045, "size": 81, "httpOnly": true, "secure": true, @@ -524001,22 +520740,22 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; connect-src 'self' https://stats.beta.gouv.fr/matomo.php; img-src 'self' data:; script-src 'self'; frame-src https://metabase.monservicesecurise.ssi.gouv.fr/", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 18:46:40 GMT", - "etag": "W/\"14c4-XpOzYXOkYnTgFnQn+mRVhaKO/34\"", + "date": "Sun, 14 Jan 2024 18:26:46 GMT", + "etag": "W/\"152a-nvO6fEfWNWzvpZY9Baq65FzPF1A\"", "referrer-policy": "no-referrer", - "set-cookie": "token=eyJfY3NyZlNlY3JldCI6IjU3MHlnWHVOYmNwLzVBPT0iLCJtYWludGVuYW50IjoyODQxMDg4Nn0=; path=/; expires=Sun, 07 Jan 2024 19:46:40 GMT; samesite=strict; secure; httponly\ntoken.sig=QtQJY4ZPTVsATwg1IcmxQRUQZqk; path=/; expires=Sun, 07 Jan 2024 19:46:40 GMT; samesite=strict; secure; httponly\nsc-sticky-session=Gy3nAx22o6I7P4+GjOUQS1JQsBfodbhIGRXgqY9DwyBSf5bhSAVXEdx70VNVO0X4LAD3y2n3e8odwxCWJ4Do+nla1rUNi0QNzkKzKmGNzxE=; Expires=Mon, 08-Jan-24 18:46:40 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", + "set-cookie": "token=eyJfY3NyZlNlY3JldCI6IkVEc3JvZ05tZnF3QWV3PT0iLCJtYWludGVuYW50IjoyODQyMDk0Nn0=; path=/; expires=Sun, 14 Jan 2024 19:26:46 GMT; samesite=strict; secure; httponly\ntoken.sig=PS9YIY4LGXH3-ninNayLUQ-91KI; path=/; expires=Sun, 14 Jan 2024 19:26:46 GMT; samesite=strict; secure; httponly\nsc-sticky-session=89bEsjI4J84S96Rc4L0Brwatdb0+PJx29w4KeWUYmbxj1+vW2TbwfhIFK7XAChc/Fu3plf7jn5X2AaOMXIFxzBFKdbyKsk7goAYvccfn/co=; Expires=Mon, 15-Jan-24 18:26:46 GMT; Max-Age=86400; Path=/; Secure; HttpOnly; SameSite=None", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "deny", "x-ratelimit-limit": "600", "x-ratelimit-remaining": "599", - "x-ratelimit-reset": "1704653207", - "x-request-id": "dd557ad5-8524-499e-afc7-64701ec90896" + "x-ratelimit-reset": "1705256822", + "x-request-id": "02a19fdf-17ca-4fd2-abf2-7ca9602766a5" }, "endpoints": [ { "hostname": "www.monservicesecurise.ssi.gouv.fr", - "ip": "148.253.96.193", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -524210,7 +520949,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 18:45:19", + "@generated": "Sun, 14 Jan 2024 18:25:45", "site": [ { "@name": "https://www.monservicesecurise.ssi.gouv.fr", @@ -524335,6 +521074,41 @@ ] }, "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "www.monservicesecurise.ssi.gouv.fr.", + "matched-at": "www.monservicesecurise.ssi.gouv.fr", + "timestamp": "2024-01-14T18:31:50.183931016Z", + "matcher-status": true + }, { "template": "dns/dns-saas-service-detection.yaml", "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", @@ -524367,110 +521141,110 @@ "extracted-results": [ "monservicesecurise.ssi.gouv.fr." ], - "timestamp": "2024-01-07T18:52:07.490223617Z", + "timestamp": "2024-01-14T18:31:50.287324841Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "http/miscellaneous/options-method.yaml", + "template-url": "https://templates.nuclei.sh/public/options-method", + "template-id": "options-method", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/options-method.yaml", "info": { - "name": "CAA Record", + "name": "Allowed Options Method", "author": [ "pdteam" ], "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "misc", + "generic" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, - "type": "dns", - "host": "www.monservicesecurise.ssi.gouv.fr.", - "matched-at": "www.monservicesecurise.ssi.gouv.fr", - "timestamp": "2024-01-07T18:52:07.707472581Z", + "type": "http", + "host": "https://www.monservicesecurise.ssi.gouv.fr", + "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", + "extracted-results": [ + "GET,HEAD" + ], + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:31:57.207667248Z", + "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, { - "template": "http/miscellaneous/options-method.yaml", - "template-url": "https://templates.nuclei.sh/public/options-method", - "template-id": "options-method", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/options-method.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "Allowed Options Method", + "name": "HTTP Missing Security Headers", "author": [ - "pdteam" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "misc", + "misconfig", + "headers", "generic" ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { "max-request": 1 } }, + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", - "extracted-results": [ - "GET,HEAD" - ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:52:15.597256935Z", - "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.430093517Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, { - "template": "http/misconfiguration/httponly-cookie-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/httponly-cookie-detect", - "template-id": "httponly-cookie-detect", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/httponly-cookie-detect.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "HttpOnly Cookie - Detect", + "name": "HTTP Missing Security Headers", "author": [ - "mr. bobo hp" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ "misconfig", - "http", - "cookie", + "headers", "generic" ], - "description": "Checks whether cookies in the HTTP response contain the HttpOnly attribute. If the HttpOnly flag is set, it means that the cookie is HTTP-only\n", - "reference": [ - "https://stackoverflow.com/questions/4316539/how-do-i-test-httponly-cookie-flag" - ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": null, - "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + "max-request": 1 } }, + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:52:20.910532989Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.430150764Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524502,12 +521276,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:52:57.717711311Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.430177724Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524539,12 +521313,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "referrer-policy", "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:52:57.717777215Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.430209484Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524580,8 +521354,8 @@ "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:52:57.71780132Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.430224211Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524613,12 +521387,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:52:57.717816578Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.430242175Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524650,12 +521424,49 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:52:57.717830735Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.430264467Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://www.monservicesecurise.ssi.gouv.fr", + "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.43028207Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, @@ -524691,56 +521502,94 @@ "type": "http", "host": "https://www.monservicesecurise.ssi.gouv.fr", "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:52:57.717846364Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.430297288Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", "matcher-status": true }, { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "Detect SSL Certificate Issuer", + "name": "HTTP Missing Security Headers", "author": [ - "lingtren" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://www.monservicesecurise.ssi.gouv.fr", + "matched-at": "https://www.monservicesecurise.ssi.gouv.fr", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:32:33.430313799Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.monservicesecurise.ssi.gouv.fr'", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" ], "tags": [ "ssl", "tls" ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", "severity": "info", "metadata": { - "max-request": 1 + "max-request": 4 } }, "type": "ssl", "host": "www.monservicesecurise.ssi.gouv.fr", "matched-at": "www.monservicesecurise.ssi.gouv.fr:443", "extracted-results": [ - "DHIMYOTIS" + "tls12" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:59:00.907350247Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:38:38.146769083Z", "matcher-status": true }, { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", "info": { - "name": "SSL DNS Names", + "name": "Detect SSL Certificate Issuer", "author": [ - "pdteam" + "lingtren" ], "tags": [ "ssl", "tls" ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", "severity": "info", "metadata": { "max-request": 1 @@ -524750,46 +521599,45 @@ "host": "www.monservicesecurise.ssi.gouv.fr", "matched-at": "www.monservicesecurise.ssi.gouv.fr:443", "extracted-results": [ - "www.monservicesecurise.ssi.gouv.fr", - "audit.monservicesecurise.ssi.gouv.fr", - "monservicesecurise.ssi.gouv.fr", - "metabase.monservicesecurise.ssi.gouv.fr", - "aide.monservicesecurise.ssi.gouv.fr", - "audit.metabase.monservicesecurise.ssi.gouv.fr" + "DHIMYOTIS" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:59:00.907484177Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:38:38.248313696Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", "info": { - "name": "TLS Version - Detect", + "name": "SSL DNS Names", "author": [ - "pdteam", - "pussycat0x" + "pdteam" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", "severity": "info", "metadata": { - "max-request": 4 + "max-request": 1 } }, "type": "ssl", "host": "www.monservicesecurise.ssi.gouv.fr", "matched-at": "www.monservicesecurise.ssi.gouv.fr:443", "extracted-results": [ - "tls12" + "aide.monservicesecurise.ssi.gouv.fr", + "audit.metabase.monservicesecurise.ssi.gouv.fr", + "www.monservicesecurise.ssi.gouv.fr", + "audit.monservicesecurise.ssi.gouv.fr", + "monservicesecurise.ssi.gouv.fr", + "metabase.monservicesecurise.ssi.gouv.fr" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:59:03.510675967Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:38:38.248436206Z", "matcher-status": true }, { @@ -524819,8 +521667,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T18:59:04.587990025Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T18:38:39.03583374Z", "matcher-status": true } ], @@ -524828,7 +521676,7 @@ { "requestedUrl": "https://www.monservicesecurise.ssi.gouv.fr/", "finalUrl": "https://www.monservicesecurise.ssi.gouv.fr/", - "fetchTime": "2024-01-07T18:45:32.967Z", + "fetchTime": "2024-01-14T18:25:59.427Z", "runWarnings": [], "categories": { "performance": { @@ -524891,53 +521739,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2569, + "numericValue": 2732, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1468, - "firstMeaningfulPaint": 2000, - "largestContentfulPaint": 2600, - "interactive": 2569, - "speedIndex": 1911, - "totalBlockingTime": 35, - "maxPotentialFID": 119, - "cumulativeLayoutShift": 0.007482177734375, - "cumulativeLayoutShiftMainFrame": 0.007482177734375, - "totalCumulativeLayoutShift": 0.007482177734375, + "firstContentfulPaint": 1534, + "firstMeaningfulPaint": 2124, + "largestContentfulPaint": 3024, + "interactive": 2732, + "speedIndex": 2963, + "totalBlockingTime": 54, + "maxPotentialFID": 158, + "cumulativeLayoutShift": 0.014684488932291666, + "cumulativeLayoutShiftMainFrame": 0.014684488932291666, + "totalCumulativeLayoutShift": 0.014684488932291666, "observedTimeOrigin": 0, - "observedTimeOriginTs": 243933366, + "observedTimeOriginTs": 272742322, "observedNavigationStart": 0, - "observedNavigationStartTs": 243933366, - "observedFirstPaint": 752, - "observedFirstPaintTs": 244685726, - "observedFirstContentfulPaint": 752, - "observedFirstContentfulPaintTs": 244685726, - "observedFirstContentfulPaintAllFrames": 752, - "observedFirstContentfulPaintAllFramesTs": 244685726, - "observedFirstMeaningfulPaint": 922, - "observedFirstMeaningfulPaintTs": 244855678, - "observedLargestContentfulPaint": 922, - "observedLargestContentfulPaintTs": 244855678, - "observedLargestContentfulPaintAllFrames": 922, - "observedLargestContentfulPaintAllFramesTs": 244855678, - "observedTraceEnd": 3472, - "observedTraceEndTs": 247405566, - "observedLoad": 944, - "observedLoadTs": 244876925, - "observedDomContentLoaded": 943, - "observedDomContentLoadedTs": 244876800, - "observedCumulativeLayoutShift": 0.007482177734375, - "observedCumulativeLayoutShiftMainFrame": 0.007482177734375, - "observedTotalCumulativeLayoutShift": 0.007482177734375, - "observedFirstVisualChange": 756, - "observedFirstVisualChangeTs": 244689366, - "observedLastVisualChange": 1356, - "observedLastVisualChangeTs": 245289366, - "observedSpeedIndex": 862, - "observedSpeedIndexTs": 244794874 + "observedNavigationStartTs": 272742322, + "observedFirstPaint": 1034, + "observedFirstPaintTs": 273776290, + "observedFirstContentfulPaint": 1034, + "observedFirstContentfulPaintTs": 273776290, + "observedFirstContentfulPaintAllFrames": 1034, + "observedFirstContentfulPaintAllFramesTs": 273776290, + "observedFirstMeaningfulPaint": 2008, + "observedFirstMeaningfulPaintTs": 274750321, + "observedLargestContentfulPaint": 2008, + "observedLargestContentfulPaintTs": 274750321, + "observedLargestContentfulPaintAllFrames": 2008, + "observedLargestContentfulPaintAllFramesTs": 274750321, + "observedTraceEnd": 4575, + "observedTraceEndTs": 277317774, + "observedLoad": 2173, + "observedLoadTs": 274915247, + "observedDomContentLoaded": 1679, + "observedDomContentLoadedTs": 274420889, + "observedCumulativeLayoutShift": 0.014684488932291666, + "observedCumulativeLayoutShiftMainFrame": 0.014684488932291666, + "observedTotalCumulativeLayoutShift": 0.014684488932291666, + "observedFirstVisualChange": 1030, + "observedFirstVisualChangeTs": 273772322, + "observedLastVisualChange": 2180, + "observedLastVisualChangeTs": 274922322, + "observedSpeedIndex": 1582, + "observedSpeedIndexTs": 274324693 }, { "lcpInvalidated": false @@ -524959,19 +521807,19 @@ "numScripts": 11, "numStylesheets": 12, "numFonts": 3, - "numTasks": 452, - "numTasksOver10ms": 4, - "numTasksOver25ms": 3, + "numTasks": 524, + "numTasksOver10ms": 5, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 100.927, - "throughput": 8521604.300187275, - "maxRtt": 100.927, - "maxServerLatency": 50.456, - "totalByteWeight": 330367, - "totalTaskTime": 187.21899999999985, - "mainDocumentTransferSize": 2702 + "rtt": 83.167, + "throughput": 2592530.545896036, + "maxRtt": 83.167, + "maxServerLatency": 174.345, + "totalByteWeight": 352675, + "totalTaskTime": 176.03400000000002, + "mainDocumentTransferSize": 2693 } ] } @@ -524996,7 +521844,8 @@ "uri": "" }, "declaration-a11y": { - "mention": null + "mention": "Accessibilité : non conforme", + "declarationUrl": "https://www.monservicesecurise.ssi.gouv.fr/accessibilite" }, "declaration-rgpd": [ { @@ -525088,7 +521937,7 @@ "statsGrade": "B", "githubRepositoryGrade": "A", "budgetPageGrade": "F", - "declaration-a11y": "F", + "declaration-a11y": "C", "declaration-rgpd-ml": "A", "declaration-rgpd-pc": "A" } @@ -525108,28 +521957,28 @@ "http": { "url": "https://sparte.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 05:33:22 GMT", + "end_time": "Sun, 14 Jan 2024 05:22:58 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Length": "5094", + "Content-Length": "5111", "Content-Type": "text/html; charset=utf-8", "Cross-Origin-Opener-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 05:33:15 GMT", + "Date": "Sun, 14 Jan 2024 05:22:57 GMT", "Referrer-Policy": "same-origin", - "Set-Cookie": "csrftoken=dFHtsOFThe3ZaftjLz6zBoMmBzZkCpxU; expires=Sun, 05 Jan 2025 05:33:15 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "Set-Cookie": "csrftoken=D1OT7qr8FP9Bpl4x8K4MCg4I8ucuoK9w; expires=Sun, 12 Jan 2025 05:22:57 GMT; Max-Age=31449600; Path=/; SameSite=Lax", "Strict-Transport-Security": "max-age=31536000", "Vary": "origin, Cookie, Accept-Encoding", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "a7868359-88b4-4650-af4a-f45085ffe29b" + "X-Request-ID": "52f25dbb-dec8-4463-b2cc-32c08b66ad37" }, - "scan_id": 46229196, + "scan_id": 46455380, "score": 50, - "start_time": "Sun, 07 Jan 2024 05:33:12 GMT", + "start_time": "Sun, 14 Jan 2024 05:22:54 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -525169,7 +522018,7 @@ "data": { "csrftoken": { "domain": "mondiagnosticartificialisation.beta.gouv.fr", - "expires": 1736055196, + "expires": 1736659377, "httponly": false, "max-age": null, "path": "/", @@ -525684,7 +522533,7 @@ "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "61 >= 30 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", @@ -525887,7 +522736,7 @@ "ip": "sparte.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704654003" + "finding": "1705256924" }, { "id": "HSTS", @@ -526440,77 +523289,77 @@ }, { "id": "service", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -526518,7 +523367,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -526526,7 +523375,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -526534,7 +523383,7 @@ }, { "id": "cipherlist_LOW", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -526542,7 +523391,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -526550,7 +523399,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -526558,483 +523407,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2023-12-10 07:16" }, { "id": "cert_notAfter", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-03-09 07:16" }, { "id": "cert_extlifeSpan", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704654099" + "finding": "1705256981" }, { "id": "HSTS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -527042,7 +523891,7 @@ }, { "id": "heartbleed", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -527051,7 +523900,7 @@ }, { "id": "CCS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -527060,7 +523909,7 @@ }, { "id": "ticketbleed", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -527069,7 +523918,7 @@ }, { "id": "ROBOT", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -527078,7 +523927,7 @@ }, { "id": "secure_renego", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -527086,7 +523935,7 @@ }, { "id": "secure_client_renego", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -527095,7 +523944,7 @@ }, { "id": "CRIME_TLS", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -527104,7 +523953,7 @@ }, { "id": "BREACH", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -527113,7 +523962,7 @@ }, { "id": "POODLE_SSL", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -527122,14 +523971,14 @@ }, { "id": "fallback_SCSV", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -527138,7 +523987,7 @@ }, { "id": "FREAK", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -527147,7 +523996,7 @@ }, { "id": "DROWN", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -527156,7 +524005,7 @@ }, { "id": "DROWN_hint", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -527165,7 +524014,7 @@ }, { "id": "LOGJAM", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -527174,7 +524023,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -527183,7 +524032,7 @@ }, { "id": "BEAST", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -527192,7 +524041,7 @@ }, { "id": "LUCKY13", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -527201,7 +524050,7 @@ }, { "id": "winshock", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -527210,7 +524059,7 @@ }, { "id": "RC4", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -527219,399 +524068,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "sparte.beta.gouv.fr/109.232.233.130", + "ip": "sparte.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -527619,7 +524468,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -527627,7 +524476,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -527635,7 +524484,7 @@ }, { "id": "cipherlist_LOW", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -527643,7 +524492,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -527651,7 +524500,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -527659,483 +524508,483 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-12-10 07:16" }, { "id": "cert_notAfter", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-03-09 07:16" }, { "id": "cert_extlifeSpan", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "301 Moved Permanently ('/')" }, { "id": "HTTP_clock_skew", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704654195" + "finding": "1705257043" }, { "id": "HSTS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "security_headers", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "--" }, { "id": "banner_reverseproxy", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -528143,7 +524992,7 @@ }, { "id": "heartbleed", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -528152,7 +525001,7 @@ }, { "id": "CCS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -528161,7 +525010,7 @@ }, { "id": "ticketbleed", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -528170,7 +525019,7 @@ }, { "id": "ROBOT", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -528179,7 +525028,7 @@ }, { "id": "secure_renego", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -528187,7 +525036,7 @@ }, { "id": "secure_client_renego", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -528196,7 +525045,7 @@ }, { "id": "CRIME_TLS", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -528205,7 +525054,7 @@ }, { "id": "BREACH", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -528214,7 +525063,7 @@ }, { "id": "POODLE_SSL", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -528223,14 +525072,14 @@ }, { "id": "fallback_SCSV", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -528239,7 +525088,7 @@ }, { "id": "FREAK", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -528248,7 +525097,7 @@ }, { "id": "DROWN", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -528257,7 +525106,7 @@ }, { "id": "DROWN_hint", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -528266,7 +525115,7 @@ }, { "id": "LOGJAM", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -528275,7 +525124,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -528284,7 +525133,7 @@ }, { "id": "BEAST", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -528293,7 +525142,7 @@ }, { "id": "LUCKY13", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -528302,7 +525151,7 @@ }, { "id": "winshock", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -528311,7 +525160,7 @@ }, { "id": "RC4", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -528320,322 +525169,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "sparte.beta.gouv.fr/5.104.101.30", + "ip": "sparte.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -528987,7 +525836,7 @@ "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "61 >= 30 days" + "finding": "54 >= 30 days" }, { "id": "cert_notBefore", @@ -529190,7 +526039,7 @@ "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704654291" + "finding": "1705257100" }, { "id": "HSTS", @@ -529746,7 +526595,7 @@ "ip": "sparte.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "391" + "finding": "239" } ], "thirdparties": { @@ -529769,7 +526618,7 @@ }, { "type": "google analytics", - "url": "https://googleads.g.doubleclick.net/pagead/viewthroughconversion/11157347812/?random=1704653900858&cv=11&fst=1704653900858&bg=ffffff&guid=ON&async=1>m=45be4130v9121442212&gcd=11l1l1l1l1&dma=0&u_w=800&u_h=600&url=https%3A%2F%2Fmondiagnosticartificialisation.beta.gouv.fr%2F&hn=www.googleadservices.com&frm=0&tiba=Accueil&auid=1973185970.1704653901&uamb=0&uaw=0&data=event%3Dgtag.config&rfmt=3&fmt=4", + "url": "https://googleads.g.doubleclick.net/pagead/viewthroughconversion/11157347812/?random=1705256854841&cv=11&fst=1705256854841&bg=ffffff&guid=ON&async=1>m=45be41a0v9121442212&gcd=11l1l1l1l1&dma=0&u_w=800&u_h=600&url=https%3A%2F%2Fmondiagnosticartificialisation.beta.gouv.fr%2F&hn=www.googleadservices.com&frm=0&tiba=Accueil&auid=3901710.1705256855&uamb=0&uaw=0&data=event%3Dgtag.config&rfmt=3&fmt=4", "details": { "id": "google analytics", "message": "Use hosted Matomo instance" @@ -529777,7 +526626,7 @@ }, { "type": "google", - "url": "https://www.google.com/pagead/1p-user-list/11157347812/?random=1704653900858&cv=11&fst=1704650400000&bg=ffffff&guid=ON&async=1>m=45be4130v9121442212&u_w=800&u_h=600&url=https%3A%2F%2Fmondiagnosticartificialisation.beta.gouv.fr%2F&frm=0&tiba=Accueil&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwAvHhf_AHAnOCS5rGxS1DR2RdkLxKR8wtExCQ&random=2083603105&rmt_tld=0&ipr=y", + "url": "https://www.google.com/pagead/1p-user-list/11157347812/?random=1705256854841&cv=11&fst=1705255200000&bg=ffffff&guid=ON&async=1>m=45be41a0v9121442212&u_w=800&u_h=600&url=https%3A%2F%2Fmondiagnosticartificialisation.beta.gouv.fr%2F&frm=0&tiba=Accueil&data=event%3Dgtag.config&fmt=3&is_vtc=1&cid=CAQSGwAvHhf_C7w3iLePm_Z9cCc-5j53M3dgX-xYog&random=2241957766&rmt_tld=0&ipr=y", "details": { "id": "google", "message": "Use hosted Matomo instance" @@ -529790,7 +526639,7 @@ "value": "1", "domain": "mondiagnosticartificialisation.beta.gouv.fr", "path": "/", - "expires": 1704655701, + "expires": 1705258655, "size": 16, "httpOnly": false, "secure": false, @@ -529802,10 +526651,10 @@ }, { "name": "_pk_id.17.5d40", - "value": "9480d18ae44c36be.1704653902.", + "value": "6e1121f38bad7899.1705256855.", "domain": "mondiagnosticartificialisation.beta.gouv.fr", "path": "/", - "expires": 1738609102, + "expires": 1739212055, "size": 42, "httpOnly": false, "secure": false, @@ -529817,11 +526666,11 @@ }, { "name": "_gcl_au", - "value": "1.1.1973185970.1704653901", + "value": "1.1.3901710.1705256855", "domain": ".beta.gouv.fr", "path": "/", - "expires": 1712429900, - "size": 32, + "expires": 1713032854, + "size": 29, "httpOnly": false, "secure": false, "session": false, @@ -529831,10 +526680,10 @@ }, { "name": "csrftoken", - "value": "dMFqspWFyiZvBne3fmqdFMsdwWiv4G77", + "value": "sPDMmL340KJ7SJLKIUlyCI6ILWAeg14b", "domain": "mondiagnosticartificialisation.beta.gouv.fr", "path": "/", - "expires": 1736103500.256371, + "expires": 1736706454.359582, "size": 41, "httpOnly": false, "secure": false, @@ -529847,17 +526696,17 @@ ], "headers": { "content-encoding": "gzip", - "content-length": "5152", + "content-length": "5099", "content-type": "text/html; charset=utf-8", "cross-origin-opener-policy": "same-origin", - "date": "Sun, 07 Jan 2024 18:58:20 GMT", + "date": "Sun, 14 Jan 2024 18:27:34 GMT", "referrer-policy": "same-origin", - "set-cookie": "csrftoken=dMFqspWFyiZvBne3fmqdFMsdwWiv4G77; expires=Sun, 05 Jan 2025 18:58:20 GMT; Max-Age=31449600; Path=/; SameSite=Lax", + "set-cookie": "csrftoken=sPDMmL340KJ7SJLKIUlyCI6ILWAeg14b; expires=Sun, 12 Jan 2025 18:27:34 GMT; Max-Age=31449600; Path=/; SameSite=Lax", "strict-transport-security": "max-age=31536000", "vary": "origin, Cookie, Accept-Encoding", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "04b53a3f-9c2b-4455-a51e-eeeb51d911cb" + "x-request-id": "77970678-7414-4a59-af13-06bbad694ee5" }, "endpoints": [ { @@ -529918,19 +526767,19 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "151.101.201.229", + "ip": "146.75.77.229", "geoip": { "city": { - "geoname_id": 5393015, + "geoname_id": 4887398, "names": { - "de": "Santa Clara", - "en": "Santa Clara", - "es": "Santa Clara", - "fr": "Santa Clara", - "ja": "サンタクララ", - "pt-BR": "Santa Clara", - "ru": "Санта-Клара", - "zh-CN": "圣克拉拉" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -529951,7 +526800,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -529963,19 +526812,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 37.3931, - "longitude": -121.962, - "metro_code": 807, - "time_zone": "America/Los_Angeles" + "latitude": 41.8719, + "longitude": -87.6589, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "95054" + "code": "60607" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -529987,17 +526836,16 @@ }, "subdivisions": [ { - "geoname_id": 5332921, - "iso_code": "CA", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "de": "Kalifornien", - "en": "California", - "es": "California", - "fr": "Californie", - "ja": "カリフォルニア州", - "pt-BR": "Califórnia", - "ru": "Калифорния", - "zh-CN": "加州" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -530005,7 +526853,7 @@ }, { "hostname": "www.googletagmanager.com", - "ip": "172.217.12.104", + "ip": "142.250.190.104", "geoip": { "continent": { "code": "NA", @@ -530025,7 +526873,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -530045,7 +526893,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -530059,7 +526907,7 @@ }, { "hostname": "googleads.g.doubleclick.net", - "ip": "142.251.46.226", + "ip": "172.217.0.162", "geoip": { "continent": { "code": "NA", @@ -530079,7 +526927,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -530099,7 +526947,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -530113,7 +526961,7 @@ }, { "hostname": "www.google.com", - "ip": "142.250.191.36", + "ip": "142.250.191.132", "geoip": { "continent": { "code": "NA", @@ -530133,7 +526981,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -530153,7 +527001,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -530179,7 +527027,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 18:57:38", + "@generated": "Sun, 14 Jan 2024 18:26:51", "site": [ { "@name": "https://sparte.beta.gouv.fr", @@ -530305,73 +527153,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "sparte.beta.gouv.fr.", "matched-at": "sparte.beta.gouv.fr", - "extracted-results": [ - "betagouv-redirections.osc-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T19:06:42.353314213Z", + "timestamp": "2024-01-14T18:33:09.40852426Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "sparte.beta.gouv.fr.", "matched-at": "sparte.beta.gouv.fr", - "timestamp": "2024-01-07T19:06:42.527260272Z", + "extracted-results": [ + "betagouv-redirections.osc-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T18:33:10.289644268Z", "matcher-status": true }, { @@ -530406,8 +527254,8 @@ "extracted-results": [ "https://www.googletagmanager.com/gtag/js?id=AW-11157347812" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T19:08:21.593930766Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:34:21.095110275Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: sparte.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sparte.beta.gouv.fr/'", "matcher-status": true }, @@ -530446,8 +527294,8 @@ "type": "http", "host": "https://sparte.beta.gouv.fr", "matched-at": "https://sparte.beta.gouv.fr/", - "ip": "148.253.75.120", - "timestamp": "2024-01-07T19:08:33.562165545Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:34:29.737882284Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: sparte.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sparte.beta.gouv.fr/'", "matcher-status": true }, @@ -530477,8 +527325,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T19:14:25.383625991Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:40:13.413732432Z", "matcher-status": true }, { @@ -530507,8 +527355,8 @@ "extracted-results": [ "sparte.beta.gouv.fr" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T19:14:25.383740674Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:40:13.413859811Z", "matcher-status": true }, { @@ -530538,8 +527386,8 @@ "extracted-results": [ "tls12" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T19:14:27.719192647Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:40:14.900738861Z", "matcher-status": true }, { @@ -530569,8 +527417,8 @@ "extracted-results": [ "tls13" ], - "ip": "148.253.75.120", - "timestamp": "2024-01-07T19:14:28.029919656Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:40:15.116299298Z", "matcher-status": true } ], @@ -530578,7 +527426,7 @@ { "requestedUrl": "https://sparte.beta.gouv.fr/", "finalUrl": "https://mondiagnosticartificialisation.beta.gouv.fr/", - "fetchTime": "2024-01-07T18:57:52.289Z", + "fetchTime": "2024-01-14T18:27:05.580Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://sparte.beta.gouv.fr/) was redirected to https://mondiagnosticartificialisation.beta.gouv.fr/. Try testing the second URL directly." ], @@ -530591,7 +527439,7 @@ "snapshot" ], "id": "performance", - "score": 0.8796934127807617 + "score": 0.8797647476196289 }, "accessibility": { "title": "Accessibility", @@ -530643,53 +527491,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3679, + "numericValue": 3694, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3679, - "firstMeaningfulPaint": 3679, - "largestContentfulPaint": 4125, - "interactive": 3679, - "speedIndex": 3679, + "firstContentfulPaint": 3694, + "firstMeaningfulPaint": 3694, + "largestContentfulPaint": 6937, + "interactive": 3694, + "speedIndex": 3694, "totalBlockingTime": 0, "maxPotentialFID": 16, "cumulativeLayoutShift": 0.005592122395833333, "cumulativeLayoutShiftMainFrame": 0.005592122395833333, "totalCumulativeLayoutShift": 0.005592122395833333, "observedTimeOrigin": 0, - "observedTimeOriginTs": 335818978, + "observedTimeOriginTs": 278844036, "observedNavigationStart": 0, - "observedNavigationStartTs": 335818978, - "observedFirstPaint": 702, - "observedFirstPaintTs": 336520867, - "observedFirstContentfulPaint": 702, - "observedFirstContentfulPaintTs": 336520867, - "observedFirstContentfulPaintAllFrames": 702, - "observedFirstContentfulPaintAllFramesTs": 336520867, - "observedFirstMeaningfulPaint": 702, - "observedFirstMeaningfulPaintTs": 336520867, - "observedLargestContentfulPaint": 702, - "observedLargestContentfulPaintTs": 336520867, - "observedLargestContentfulPaintAllFrames": 702, - "observedLargestContentfulPaintAllFramesTs": 336520867, - "observedTraceEnd": 3721, - "observedTraceEndTs": 339539506, - "observedLoad": 1414, - "observedLoadTs": 337233286, + "observedNavigationStartTs": 278844036, + "observedFirstPaint": 576, + "observedFirstPaintTs": 279420083, + "observedFirstContentfulPaint": 576, + "observedFirstContentfulPaintTs": 279420083, + "observedFirstContentfulPaintAllFrames": 576, + "observedFirstContentfulPaintAllFramesTs": 279420083, + "observedFirstMeaningfulPaint": 576, + "observedFirstMeaningfulPaintTs": 279420083, + "observedLargestContentfulPaint": 576, + "observedLargestContentfulPaintTs": 279420083, + "observedLargestContentfulPaintAllFrames": 576, + "observedLargestContentfulPaintAllFramesTs": 279420083, + "observedTraceEnd": 3361, + "observedTraceEndTs": 282205005, + "observedLoad": 1051, + "observedLoadTs": 279895390, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 335819508, + "observedDomContentLoadedTs": 278844564, "observedCumulativeLayoutShift": 0.005592122395833333, "observedCumulativeLayoutShiftMainFrame": 0.005592122395833333, "observedTotalCumulativeLayoutShift": 0.005592122395833333, - "observedFirstVisualChange": 700, - "observedFirstVisualChangeTs": 336518978, - "observedLastVisualChange": 1050, - "observedLastVisualChangeTs": 336868978, - "observedSpeedIndex": 711, - "observedSpeedIndexTs": 336530372 + "observedFirstVisualChange": 578, + "observedFirstVisualChangeTs": 279422036, + "observedLastVisualChange": 778, + "observedLastVisualChangeTs": 279622036, + "observedSpeedIndex": 584, + "observedSpeedIndexTs": 279428156 }, { "lcpInvalidated": false @@ -530711,19 +527559,19 @@ "numScripts": 6, "numStylesheets": 4, "numFonts": 4, - "numTasks": 18, + "numTasks": 15, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 1.2869999999999995, - "throughput": 13454944.997710994, - "maxRtt": 151.89, - "maxServerLatency": 93.197, - "totalByteWeight": 1679329, - "totalTaskTime": 5.927, - "mainDocumentTransferSize": 5502 + "rtt": 1.6329999999999996, + "throughput": 18401924.784338556, + "maxRtt": 102.568, + "maxServerLatency": 65.64300000000001, + "totalByteWeight": 1678955, + "totalTaskTime": 1.598, + "mainDocumentTransferSize": 5548 } ] } @@ -530732,7 +527580,11 @@ } ], "screenshot": true, - "stats": null, + "stats": { + "grade": "B", + "url": "https://mondiagnosticartificialisation.beta.gouv.fr", + "uri": "statistiques" + }, "github_repository": { "grade": "A", "url": "https://github.com", @@ -530779,10 +527631,10 @@ "id": "sparte", "type": "startup", "attributes": { - "name": "SPARTE", + "name": "Mon Diagnostic Artificialisation", "pitch": "Faciliter la mise en oeuvre du Zéro Artificialisation Nette", - "stats_url": "https://sparte.beta.gouv.fr/stats", - "link": "https://sparte.beta.gouv.fr", + "stats_url": "https://mondiagnosticartificialisation.beta.gouv.fr/statistiques/", + "link": "https://mondiagnosticartificialisation.beta.gouv.fr/", "repository": "https://github.com/MTES-MCT/sparte", "contact": "ines.dartiguenave@beta.gouv.fr", "content_url_encoded_markdown": "%23%23%20Contexte%0A%0ALa%20Loi%20Climat%20%26%20R%C3%A9silience%20en%20cours%20d%E2%80%99amendement%20va%20sans%20doute%20conduire%20les%20collectivit%C3%A9s%20%C3%A0%20%3A%0A-%20viser%20l%E2%80%99objectif%20de%20z%C3%A9ro%20artificialisation%20nette%20d%E2%80%99ici%202050%2C%0A-%20r%C3%A9duire%20par%202%20le%20rythme%20de%20l%E2%80%99artificialisation%20des%20sols%20d%E2%80%99ici%202030%2C%0A-%20r%C3%A9aliser%20un%20bilan%20d%E2%80%99artificialisation%20annuel%20ou%20bi-annuel%20de%20leur%20territoire.%0A%0ACes%20objectifs%20vont%20se%20traduire%20dans%20les%20documents%20de%20planification%20et%20d%E2%80%99urbanisme%20%C3%A0%20diff%C3%A9rents%20niveaux%20%3A%20r%C3%A9gional%20%28SRADDET%29%2C%20territorial%20%28SCoT%29%20et%20inter-communal%20%28PLUi%29.%20Ils%20impacteront%20les%20projets%20d%E2%80%99am%C3%A9nagement%2C%20y%20compris%20les%20400%20000%20permis%20de%20construire%20d%C3%A9pos%C3%A9s%20chaque%20ann%C3%A9e.%0A%0ACette%20contrainte%20%E2%80%9CZ%C3%A9ro%20Artificialisation%20Nette%E2%80%9D%20se%20superpose%20%C3%A0%20d%E2%80%99autres%20encadrant%20l%E2%80%99am%C3%A9nagement%20du%20territoire%20%3A%20Loi%20SRU%20imposant%20%C3%A0%20certaines%20communes%20un%20pourcentage%20de%20logements%20sociaux%2C%20Loi%20Littoral%20restreignant%20les%20possibilit%C3%A9s%20d%E2%80%99extension%2C%20Loi%20Biodiversit%C3%A9%E2%80%A6%20Sa%20mise%20en%20%C5%93uvre%20repr%C3%A9sente%20un%20vrai%20enjeu%20pour%20les%20territoires%20qui%20cherchent%20%C3%A0%20porter%20leurs%20projets%20de%20d%C3%A9veloppement%2C%20tout%20en%20se%20mettant%20en%20conformit%C3%A9.%0A%0A%0A%23%23%20Probl%C3%A8me%0A%0ALa%20loi%20Climat%20et%20R%C3%A9silience%20va%20accentuer%20les%20efforts%20de%20sobri%C3%A9t%C3%A9%20fonci%C3%A8re%20%C3%A0%20r%C3%A9aliser%2C%20et%20fournir%20la%20d%C3%A9finition%20et%20les%20donn%C3%A9es%20pour%20calculer%20l%E2%80%99artificialisation%20des%20sols.%20N%C3%A9anmoins%20son%20suivi%20reste%20complexe%20%3A%0A%0A1.%20Au%20niveau%20r%C3%A9glementaire%20%3A%20Il%20est%20complexe%20de%20comprendre%20la%20superposition%20des%20lois%2C%20leurs%20%C3%A9volutions%20et%20ce%20qui%20est%20faisable%20dans%20le%20cadre%20du%20jour.%20Les%20bureaux%20d%E2%80%99%C3%A9tudes%20et%20collectivit%C3%A9s%20r%C3%A9alisent%20une%20veille%20%C3%A0%20ce%20sujet%2C%20mais%20elle%20est%20chronophage%20et%20imparfaite.%0A%0A2.%20Au%20niveau%20du%20calcul%20%3A%20Chaque%20acteur%20a%20sa%20m%C3%A9thode%20et%20ses%20donn%C3%A9es%20sans%20partager%20un%20r%C3%A9f%C3%A9rentiel%20commun%2C%20ce%20qui%20repr%C3%A9sente%20un%20investissement%20cons%C3%A9quent%20pour%20un%20risque%20%C3%A9lev%C3%A9%20de%20non-conformit%C3%A9.%20Le%20portrait%20du%20territoire%20r%C3%A9alis%C3%A9%20lors%20de%20l%E2%80%99%C3%A9laboration%20des%20documents%20d%E2%80%99urbanisme%2C%20peut%20%C3%AAtre%20source%20de%20recours%20juridique%20lors%20de%20sa%20validation%203%20%C3%A0%205%20ans%20plus%20tard%2C%20pour%20cause%20de%20caducit%C3%A9%20ou%20m%C3%A9thode%20de%20calcul.%0A%0A3.%20Au%20niveau%20de%20l%E2%80%99exploitation%20%3A%20Sans%20outil%20adapt%C3%A9%2C%20il%20est%20difficile%20pour%20les%20responsables%20urbanisme%20des%20collectivit%C3%A9s%20et%20les%20acteurs%20de%20l%E2%80%99am%C3%A9nagement%20d%E2%80%99orienter%20leurs%20projets%20en%20fonction%20des%20nouvelles%20directives.%20D%C3%A9velopper%20le%20territoire%2C%20et%20r%C3%A9duire%20la%20consommation%20d%27espace%20ainsi%20que%20de%20l%E2%80%99imperm%C3%A9abilisation%20des%20sols%20parait%20contradictoire.%0A%0ANotre%20probl%C3%A8me%20%3A%20Comment%20peut-on%20aider%20les%20acteurs%20de%20l%E2%80%99am%C3%A9nagement%20%C3%A0%20suivre%20l%E2%80%99artificialisation%20de%20leur%20territoire%20et%20comprendre%20la%20valeur%20patrimoniale%20du%20sol%20pour%20prendre%20des%20d%C3%A9cisions%20d%E2%80%99am%C3%A9nagement%20optimis%C3%A9es%20%3F%0A%0A%23%23%20Solution%20envisag%C3%A9e%0A%0AAdoss%C3%A9%20%C3%A0%20l%E2%80%99Observatoire%20National%20de%20l%E2%80%99Artificialisation%2C%20SPARTE%20est%20l%E2%80%99outil%20qui%20fait%20le%20lien%20entre%20la%20r%C3%A9glementation%20et%20les%20projets%20d%E2%80%99am%C3%A9nagement%20des%20collectivit%C3%A9s%20en%20favorisant%20la%20mise%20en%20%C5%93uvre%20du%20%E2%80%9CZ%C3%A9ro%20Artificialisation%20Nette%E2%80%9D.%0A%0AUn%20site%20qui%20permettrait%20de%20%3A%0A-%20prendre%20conscience%20de%20la%20valeur%20des%20sols%2C%20et%20l%27importance%20de%20diminuer%20l%27artificialisation%2C%0A-%20comprendre%20et%20suivre%20l%E2%80%99artificialisation%20du%20territoire%20gr%C3%A2ce%20%C3%A0%20un%20bilan%20s%E2%80%99appuyant%20sur%20les%20d%C3%A9finitions%20et%20outils%20de%20mesure%20r%C3%A9glementaires%2C%0A-%20mesurer%20le%20%22co%C3%BBt%20artificialisation%22%20de%20son%20projet%20d%27am%C3%A9nagement%2C%20en%20fonction%20de%20l%E2%80%99%C3%A9tat%20d%E2%80%99imperm%C3%A9abilisation%20des%20sols%20et%20de%20consommation%20d%E2%80%99espace%20par%20rapport%20aux%20objectifs%20fix%C3%A9s%20dans%20les%20documents%20d%E2%80%99urbanisme%20du%20territoire%2C%0A-%20identifier%20des%20alternatives%20en%20fonction%20des%20crit%C3%A8res%20de%20son%20projet%2C%20et%20s%E2%80%99inspirer%20des%20retours%20d%E2%80%99exp%C3%A9rience%20d%E2%80%99autres%20acteurs%20de%20l%E2%80%99am%C3%A9nagement.%0A%0A%0A%0A%23%23%20Strat%C3%A9gie%20d%27exploration%0A%0APendant%20la%201%C3%A8re%20partie%20de%20la%20phase%20d%E2%80%99investigation%20%28avril-mai%202021%29%20%3A%20investiguer%20le%20probl%C3%A8me%20avec%20des%20entretiens%20aupr%C3%A8s%20des%20parties%20prenantes%20cl%C3%A9s%20de%20l%E2%80%99am%C3%A9nagement%20du%20territoire.%0A%0AL%E2%80%99%C3%A9quipe%20a%20men%C3%A9%20plus%20de%2020%20entretiens%20avec%20les%20acteurs%20suivants%20%3A%0A-%20agents%20de%20l%E2%80%99am%C3%A9nagement%20du%20territoire%20%3A%20DDT%2C%20DREAL%20et%20Conseil%20R%C3%A9gional%0A-%20collectivit%C3%A9s%20repr%C3%A9sent%C3%A9es%20par%20des%20%C3%A9lus%20et%20responsables%20urbanisme%20%28directeur%20de%20SCoT%20et%20PLUi%29%0A-%20bureaux%20d%E2%80%99%C3%A9tudes%20et%20agences%20d%E2%80%99urbanisme%2C%20en%20charge%20du%20calcul%20de%20la%20consommation%20d%E2%80%99espace%20pour%20les%20documents%20d%E2%80%99urbanisme%20%28SCoT%2C%20PLUi%29%0A-%20acteurs%20de%20l%E2%80%99am%C3%A9nagement%20du%20territoire%20et%20de%20la%20protection%20de%20l%E2%80%99environnement%20%28UNAM%2C%20Conservatoire%20du%20littoral%29%E2%80%A6%0A%0APendant%20la%202%C3%A8me%20partie%20de%20la%20phase%20d%E2%80%99investigation%20%28juin%202021%29%20%3A%20d%C3%A9finir%20la%20solution%2C%20l%E2%80%99impact%20recherch%C3%A9%20et%20les%20objectifs%20de%20la%20phase%20de%20construction.%0A", @@ -530823,7 +527675,7 @@ "cookiesCount": 4, "trackersGrade": "C", "trackersCount": 4, - "lighthouse_performance": 0.8796934127807617, + "lighthouse_performance": 0.8797647476196289, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.99, "lighthouse_accessibilityGrade": "A", @@ -530833,6 +527685,7 @@ "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", + "statsGrade": "B", "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "C", @@ -531020,7 +527873,7 @@ "http": { "url": "https://zerologementvacant.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 06:23:31 GMT", + "end_time": "Sun, 14 Jan 2024 06:09:13 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -531032,15 +527885,15 @@ "Content-Type": "text/html; charset=UTF-8", "Cross-Origin-Opener-Policy": "same-origin", "Cross-Origin-Resource-Policy": "same-origin", - "Date": "Sun, 07 Jan 2024 06:23:30 GMT", + "Date": "Sun, 14 Jan 2024 06:09:12 GMT", "ETag": "W/\"4ca-18cd9be0430\"", "Expect-CT": "max-age=0", "Last-Modified": "Fri, 05 Jan 2024 13:09:18 GMT", "Origin-Agent-Cluster": "?1", "RateLimit-Limit": "10000", "RateLimit-Policy": "10000;w=300", - "RateLimit-Remaining": "9993", - "RateLimit-Reset": "145", + "RateLimit-Remaining": "9998", + "RateLimit-Reset": "146", "Referrer-Policy": "no-referrer", "Strict-Transport-Security": "max-age=31536000, max-age=15552000; includeSubDomains", "Transfer-Encoding": "chunked", @@ -531049,12 +527902,12 @@ "X-Download-Options": "noopen", "X-Frame-Options": "SAMEORIGIN", "X-Permitted-Cross-Domain-Policies": "none", - "X-Request-ID": "2e81d167-b15b-48e8-b97c-cdb232b367e8", + "X-Request-ID": "b348467f-9ecf-4cf3-8303-2ad4e6feb29d", "X-XSS-Protection": "0" }, - "scan_id": 46230129, + "scan_id": 46456757, "score": 50, - "start_time": "Sun, 07 Jan 2024 06:23:27 GMT", + "start_time": "Sun, 14 Jan 2024 06:04:21 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -531073,21 +527926,21 @@ "'none'" ], "connect-src": [ - "'self'", - "https://openmaptiles.github.io", - "wss://client.relay.crisp.chat", - "https://openmaptiles.geo.data.gouv.fr", "https://stats.beta.gouv.fr", + "wss://client.relay.crisp.chat", + "'self'", "https://api-adresse.data.gouv.fr", - "https://client.crisp.chat" + "https://openmaptiles.github.io", + "https://client.crisp.chat", + "https://openmaptiles.geo.data.gouv.fr" ], "default-src": [ "'self'" ], "font-src": [ "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.ttf", - "'self'", "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff", + "'self'", "data:", "https://client.crisp.chat" ], @@ -531098,14 +527951,14 @@ "'self'" ], "frame-src": [ - "https://zerologementvacant.crisp.help", - "https://zerologementvacant-metabase-prod.osc-secnum-fr1.scalingo.io" + "https://zerologementvacant-metabase-prod.osc-secnum-fr1.scalingo.io", + "https://zerologementvacant.crisp.help" ], "img-src": [ + "'self'", "https://image.crisp.chat", - "https://client.crisp.chat", "data:", - "'self'" + "https://client.crisp.chat" ], "media-src": [ "'self'" @@ -531114,27 +527967,27 @@ "'self'" ], "script-src": [ + "'self'", "'unsafe-inline'", - "https://stats.beta.gouv.fr", "https://client.crisp.chat", - "'self'" + "https://stats.beta.gouv.fr" ], "script-src-attr": [ "'none'" ], "style-src": [ - "'self'", "https://unpkg.com/maplibre-gl@2.4.0/dist/maplibre-gl.css", + "'self'", "https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css", - "https://client.crisp.chat/static/stylesheets/client_default.css", - "'unsafe-inline'" + "'unsafe-inline'", + "https://client.crisp.chat/static/stylesheets/client_default.css" ], "upgrade-insecure-requests": [ "'none'" ], "worker-src": [ - "blob:", - "'self'" + "'self'", + "blob:" ] }, "http": true, @@ -531331,77 +528184,77 @@ "testssl": [ { "id": "service", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -531409,7 +528262,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -531417,7 +528270,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -531425,7 +528278,7 @@ }, { "id": "cipherlist_LOW", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -531433,7 +528286,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -531441,7 +528294,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -531449,546 +528302,546 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2023-11-20 08:39" }, { "id": "cert_notAfter", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-02-18 08:39" }, { "id": "cert_extlifeSpan", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704654752" + "finding": "1705258305" }, { "id": "HSTS_multiple", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://client.crisp.chat;frame-src https://zerologementvacant-metabase-prod.osc-secnum-fr1.scalingo.io https://zerologementvacant.crisp.help;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css https://client.crisp.chat/static/stylesheets/client_default.css https://unpkg.com/maplibre-gl@2.4.0/dist/maplibre-gl.css;img-src 'self' https://image.crisp.chat https://client.crisp.chat data:;font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2 https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.ttf https://client.crisp.chat data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat https://client.crisp.chat https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "Expect-CT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "max-age=0" }, { "id": "X-XSS-Protection", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -531996,7 +528849,7 @@ }, { "id": "heartbleed", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -532005,7 +528858,7 @@ }, { "id": "CCS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -532014,7 +528867,7 @@ }, { "id": "ticketbleed", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -532023,7 +528876,7 @@ }, { "id": "ROBOT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -532032,7 +528885,7 @@ }, { "id": "secure_renego", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -532040,7 +528893,7 @@ }, { "id": "secure_client_renego", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -532049,7 +528902,7 @@ }, { "id": "CRIME_TLS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -532058,7 +528911,7 @@ }, { "id": "BREACH", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -532067,7 +528920,7 @@ }, { "id": "POODLE_SSL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -532076,14 +528929,14 @@ }, { "id": "fallback_SCSV", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -532092,7 +528945,7 @@ }, { "id": "FREAK", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -532101,7 +528954,7 @@ }, { "id": "DROWN", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -532110,7 +528963,7 @@ }, { "id": "DROWN_hint", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -532119,7 +528972,7 @@ }, { "id": "LOGJAM", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -532128,7 +528981,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -532137,7 +528990,7 @@ }, { "id": "BEAST", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -532146,7 +528999,7 @@ }, { "id": "LUCKY13", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -532155,7 +529008,7 @@ }, { "id": "winshock", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -532164,7 +529017,7 @@ }, { "id": "RC4", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -532173,392 +529026,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", + "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -532566,7 +529419,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -532574,7 +529427,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -532582,7 +529435,7 @@ }, { "id": "cipherlist_LOW", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -532590,7 +529443,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -532598,7 +529451,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -532606,546 +529459,546 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2023-11-20 08:39" }, { "id": "cert_notAfter", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-02-18 08:39" }, { "id": "cert_extlifeSpan", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704654807" + "finding": "1705258369" }, { "id": "HSTS_multiple", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://client.crisp.chat;frame-src https://zerologementvacant-metabase-prod.osc-secnum-fr1.scalingo.io https://zerologementvacant.crisp.help;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css https://client.crisp.chat/static/stylesheets/client_default.css https://unpkg.com/maplibre-gl@2.4.0/dist/maplibre-gl.css;img-src 'self' https://image.crisp.chat https://client.crisp.chat data:;font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2 https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.ttf https://client.crisp.chat data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat https://client.crisp.chat https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "Expect-CT", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "max-age=0" }, { "id": "X-XSS-Protection", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -533153,7 +530006,7 @@ }, { "id": "heartbleed", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -533162,7 +530015,7 @@ }, { "id": "CCS", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -533171,7 +530024,7 @@ }, { "id": "ticketbleed", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -533180,7 +530033,7 @@ }, { "id": "ROBOT", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -533189,7 +530042,7 @@ }, { "id": "secure_renego", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -533197,7 +530050,7 @@ }, { "id": "secure_client_renego", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -533206,7 +530059,7 @@ }, { "id": "CRIME_TLS", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -533215,7 +530068,7 @@ }, { "id": "BREACH", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -533224,7 +530077,7 @@ }, { "id": "POODLE_SSL", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -533233,14 +530086,14 @@ }, { "id": "fallback_SCSV", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -533249,7 +530102,7 @@ }, { "id": "FREAK", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -533258,7 +530111,7 @@ }, { "id": "DROWN", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -533267,7 +530120,7 @@ }, { "id": "DROWN_hint", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -533276,7 +530129,7 @@ }, { "id": "LOGJAM", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -533285,7 +530138,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -533294,7 +530147,7 @@ }, { "id": "BEAST", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -533303,7 +530156,7 @@ }, { "id": "LUCKY13", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -533312,7 +530165,7 @@ }, { "id": "winshock", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -533321,7 +530174,7 @@ }, { "id": "RC4", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -533330,315 +530183,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", + "ip": "zerologementvacant.beta.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", "finding": "A+" @@ -533990,7 +530843,7 @@ "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "41 >= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", @@ -534193,7 +531046,7 @@ "ip": "zerologementvacant.beta.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704654862" + "finding": "1705258428" }, { "id": "HSTS_multiple", @@ -534802,77 +531655,77 @@ }, { "id": "service", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -534880,7 +531733,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -534888,7 +531741,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -534896,7 +531749,7 @@ }, { "id": "cipherlist_LOW", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -534904,7 +531757,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -534912,7 +531765,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -534920,546 +531773,546 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "34 >= 30 days" }, { "id": "cert_notBefore", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2023-11-20 08:39" }, { "id": "cert_notAfter", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-02-18 08:39" }, { "id": "cert_extlifeSpan", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704654917" + "finding": "1705258487" }, { "id": "HSTS_multiple", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "default-src 'self';script-src 'self' 'unsafe-inline' https://stats.beta.gouv.fr https://client.crisp.chat;frame-src https://zerologementvacant-metabase-prod.osc-secnum-fr1.scalingo.io https://zerologementvacant.crisp.help;style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.css https://client.crisp.chat/static/stylesheets/client_default.css https://unpkg.com/maplibre-gl@2.4.0/dist/maplibre-gl.css;img-src 'self' https://image.crisp.chat https://client.crisp.chat data:;font-src 'self' https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.woff2 https://cdn.jsdelivr.net/npm/remixicon@2.5.0/fonts/remixicon.ttf https://client.crisp.chat data:;object-src 'self';media-src 'self';connect-src 'self' https://stats.beta.gouv.fr https://api-adresse.data.gouv.fr wss://client.relay.crisp.chat https://client.crisp.chat https://openmaptiles.geo.data.gouv.fr https://openmaptiles.github.io;worker-src 'self' blob:;base-uri 'self';block-all-mixed-content;form-action 'self';frame-ancestors 'self';script-src-attr 'none';upgrade-insecure-requests" }, { "id": "Expect-CT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "max-age=0" }, { "id": "X-XSS-Protection", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "no-referrer" }, { "id": "Cache-Control", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -535467,7 +532320,7 @@ }, { "id": "heartbleed", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -535476,7 +532329,7 @@ }, { "id": "CCS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -535485,7 +532338,7 @@ }, { "id": "ticketbleed", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -535494,7 +532347,7 @@ }, { "id": "ROBOT", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -535503,7 +532356,7 @@ }, { "id": "secure_renego", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -535511,7 +532364,7 @@ }, { "id": "secure_client_renego", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -535520,7 +532373,7 @@ }, { "id": "CRIME_TLS", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -535529,7 +532382,7 @@ }, { "id": "BREACH", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -535538,7 +532391,7 @@ }, { "id": "POODLE_SSL", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -535547,14 +532400,14 @@ }, { "id": "fallback_SCSV", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -535563,7 +532416,7 @@ }, { "id": "FREAK", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -535572,7 +532425,7 @@ }, { "id": "DROWN", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -535581,7 +532434,7 @@ }, { "id": "DROWN_hint", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -535590,7 +532443,7 @@ }, { "id": "LOGJAM", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -535599,7 +532452,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -535608,7 +532461,7 @@ }, { "id": "BEAST", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -535617,7 +532470,7 @@ }, { "id": "LUCKY13", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -535626,7 +532479,7 @@ }, { "id": "winshock", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -535635,7 +532488,7 @@ }, { "id": "RC4", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -535644,325 +532497,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "zerologementvacant.beta.gouv.fr/109.232.236.90", + "ip": "zerologementvacant.beta.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "224" + "finding": "249" } ], "thirdparties": { @@ -535981,15 +532834,19 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/65781ccb-c386-4dbf-b614-5581c3a1ff7e/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-19-11" + "url": "https://client.crisp.chat/settings/website/65781ccb-c386-4dbf-b614-5581c3a1ff7e/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-18-50" + }, + { + "type": "unknown", + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", @@ -535997,7 +532854,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/fr.js?e0efffc" } ], "cookies": [ @@ -536006,7 +532863,7 @@ "value": "1", "domain": "zerologementvacant.beta.gouv.fr", "path": "/", - "expires": 1704656497, + "expires": 1705260044, "size": 15, "httpOnly": false, "secure": false, @@ -536018,10 +532875,10 @@ }, { "name": "_pk_id.2.b825", - "value": "4db44ec36d826308.1704654697.", + "value": "3db898a1184e7cce.1705258244.", "domain": "zerologementvacant.beta.gouv.fr", "path": "/", - "expires": 1738609897, + "expires": 1739213444, "size": 41, "httpOnly": false, "secure": false, @@ -536039,15 +532896,15 @@ "content-type": "text/html; charset=UTF-8", "cross-origin-opener-policy": "same-origin", "cross-origin-resource-policy": "same-origin", - "date": "Sun, 07 Jan 2024 19:11:36 GMT", + "date": "Sun, 14 Jan 2024 18:50:42 GMT", "etag": "W/\"4ca-18cd9be0430\"", "expect-ct": "max-age=0", "last-modified": "Fri, 05 Jan 2024 13:09:18 GMT", "origin-agent-cluster": "?1", "ratelimit-limit": "10000", "ratelimit-policy": "10000;w=300", - "ratelimit-remaining": "9999", - "ratelimit-reset": "262", + "ratelimit-remaining": "9995", + "ratelimit-reset": "58", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000\nmax-age=15552000; includeSubDomains", "x-content-type-options": "nosniff", @@ -536055,23 +532912,14 @@ "x-download-options": "noopen", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "d521e51c-55c1-478f-a5d6-98224cdb9166", + "x-request-id": "804a1c10-26b6-4b2a-98cc-76a460b676b0", "x-xss-protection": "0" }, "endpoints": [ { "hostname": "zerologementvacant.beta.gouv.fr", - "ip": "5.104.101.30", + "ip": "148.253.75.120", "geoip": { - "city": { - "geoname_id": 3034797, - "names": { - "de": "Bartenheim", - "en": "Bartenheim", - "fr": "Bartenheim", - "pt-BR": "Bartenheim" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -536103,13 +532951,10 @@ }, "location": { "accuracy_radius": 500, - "latitude": 47.6376, - "longitude": 7.4798, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "68870" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -536124,28 +532969,7 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 11071622, - "iso_code": "GES", - "names": { - "en": "Grand Est", - "fr": "Grand Est" - } - }, - { - "geoname_id": 3013663, - "iso_code": "68", - "names": { - "de": "Haut-Rhin", - "en": "Haut-Rhin", - "es": "Alto Rin", - "fr": "Haut-Rhin", - "pt-BR": "Alto Reno" - } - } - ] + } } }, { @@ -536156,7 +532980,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -536170,13 +532994,47 @@ }, { "hostname": "client.crisp.chat", - "ip": "104.18.34.181", + "ip": "172.64.153.75", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -536420,7 +533278,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 19:10:54", + "@generated": "Sun, 14 Jan 2024 18:49:59", "site": [ { "@name": "https://zerologementvacant.beta.gouv.fr", @@ -536595,28 +533453,24 @@ "extracted-results": [ "10 inbound.crisp.email." ], - "timestamp": "2024-01-07T19:16:44.445014097Z", + "timestamp": "2024-01-14T18:56:20.663035059Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "NS Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" - ], - "description": "DNS DMARC information was detected.\n", - "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -536625,34 +533479,38 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "zerologementvacant.beta.gouv.fr.", - "matched-at": "_dmarc.zerologementvacant.beta.gouv.fr", + "matched-at": "zerologementvacant.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1; p=quarantine; ruf=mailto:dmarc-forensic@crisp.chat\"" + "dns2.alwaysdata.com.", + "dns1.alwaysdata.com." ], - "timestamp": "2024-01-07T19:16:44.4534415Z", + "timestamp": "2024-01-14T18:56:20.673833212Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "ns" + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -536661,17 +533519,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "zerologementvacant.beta.gouv.fr.", - "matched-at": "zerologementvacant.beta.gouv.fr", + "matched-at": "_dmarc.zerologementvacant.beta.gouv.fr", "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." + "\"v=DMARC1; p=quarantine; ruf=mailto:dmarc-forensic@crisp.chat\"" ], - "timestamp": "2024-01-07T19:16:44.511857257Z", + "timestamp": "2024-01-14T18:56:20.6741664Z", "matcher-status": true }, { @@ -536706,7 +533564,7 @@ "type": "dns", "host": "zerologementvacant.beta.gouv.fr.", "matched-at": "zerologementvacant.beta.gouv.fr", - "timestamp": "2024-01-07T19:16:44.664224847Z", + "timestamp": "2024-01-14T18:56:20.676086683Z", "matcher-status": true }, { @@ -536742,13 +533600,13 @@ "host": "zerologementvacant.beta.gouv.fr.", "matched-at": "zerologementvacant.beta.gouv.fr", "extracted-results": [ + "\"google-site-verification=DK-klZoBLE3Vo9nabfA9fC2OIu091OT7gSYeupuRMm4\"", "\"v=spf1 redirect=_spf.crisp.email\"", "\"v=spf1 include:spf.sendinblue.com mx ~all\"", - "\"google-site-verification=f5JozGTS9onVMAMiNs-efjbGGDEvp_29AiUE05u2Z4c\"", - "\"google-site-verification=DK-klZoBLE3Vo9nabfA9fC2OIu091OT7gSYeupuRMm4\"", - "\"sendinblue-code:52e29235c6069303936dcb55744402a1\"" + "\"sendinblue-code:52e29235c6069303936dcb55744402a1\"", + "\"google-site-verification=f5JozGTS9onVMAMiNs-efjbGGDEvp_29AiUE05u2Z4c\"" ], - "timestamp": "2024-01-07T19:16:45.435476238Z", + "timestamp": "2024-01-14T18:56:20.726262026Z", "matcher-status": true }, { @@ -536783,8 +533641,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T19:17:27.178466828Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:57:13.173876647Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr'", "matcher-status": true }, @@ -536820,8 +533678,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T19:17:27.178507704Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:57:13.173930407Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr'", "matcher-status": true }, @@ -536857,8 +533715,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T19:17:27.178519897Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:57:13.173948241Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr'", "matcher-status": true }, @@ -536885,8 +533743,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr/robots.txt", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T19:17:36.858713354Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:57:25.081733183Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr/robots.txt'", "matcher-status": true }, @@ -536925,8 +533783,8 @@ "type": "http", "host": "https://zerologementvacant.beta.gouv.fr", "matched-at": "https://zerologementvacant.beta.gouv.fr/", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T19:17:49.625130576Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T18:57:41.083349079Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: zerologementvacant.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://zerologementvacant.beta.gouv.fr/'", "matcher-status": true }, @@ -536956,8 +533814,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T19:23:29.349397982Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T19:03:25.790717026Z", "matcher-status": true }, { @@ -536986,8 +533844,8 @@ "extracted-results": [ "zerologementvacant.beta.gouv.fr" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T19:23:29.349513919Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T19:03:25.790819838Z", "matcher-status": true }, { @@ -537017,8 +533875,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T19:23:31.10699405Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T19:03:27.437619059Z", "matcher-status": true }, { @@ -537048,8 +533906,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T19:23:31.294407212Z", + "ip": "5.104.101.30", + "timestamp": "2024-01-14T19:03:27.653050342Z", "matcher-status": true } ], @@ -537057,7 +533915,7 @@ { "requestedUrl": "https://zerologementvacant.beta.gouv.fr/", "finalUrl": "https://zerologementvacant.beta.gouv.fr/", - "fetchTime": "2024-01-07T19:11:08.533Z", + "fetchTime": "2024-01-14T18:50:13.156Z", "runWarnings": [], "categories": { "performance": { @@ -537068,7 +533926,7 @@ "snapshot" ], "id": "performance", - "score": 0.8898237228393555 + "score": 0.8766119003295898 }, "accessibility": { "title": "Accessibility", @@ -537089,7 +533947,7 @@ "snapshot" ], "id": "best-practices", - "score": 0.92 + "score": 0.75 }, "seo": { "title": "SEO", @@ -537120,53 +533978,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2239, + "numericValue": 2389, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2239, - "firstMeaningfulPaint": 2239, - "largestContentfulPaint": 6109, - "interactive": 2239, - "speedIndex": 2249, + "firstContentfulPaint": 2389, + "firstMeaningfulPaint": 2389, + "largestContentfulPaint": 6129, + "interactive": 2389, + "speedIndex": 2480, "totalBlockingTime": 0, "maxPotentialFID": 16, - "cumulativeLayoutShift": 0.004253038194444444, - "cumulativeLayoutShiftMainFrame": 0.004253038194444444, - "totalCumulativeLayoutShift": 0.004253038194444444, + "cumulativeLayoutShift": 0.005031575520833333, + "cumulativeLayoutShiftMainFrame": 0.005031575520833333, + "totalCumulativeLayoutShift": 0.005031575520833333, "observedTimeOrigin": 0, - "observedTimeOriginTs": 184624132, + "observedTimeOriginTs": 225993172, "observedNavigationStart": 0, - "observedNavigationStartTs": 184624132, - "observedFirstPaint": 732, - "observedFirstPaintTs": 185356622, - "observedFirstContentfulPaint": 732, - "observedFirstContentfulPaintTs": 185356622, - "observedFirstContentfulPaintAllFrames": 732, - "observedFirstContentfulPaintAllFramesTs": 185356622, - "observedFirstMeaningfulPaint": 732, - "observedFirstMeaningfulPaintTs": 185356622, - "observedLargestContentfulPaint": 732, - "observedLargestContentfulPaintTs": 185356622, - "observedLargestContentfulPaintAllFrames": 732, - "observedLargestContentfulPaintAllFramesTs": 185356622, - "observedTraceEnd": 3609, - "observedTraceEndTs": 188232658, - "observedLoad": 1299, - "observedLoadTs": 185923281, + "observedNavigationStartTs": 225993172, + "observedFirstPaint": 826, + "observedFirstPaintTs": 226818896, + "observedFirstContentfulPaint": 826, + "observedFirstContentfulPaintTs": 226818896, + "observedFirstContentfulPaintAllFrames": 826, + "observedFirstContentfulPaintAllFramesTs": 226818896, + "observedFirstMeaningfulPaint": 826, + "observedFirstMeaningfulPaintTs": 226818896, + "observedLargestContentfulPaint": 826, + "observedLargestContentfulPaintTs": 226818896, + "observedLargestContentfulPaintAllFrames": 826, + "observedLargestContentfulPaintAllFramesTs": 226818896, + "observedTraceEnd": 3891, + "observedTraceEndTs": 229883847, + "observedLoad": 1583, + "observedLoadTs": 227575877, "observedDomContentLoaded": 1, - "observedDomContentLoadedTs": 184624921, - "observedCumulativeLayoutShift": 0.004253038194444444, - "observedCumulativeLayoutShiftMainFrame": 0.004253038194444444, - "observedTotalCumulativeLayoutShift": 0.004253038194444444, - "observedFirstVisualChange": 735, - "observedFirstVisualChangeTs": 185359132, - "observedLastVisualChange": 985, - "observedLastVisualChangeTs": 185609132, - "observedSpeedIndex": 745, - "observedSpeedIndexTs": 185369252 + "observedDomContentLoadedTs": 225993694, + "observedCumulativeLayoutShift": 0.005031575520833333, + "observedCumulativeLayoutShiftMainFrame": 0.005031575520833333, + "observedTotalCumulativeLayoutShift": 0.005031575520833333, + "observedFirstVisualChange": 831, + "observedFirstVisualChangeTs": 226824172, + "observedLastVisualChange": 1081, + "observedLastVisualChangeTs": 227074172, + "observedSpeedIndex": 841, + "observedSpeedIndexTs": 226834260 }, { "lcpInvalidated": false @@ -537184,23 +534042,23 @@ "type": "debugdata", "items": [ { - "numRequests": 42, - "numScripts": 4, + "numRequests": 45, + "numScripts": 6, "numStylesheets": 4, "numFonts": 4, - "numTasks": 14, + "numTasks": 28, "numTasksOver10ms": 0, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.1949999999999985, - "throughput": 17713527.90924516, - "maxRtt": 86.62299999999999, - "maxServerLatency": 117.98799999999999, - "totalByteWeight": 1626217, - "totalTaskTime": 1.663, - "mainDocumentTransferSize": 2100 + "rtt": 1.8989999999999998, + "throughput": 18327957.67939053, + "maxRtt": 101.244, + "maxServerLatency": 94.418, + "totalByteWeight": 1695485, + "totalTaskTime": 4.225999999999998, + "mainDocumentTransferSize": 2099 } ] } @@ -537299,13 +534157,13 @@ "cookiesGrade": "B", "cookiesCount": 2, "trackersGrade": "C", - "trackersCount": 7, - "lighthouse_performance": 0.8898237228393555, + "trackersCount": 8, + "lighthouse_performance": 0.8766119003295898, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 0.95, "lighthouse_accessibilityGrade": "A", - "lighthouse_best-practices": 0.92, - "lighthouse_best-practicesGrade": "A", + "lighthouse_best-practices": 0.75, + "lighthouse_best-practicesGrade": "B", "lighthouse_seo": 1, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.6, @@ -537329,7 +534187,7 @@ "http": { "url": "https://labonnealternance.apprentissage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 19:33:25 GMT", + "end_time": "Sun, 14 Jan 2024 18:56:23 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -537338,8 +534196,8 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 19:33:21 GMT", - "ETag": "\"15lkgz7ko7m1z2i\"", + "Date": "Sun, 14 Jan 2024 18:56:19 GMT", + "ETag": "\"e0ktcrerfl1z2i\"", "Referrer-Policy": "unsafe-url, no-referrer-when-downgrade", "Strict-Transport-Security": "max-age=31536000; includeSubDomains, max-age=31536000; includeSubdomains", "Transfer-Encoding": "chunked", @@ -537348,9 +534206,9 @@ "X-Frame-Options": "SAMEORIGIN", "X-XSS-Protection": "1" }, - "scan_id": 46237521, + "scan_id": 46499304, "score": 55, - "start_time": "Sun, 07 Jan 2024 19:33:18 GMT", + "start_time": "Sun, 14 Jan 2024 18:56:16 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -537363,37 +534221,37 @@ "output": { "data": { "base-uri": [ - "https://stats.beta.gouv.fr", - "'self'" + "'self'", + "https://stats.beta.gouv.fr" ], "block-all-mixed-content": [ "'none'" ], "child-src": [ - "blob:", - "'self'" + "'self'", + "blob:" ], "connect-src": [ - "https://exposition-recette.inserjeunes.beta.gouv.fr", - "https://stats.beta.gouv.fr", + "https://plausible.io", "https://exposition.inserjeunes.beta.gouv.fr", "https://sentry.apprentissage.beta.gouv.fr", - "https://stats.data.gouv.fr", + "https://exposition-recette.inserjeunes.beta.gouv.fr", "https://events.mapbox.com", - "https://api-adresse.data.gouv.fr", "'self'", - "http://localhost:5000", - "https://plausible.io", + "https://api-adresse.data.gouv.fr", + "https://catalogue-apprentissage.intercariforef.org", "https://api.mapbox.com", - "https://catalogue-apprentissage.intercariforef.org" + "https://stats.data.gouv.fr", + "http://localhost:5000", + "https://stats.beta.gouv.fr" ], "default-src": [ "'self'" ], "font-src": [ "https:", - "data:", - "'self'" + "'self'", + "data:" ], "frame-ancestors": [ "'none'" @@ -537403,26 +534261,26 @@ "'self'" ], "img-src": [ - "https://stats.beta.gouv.fr", - "data:", "'self'", + "blob:", "https://www.google.fr", "https://www.google.com", - "blob:", - "https://www.notion.so" + "data:", + "https://www.notion.so", + "https://stats.beta.gouv.fr" ], "object-src": [ - "data:", - "'self'" + "'self'", + "data:" ], "script-src": [ + "https://plausible.io", "https://stats.beta.gouv.fr", - "https://stats.data.gouv.fr", - "http://localhost:3000", - "'self'", "'unsafe-inline'", "blob:", - "https://plausible.io" + "https://stats.data.gouv.fr", + "'self'", + "http://localhost:3000" ], "script-src-attr": [ "'none'" @@ -537622,8 +534480,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T19:15:24Z", - "next_check_at": "2024-01-07T20:14:54Z", + "last_check_at": "2024-01-14T18:28:33Z", + "next_check_at": "2024-01-14T19:28:26Z", "created_at": "2021-04-22T21:34:02Z", "mute_until": "forever", "favicon_url": "https://labonnealternance.apprentissage.beta.gouv.fr/favicon/favicon-16x16.png", @@ -537631,7 +534489,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T17:16:06Z", + "tested_at": "2024-01-14T18:28:33Z", "expires_at": "2024-03-04T14:17:48Z", "valid": true, "error": null @@ -538029,7 +534887,7 @@ "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "OK", - "finding": "56 >= 30 days" + "finding": "49 >= 30 days" }, { "id": "cert_notBefore", @@ -538225,14 +535083,14 @@ "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "1704656141" + "finding": "1705258705" }, { "id": "HSTS_multiple", @@ -538844,7 +535702,7 @@ "ip": "labonnealternance.apprentissage.beta.gouv.fr/149.202.54.205", "port": "443", "severity": "INFO", - "finding": "108" + "finding": "92" } ], "thirdparties": { @@ -538864,8 +535722,8 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self'; base-uri 'self' https://stats.beta.gouv.fr; script-src 'self' 'unsafe-inline' https://plausible.io http://localhost:3000 https://stats.beta.gouv.fr https://stats.data.gouv.fr blob:; script-src-attr 'none'; connect-src 'self' https://catalogue-apprentissage.intercariforef.org https://api-adresse.data.gouv.fr https://api.mapbox.com https://stats.beta.gouv.fr https://stats.data.gouv.fr https://events.mapbox.com https://plausible.io http://localhost:5000 https://exposition-recette.inserjeunes.beta.gouv.fr https://exposition.inserjeunes.beta.gouv.fr https://sentry.apprentissage.beta.gouv.fr ; img-src 'self' data: blob: https://www.notion.so https://www.google.com https://www.google.fr https://stats.beta.gouv.fr; object-src 'self' data:; font-src 'self' https: data:; style-src 'self' https: 'unsafe-inline'; frame-src 'self' https://plausible.io; child-src 'self' blob:; block-all-mixed-content; upgrade-insecure-requests; frame-ancestors 'none';", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 19:33:53 GMT", - "etag": "\"15lkgz7ko7m1z2i\"", + "date": "Sun, 14 Jan 2024 18:56:52 GMT", + "etag": "\"e0ktcrerfl1z2i\"", "referrer-policy": "unsafe-url\nno-referrer-when-downgrade", "strict-transport-security": "max-age=31536000; includeSubDomains\nmax-age=31536000; includeSubdomains", "transfer-encoding": "chunked", @@ -538909,7 +535767,7 @@ } }, "location": { - "accuracy_radius": 500, + "accuracy_radius": 1000, "latitude": 48.8582, "longitude": 2.3387, "time_zone": "Europe/Paris" @@ -538933,19 +535791,19 @@ }, { "hostname": "plausible.io", - "ip": "38.32.110.58", + "ip": "169.150.236.97", "geoip": { "city": { - "geoname_id": 5308655, + "geoname_id": 4887398, "names": { - "de": "Phoenix", - "en": "Phoenix", - "es": "Phoenix", - "fr": "Phoenix", - "ja": "フェニックス", - "pt-BR": "Phoenix", - "ru": "Финикс", - "zh-CN": "凤凰城" + "de": "Chicago", + "en": "Chicago", + "es": "Chicago", + "fr": "Chicago", + "ja": "シカゴ", + "pt-BR": "Chicago", + "ru": "Чикаго", + "zh-CN": "芝加哥" } }, "continent": { @@ -538966,7 +535824,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -538978,40 +535836,40 @@ }, "location": { "accuracy_radius": 20, - "latitude": 33.4475, - "longitude": -112.0866, - "metro_code": 753, - "time_zone": "America/Phoenix" + "latitude": 41.8874, + "longitude": -87.6318, + "metro_code": 602, + "time_zone": "America/Chicago" }, "postal": { - "code": "85036" + "code": "60602" }, "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", + "geoname_id": 2635167, + "iso_code": "GB", "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" + "de": "UK", + "en": "United Kingdom", + "es": "Reino Unido", + "fr": "Royaume-Uni", + "ja": "英国", + "pt-BR": "Reino Unido", + "ru": "Британия", + "zh-CN": "英国" } }, "subdivisions": [ { - "geoname_id": 5551752, - "iso_code": "AZ", + "geoname_id": 4896861, + "iso_code": "IL", "names": { - "de": "Arizona", - "en": "Arizona", - "es": "Arizona", - "fr": "Arizona", - "ja": "アリゾナ州", - "pt-BR": "Arizona", - "ru": "Аризона" + "en": "Illinois", + "es": "Illinois", + "fr": "Illinois", + "ja": "イリノイ州", + "pt-BR": "Ilinóis", + "ru": "Иллинойс", + "zh-CN": "伊利诺伊州" } } ] @@ -539318,7 +536176,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 19:32:50", + "@generated": "Sun, 14 Jan 2024 18:55:48", "site": [ { "@name": "https://labonnealternance.apprentissage.beta.gouv.fr", @@ -539417,13 +536275,6 @@ "riskdesc": "Informational (Medium)", "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, - { - "name": "Content-Type Header Missing", - "riskcode": "0", - "confidence": "2", - "riskdesc": "Informational (Medium)", - "desc": "

The Content-Type header was either missing or empty.

" - }, { "name": "Information Disclosure - Suspicious Comments", "riskcode": "0", @@ -539545,7 +536396,7 @@ "type": "dns", "host": "labonnealternance.apprentissage.beta.gouv.fr.", "matched-at": "labonnealternance.apprentissage.beta.gouv.fr", - "timestamp": "2024-01-07T19:37:23.565692618Z", + "timestamp": "2024-01-14T18:59:54.569717454Z", "matcher-status": true }, { @@ -539571,11 +536422,11 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "extracted-results": [ - "HEAD", - "GET" + "GET", + "HEAD" ], "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:37:38.891212181Z", + "timestamp": "2024-01-14T19:00:05.0530687Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539616,34 +536467,44 @@ "1" ], "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:37:50.510783668Z", + "timestamp": "2024-01-14T19:00:12.7675153Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, { - "template": "http/technologies/tech-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/tech-detect", - "template-id": "tech-detect", - "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "Wappalyzer Technology Detection", + "name": "HTTP Missing Security Headers", "author": [ - "hakluke" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "tech" + "misconfig", + "headers", + "generic" ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { "max-request": 1 } }, - "matcher-name": "next.js", + "matcher-name": "permissions-policy", "type": "http", "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:38:45.708342562Z", + "timestamp": "2024-01-14T19:00:59.658737391Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539675,12 +536536,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:39:03.286252425Z", + "timestamp": "2024-01-14T19:00:59.658786283Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539712,12 +536573,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "referrer-policy", "type": "http", "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:39:03.2862979Z", + "timestamp": "2024-01-14T19:00:59.6588063Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539754,7 +536615,7 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:39:03.286316786Z", + "timestamp": "2024-01-14T19:00:59.658819495Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539791,7 +536652,7 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:39:03.286331834Z", + "timestamp": "2024-01-14T19:00:59.65883281Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539828,7 +536689,7 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:39:03.286343917Z", + "timestamp": "2024-01-14T19:00:59.658847297Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539865,42 +536726,44 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:39:03.286368002Z", + "timestamp": "2024-01-14T19:00:59.658863637Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, { - "template": "http/misconfiguration/mixed-active-content.yaml", - "template-url": "https://templates.nuclei.sh/public/mixed-active-content", - "template-id": "mixed-active-content", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/mixed-active-content.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "Mixed Active Content", + "name": "HTTP Missing Security Headers", "author": [ - "liwermor" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ - "misconfig" - ], - "description": "This check detects if there are any active content loaded over HTTP instead of HTTPS.\n", - "impact": "Loading third-party scripts over HTTP can expose sensitive user data and lead to potential security vulnerabilities.\n", - "reference": [ - "https://developer.mozilla.org/en-us/docs/web/security/mixed_content", - "https://portswigger.net/kb/issues/01000400_mixed-content", - "https://resources.infosecinstitute.com/topics/vulnerabilities/https-mixed-content-vulnerability/", - "https://docs.gitlab.com/ee/user/application_security/dast/checks/319.1.html" + "misconfig", + "headers", + "generic" ], - "severity": "info" + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } }, - "matcher-name": "link", + "matcher-name": "content-security-policy", "type": "http", "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr", - "extracted-results": [ - "http://labonnealternance.apprentissage.beta.gouv.fr" - ], "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:39:03.287466691Z", + "timestamp": "2024-01-14T19:00:59.658983251Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -539940,7 +536803,7 @@ "host": "https://labonnealternance.apprentissage.beta.gouv.fr", "matched-at": "https://labonnealternance.apprentissage.beta.gouv.fr/", "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:39:56.923671511Z", + "timestamp": "2024-01-14T19:01:32.847462252Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: labonnealternance.apprentissage.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://labonnealternance.apprentissage.beta.gouv.fr/'", "matcher-status": true }, @@ -539990,7 +536853,7 @@ "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6" ], "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:41:09.990305942Z", + "timestamp": "2024-01-14T19:02:29.758265369Z", "matcher-status": true }, { @@ -540020,7 +536883,7 @@ "Let's Encrypt" ], "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:42:00.306181767Z", + "timestamp": "2024-01-14T19:03:13.200070266Z", "matcher-status": true }, { @@ -540050,7 +536913,7 @@ "labonnealternance.apprentissage.beta.gouv.fr" ], "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:42:00.306326458Z", + "timestamp": "2024-01-14T19:03:13.200210568Z", "matcher-status": true }, { @@ -540081,7 +536944,7 @@ "tls12" ], "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:42:02.978292885Z", + "timestamp": "2024-01-14T19:03:19.157381894Z", "matcher-status": true }, { @@ -540112,7 +536975,7 @@ "tls13" ], "ip": "149.202.54.205", - "timestamp": "2024-01-07T19:42:03.436665658Z", + "timestamp": "2024-01-14T19:03:19.390637279Z", "matcher-status": true } ], @@ -540120,7 +536983,7 @@ { "requestedUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/", "finalUrl": "https://labonnealternance.apprentissage.beta.gouv.fr/", - "fetchTime": "2024-01-07T19:33:04.219Z", + "fetchTime": "2024-01-14T18:56:02.888Z", "runWarnings": [], "categories": { "performance": { @@ -540131,7 +536994,7 @@ "snapshot" ], "id": "performance", - "score": 0.37744483947753904 + "score": 0.3642850875854492 }, "accessibility": { "title": "Accessibility", @@ -540183,53 +537046,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 11373, + "numericValue": 12183, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2359, - "firstMeaningfulPaint": 2359, - "largestContentfulPaint": 2649, - "interactive": 11373, - "speedIndex": 3110, - "totalBlockingTime": 818, - "maxPotentialFID": 414, + "firstContentfulPaint": 2036, + "firstMeaningfulPaint": 2036, + "largestContentfulPaint": 2278, + "interactive": 12183, + "speedIndex": 2707, + "totalBlockingTime": 941, + "maxPotentialFID": 543, "cumulativeLayoutShift": 0.0015431395636664497, "cumulativeLayoutShiftMainFrame": 0.0015431395636664497, "totalCumulativeLayoutShift": 0.0015431395636664497, "observedTimeOrigin": 0, - "observedTimeOriginTs": 526286254, + "observedTimeOriginTs": 522022087, "observedNavigationStart": 0, - "observedNavigationStartTs": 526286254, - "observedFirstPaint": 1203, - "observedFirstPaintTs": 527489161, - "observedFirstContentfulPaint": 1203, - "observedFirstContentfulPaintTs": 527489161, - "observedFirstContentfulPaintAllFrames": 1203, - "observedFirstContentfulPaintAllFramesTs": 527489161, - "observedFirstMeaningfulPaint": 1203, - "observedFirstMeaningfulPaintTs": 527489161, - "observedLargestContentfulPaint": 1203, - "observedLargestContentfulPaintTs": 527489162, - "observedLargestContentfulPaintAllFrames": 1203, - "observedLargestContentfulPaintAllFramesTs": 527489162, - "observedTraceEnd": 5928, - "observedTraceEndTs": 532214452, - "observedLoad": 3620, - "observedLoadTs": 529905921, - "observedDomContentLoaded": 2747, - "observedDomContentLoadedTs": 529033261, + "observedNavigationStartTs": 522022087, + "observedFirstPaint": 1115, + "observedFirstPaintTs": 523136994, + "observedFirstContentfulPaint": 1115, + "observedFirstContentfulPaintTs": 523136994, + "observedFirstContentfulPaintAllFrames": 1115, + "observedFirstContentfulPaintAllFramesTs": 523136994, + "observedFirstMeaningfulPaint": 1115, + "observedFirstMeaningfulPaintTs": 523136994, + "observedLargestContentfulPaint": 1115, + "observedLargestContentfulPaintTs": 523136995, + "observedLargestContentfulPaintAllFrames": 1115, + "observedLargestContentfulPaintAllFramesTs": 523136995, + "observedTraceEnd": 5414, + "observedTraceEndTs": 527436582, + "observedLoad": 3101, + "observedLoadTs": 525123332, + "observedDomContentLoaded": 2153, + "observedDomContentLoadedTs": 524175213, "observedCumulativeLayoutShift": 0.0015431395636664497, "observedCumulativeLayoutShiftMainFrame": 0.0015431395636664497, "observedTotalCumulativeLayoutShift": 0.0015431395636664497, - "observedFirstVisualChange": 1192, - "observedFirstVisualChangeTs": 527478254, - "observedLastVisualChange": 2759, - "observedLastVisualChangeTs": 529045254, - "observedSpeedIndex": 1305, - "observedSpeedIndexTs": 527590896 + "observedFirstVisualChange": 1090, + "observedFirstVisualChangeTs": 523112087, + "observedLastVisualChange": 2173, + "observedLastVisualChangeTs": 524195087, + "observedSpeedIndex": 1167, + "observedSpeedIndexTs": 523189072 }, { "lcpInvalidated": false @@ -540247,23 +537110,23 @@ "type": "debugdata", "items": [ { - "numRequests": 60, + "numRequests": 61, "numScripts": 34, "numStylesheets": 2, "numFonts": 4, - "numTasks": 1672, - "numTasksOver10ms": 7, - "numTasksOver25ms": 3, + "numTasks": 1633, + "numTasksOver10ms": 8, + "numTasksOver25ms": 5, "numTasksOver50ms": 3, - "numTasksOver100ms": 1, + "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 18.353, - "throughput": 7547094.365011485, - "maxRtt": 158.827, - "maxServerLatency": 12.786000000000001, - "totalByteWeight": 1691118, - "totalTaskTime": 484.97600000000097, - "mainDocumentTransferSize": 18381 + "rtt": 1.8030000000000002, + "throughput": 13252129.098318549, + "maxRtt": 100.05799999999999, + "maxServerLatency": 20.573999999999998, + "totalByteWeight": 1760113, + "totalTaskTime": 591.3919999999977, + "mainDocumentTransferSize": 18375 } ] } @@ -540376,7 +537239,7 @@ "cookiesCount": 0, "trackersGrade": "B", "trackersCount": 2, - "lighthouse_performance": 0.37744483947753904, + "lighthouse_performance": 0.3642850875854492, "lighthouse_performanceGrade": "D", "lighthouse_accessibility": 0.97, "lighthouse_accessibilityGrade": "A", @@ -540405,7 +537268,7 @@ "http": { "url": "https://sppnaut.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 19:35:51 GMT", + "end_time": "Sun, 14 Jan 2024 19:14:34 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -540415,9 +537278,9 @@ "Content-Type": "text/html", "X-CleverCloudUpgrade": "true" }, - "scan_id": 46237545, + "scan_id": 46500616, "score": 0, - "start_time": "Sun, 07 Jan 2024 19:35:45 GMT", + "start_time": "Sun, 14 Jan 2024 19:14:28 GMT", "state": "FINISHED", "status_code": 404, "tests_failed": 6, @@ -540690,70 +537553,70 @@ "testssl": [ { "id": "service", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_NULL", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -540761,7 +537624,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -540769,7 +537632,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -540777,7 +537640,7 @@ }, { "id": "cipherlist_LOW", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -540785,7 +537648,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -540793,7 +537656,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -540801,476 +537664,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'max fragment length/#1' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "sessionresumption_ticket", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No Session ID, no resumption" }, { "id": "TLS_timestamp", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "04961A6617AB25DA9A3A2DAE358A35D971D5" }, { "id": "cert_serialNumberLen", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "50A55E5AD8E6EB34561F76E657E3913A1A595D5F" }, { "id": "cert_fingerprintSHA256", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "E6155C232D9D4A8C36BC165272B4DE2071558556346B42886FDD0E2AF5E00089" }, { "id": "cert", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "sppnaut.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "lolcatho.st" }, { "id": "cert_subjectAltName", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "sppnaut.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", - "finding": "47 >= 30 days" + "finding": "40 >= 30 days" }, { "id": "cert_notBefore", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "2023-11-26 10:55" }, { "id": "cert_notAfter", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "2024-02-24 10:55" }, { "id": "cert_extlifeSpan", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -541278,7 +538141,7 @@ }, { "id": "heartbleed", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -541287,7 +538150,7 @@ }, { "id": "CCS", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -541296,7 +538159,7 @@ }, { "id": "ticketbleed", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -541305,7 +538168,7 @@ }, { "id": "ROBOT", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -541314,7 +538177,7 @@ }, { "id": "secure_renego", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -541322,7 +538185,7 @@ }, { "id": "secure_client_renego", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "HIGH", "cve": "CVE-2011-1473", @@ -541331,7 +538194,7 @@ }, { "id": "CRIME_TLS", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -541340,7 +538203,7 @@ }, { "id": "BREACH", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -541349,7 +538212,7 @@ }, { "id": "POODLE_SSL", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -541358,14 +538221,14 @@ }, { "id": "fallback_SCSV", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -541374,7 +538237,7 @@ }, { "id": "FREAK", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -541383,7 +538246,7 @@ }, { "id": "DROWN", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -541392,7 +538255,7 @@ }, { "id": "DROWN_hint", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -541401,7 +538264,7 @@ }, { "id": "LOGJAM", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -541410,7 +538273,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -541419,7 +538282,7 @@ }, { "id": "BEAST", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -541428,7 +538291,7 @@ }, { "id": "LUCKY13", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -541437,7 +538300,7 @@ }, { "id": "winshock", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -541446,7 +538309,7 @@ }, { "id": "RC4", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -541455,392 +538318,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "sppnaut.beta.gouv.fr/87.98.180.173", + "ip": "sppnaut.beta.gouv.fr/87.98.182.136", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_NULL", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -541848,7 +538711,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -541856,7 +538719,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -541864,7 +538727,7 @@ }, { "id": "cipherlist_LOW", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -541872,7 +538735,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -541880,7 +538743,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -541888,476 +538751,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'max fragment length/#1' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "sessionresumption_ticket", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No Session ID, no resumption" }, { "id": "TLS_timestamp", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "04961A6617AB25DA9A3A2DAE358A35D971D5" }, { "id": "cert_serialNumberLen", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "50A55E5AD8E6EB34561F76E657E3913A1A595D5F" }, { "id": "cert_fingerprintSHA256", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "E6155C232D9D4A8C36BC165272B4DE2071558556346B42886FDD0E2AF5E00089" }, { "id": "cert", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "sppnaut.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "lolcatho.st" }, { "id": "cert_subjectAltName", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "sppnaut.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", - "finding": "47 >= 30 days" + "finding": "40 >= 30 days" }, { "id": "cert_notBefore", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "2023-11-26 10:55" }, { "id": "cert_notAfter", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "2024-02-24 10:55" }, { "id": "cert_extlifeSpan", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "404 Not Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -542365,7 +539228,7 @@ }, { "id": "heartbleed", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -542374,7 +539237,7 @@ }, { "id": "CCS", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -542383,7 +539246,7 @@ }, { "id": "ticketbleed", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -542392,7 +539255,7 @@ }, { "id": "ROBOT", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -542401,7 +539264,7 @@ }, { "id": "secure_renego", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -542409,7 +539272,7 @@ }, { "id": "secure_client_renego", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "HIGH", "cve": "CVE-2011-1473", @@ -542418,7 +539281,7 @@ }, { "id": "CRIME_TLS", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -542427,7 +539290,7 @@ }, { "id": "BREACH", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -542436,7 +539299,7 @@ }, { "id": "POODLE_SSL", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -542445,14 +539308,14 @@ }, { "id": "fallback_SCSV", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -542461,7 +539324,7 @@ }, { "id": "FREAK", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -542470,7 +539333,7 @@ }, { "id": "DROWN", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -542479,7 +539342,7 @@ }, { "id": "DROWN_hint", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -542488,7 +539351,7 @@ }, { "id": "LOGJAM", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -542497,7 +539360,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -542506,7 +539369,7 @@ }, { "id": "BEAST", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -542515,7 +539378,7 @@ }, { "id": "LUCKY13", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -542524,7 +539387,7 @@ }, { "id": "winshock", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -542533,7 +539396,7 @@ }, { "id": "RC4", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -542542,332 +539405,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_102e", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_111d", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "sppnaut.beta.gouv.fr/87.98.182.136", + "ip": "sppnaut.beta.gouv.fr/87.98.180.173", "port": "443", "severity": "INFO", - "finding": "231" + "finding": "232" } ], "thirdparties": { @@ -542882,7 +539745,7 @@ "endpoints": [ { "hostname": "sppnaut.beta.gouv.fr", - "ip": "87.98.182.136", + "ip": "87.98.180.173", "geoip": { "continent": { "code": "EU", @@ -542949,7 +539812,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 19:35:15", + "@generated": "Sun, 14 Jan 2024 19:13:57", "site": [ { "@name": "https://sppnaut.beta.gouv.fr", @@ -543026,22 +539889,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -543057,10 +539920,7 @@ "type": "dns", "host": "sppnaut.beta.gouv.fr.", "matched-at": "sppnaut.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" - ], - "timestamp": "2024-01-07T19:44:02.030328912Z", + "timestamp": "2024-01-14T19:22:52.795102974Z", "matcher-status": true }, { @@ -543096,7 +539956,7 @@ "dns1.alwaysdata.com.", "dns2.alwaysdata.com." ], - "timestamp": "2024-01-07T19:44:02.051306274Z", + "timestamp": "2024-01-14T19:22:53.071697603Z", "matcher-status": true }, { @@ -543136,27 +539996,26 @@ "extracted-results": [ "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T19:44:02.057885455Z", + "timestamp": "2024-01-14T19:22:53.227868529Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "txt" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -543173,29 +540032,29 @@ "host": "sppnaut.beta.gouv.fr.", "matched-at": "sppnaut.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2024-01-07T19:44:02.165464796Z", + "timestamp": "2024-01-14T19:22:53.789832301Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "mx" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -543211,7 +540070,11 @@ "type": "dns", "host": "sppnaut.beta.gouv.fr.", "matched-at": "sppnaut.beta.gouv.fr", - "timestamp": "2024-01-07T19:44:02.20251032Z", + "extracted-results": [ + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2024-01-14T19:22:54.061734576Z", "matcher-status": true }, { @@ -543240,8 +540103,8 @@ "extracted-results": [ "support@clever-cloud.com" ], - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:44:26.551882762Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:23:17.246879788Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", "matcher-status": true }, @@ -543270,8 +540133,8 @@ "type": "http", "host": "https://sppnaut.beta.gouv.fr", "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:44:26.554222067Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:23:17.249355395Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", "matcher-status": true }, @@ -543302,82 +540165,8 @@ "type": "http", "host": "https://sppnaut.beta.gouv.fr", "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:44:26.557126327Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://sppnaut.beta.gouv.fr", - "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.872954663Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://sppnaut.beta.gouv.fr", - "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.872998565Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:23:17.252217634Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", "matcher-status": true }, @@ -543413,45 +540202,8 @@ "type": "http", "host": "https://sppnaut.beta.gouv.fr", "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873011148Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://sppnaut.beta.gouv.fr", - "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873026327Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757438439Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", "matcher-status": true }, @@ -543487,156 +540239,8 @@ "type": "http", "host": "https://sppnaut.beta.gouv.fr", "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873042537Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://sppnaut.beta.gouv.fr", - "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873058968Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "strict-transport-security", - "type": "http", - "host": "https://sppnaut.beta.gouv.fr", - "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873072964Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://sppnaut.beta.gouv.fr", - "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873086219Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://sppnaut.beta.gouv.fr", - "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873099273Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757487881Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", "matcher-status": true }, @@ -543672,8 +540276,82 @@ "type": "http", "host": "https://sppnaut.beta.gouv.fr", "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873107569Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757501947Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757517126Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757536111Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", "matcher-status": true }, @@ -543709,8 +540387,193 @@ "type": "http", "host": "https://sppnaut.beta.gouv.fr", "matched-at": "https://sppnaut.beta.gouv.fr", - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873118359Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757550167Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.75756773Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757587407Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757603136Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757617784Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://sppnaut.beta.gouv.fr", + "matched-at": "https://sppnaut.beta.gouv.fr", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.757635597Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", "matcher-status": true }, @@ -543728,14 +540591,16 @@ "misconfig" ], "description": "This check detects if there are any active content loaded over HTTP instead of HTTPS.\n", - "impact": "Loading third-party scripts over HTTP can expose sensitive user data and lead to potential security vulnerabilities.\n", "reference": [ "https://developer.mozilla.org/en-us/docs/web/security/mixed_content", "https://portswigger.net/kb/issues/01000400_mixed-content", "https://resources.infosecinstitute.com/topics/vulnerabilities/https-mixed-content-vulnerability/", "https://docs.gitlab.com/ee/user/application_security/dast/checks/319.1.html" ], - "severity": "info" + "severity": "info", + "metadata": { + "max-request": 1 + } }, "matcher-name": "link", "type": "http", @@ -543744,8 +540609,8 @@ "extracted-results": [ "http://clever-cloud.com/img/favicon.png" ], - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:45:32.873166038Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:24:23.75768516Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://sppnaut.beta.gouv.fr'", "matcher-status": true }, @@ -543775,8 +540640,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:48:37.798348297Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:26:03.36477385Z", "matcher-status": true }, { @@ -543805,8 +540670,8 @@ "extracted-results": [ "sppnaut.beta.gouv.fr" ], - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:48:37.798457531Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:26:03.364894215Z", "matcher-status": true }, { @@ -543836,8 +540701,8 @@ "extracted-results": [ "tls12" ], - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:48:40.618009421Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:26:07.743065037Z", "matcher-status": true }, { @@ -543867,8 +540732,8 @@ "extracted-results": [ "tls13" ], - "ip": "87.98.180.173", - "timestamp": "2024-01-07T19:48:41.197624039Z", + "ip": "87.98.182.136", + "timestamp": "2024-01-14T19:26:08.270396831Z", "matcher-status": true } ], @@ -543978,7 +540843,7 @@ "http": { "url": "https://labonneboite.pole-emploi.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 19:45:15 GMT", + "end_time": "Sun, 14 Jan 2024 19:19:23 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -543987,9 +540852,9 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: maps.labonneboite.pole-emploi.fr embed.doorbell.io labonnealternance.pole-emploi.fr memo.pole-emploi.fr www.google-analytics.com static.hotjar.com script.hotjar.com optimize.google.com www.googletagmanager.com cdn.trustcommander.net cdn.tagcommander.com tag.aticdn.net guidances-applicatives.pole-emploi.fr", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 19:45:13 GMT", + "Date": "Sun, 14 Jan 2024 19:19:22 GMT", "Referrer-Policy": "strict-origin", - "Set-Cookie": "session=eyJfcGVybWFuZW50Ijp0cnVlLCJjc3JmX3Rva2VuIjoiMWE0MDRmMjc2ZTQ5YWRmNjc2ZmFlMmU3NjIwYTAxNmIxYzRjODI2YSJ9.ZZr_SQ.qcavjlh3BJ67Xcfp4Q5q1IZnAuE; Domain=.labonneboite.pole-emploi.fr; Expires=Wed, 07 Feb 2024 19:45:13 GMT; Secure; HttpOnly; Path=/", + "Set-Cookie": "session=eyJfcGVybWFuZW50Ijp0cnVlLCJjc3JmX3Rva2VuIjoiYWZkNmE2ZjJkOGQ2M2FhNjgxMTZkNTEyZWZkM2Y5YmQ3NTA4NzQ5YSJ9.ZaQzug.g1hUVqckQ7kFEWBqT9Gjq5n9VTo; Domain=.labonneboite.pole-emploi.fr; Expires=Wed, 14 Feb 2024 19:19:22 GMT; Secure; HttpOnly; Path=/", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "Vary": "Cookie", @@ -543997,9 +540862,9 @@ "X-Frame-Options": "SAMEORIGIN", "X-Xss-Protection": "1; mode=block" }, - "scan_id": 46237658, + "scan_id": 46500992, "score": 75, - "start_time": "Sun, 07 Jan 2024 19:44:55 GMT", + "start_time": "Sun, 14 Jan 2024 19:19:18 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -544012,23 +540877,23 @@ "output": { "data": { "script-src": [ - "embed.doorbell.io", - "static.hotjar.com", - "optimize.google.com", - "www.google-analytics.com", - "tag.aticdn.net", - "maps.labonneboite.pole-emploi.fr", - "script.hotjar.com", - "'self'", - "'unsafe-inline'", - "cdn.tagcommander.com", "cdn.trustcommander.net", "www.googletagmanager.com", + "tag.aticdn.net", + "blob:", + "embed.doorbell.io", "labonnealternance.pole-emploi.fr", - "'unsafe-eval'", + "'unsafe-inline'", + "'self'", + "cdn.tagcommander.com", "memo.pole-emploi.fr", - "blob:", - "guidances-applicatives.pole-emploi.fr" + "optimize.google.com", + "guidances-applicatives.pole-emploi.fr", + "script.hotjar.com", + "static.hotjar.com", + "'unsafe-eval'", + "maps.labonneboite.pole-emploi.fr", + "www.google-analytics.com" ] }, "http": true, @@ -544071,7 +540936,7 @@ "data": { "session": { "domain": ".labonneboite.pole-emploi.fr", - "expires": 1707335115, + "expires": 1707938363, "httponly": true, "max-age": null, "path": "/", @@ -544121,14 +540986,17 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": null, + "destination": "https://labonneboite.pole-emploi.fr/", "redirects": true, - "route": [], - "status_code": null + "route": [ + "http://labonneboite.pole-emploi.fr/", + "https://labonneboite.pole-emploi.fr/" + ], + "status_code": 200 }, "pass": true, - "result": "redirection-not-needed-no-http", - "score_description": "Not able to connect via HTTP, so no redirection necessary", + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", "score_modifier": 0 }, "referrer-policy": { @@ -544391,7 +541259,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 19:41:33", + "@generated": "Sun, 14 Jan 2024 19:15:58", "site": [ { "@name": "https://labonneboite.pole-emploi.fr", @@ -544666,7 +541534,7 @@ "http": { "url": "https://cfas.apprentissage.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 19:55:58 GMT", + "end_time": "Sun, 14 Jan 2024 19:15:27 GMT", "grade": "A+", "hidden": false, "likelihood_indicator": "LOW", @@ -544676,8 +541544,8 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site data:; object-src 'none'; script-src 'self' https://plausible.io ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 19:55:56 GMT", - "ETag": "\"318uset6x9oo8\"", + "Date": "Sun, 14 Jan 2024 19:15:25 GMT", + "ETag": "\"6c88lszapfosl\"", "Referrer-Policy": "no-referrer-when-downgrade", "Strict-Transport-Security": "max-age=31536000; includeSubdomains", "Transfer-Encoding": "chunked", @@ -544685,9 +541553,9 @@ "X-Content-Type-Options": "nosniff", "X-Frame-Options": "SAMEORIGIN" }, - "scan_id": 46237728, + "scan_id": 46500682, "score": 105, - "start_time": "Sun, 07 Jan 2024 19:55:53 GMT", + "start_time": "Sun, 14 Jan 2024 19:15:22 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 0, @@ -544706,8 +541574,8 @@ "'none'" ], "connect-src": [ - "https://sentry.apprentissage.beta.gouv.fr", "https://plausible.io", + "https://sentry.apprentissage.beta.gouv.fr", "'self'" ], "default-src": [ @@ -544716,16 +541584,16 @@ ], "font-src": [ "https:", - "data:", - "'self'" + "'self'", + "data:" ], "frame-ancestors": [ "https://cfas.apprentissage.beta.gouv.fr", "'self'" ], "frame-src": [ - "https://cfas.apprentissage.beta.gouv.fr", "https://plausible.io", + "https://cfas.apprentissage.beta.gouv.fr", "https://cfas-recette.apprentissage.beta.gouv.fr", "'self'" ], @@ -544747,8 +541615,8 @@ "'none'" ], "style-src": [ - "https:", "*.plausible.io", + "https:", "'self'", "'unsafe-inline'" ], @@ -544930,7 +541798,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2023-09-04T12:56:18Z", + "up_since": "2024-01-11T21:23:52Z", "error": null, "period": 3600, "apdex_t": 0.5, @@ -544942,8 +541810,8 @@ "email:3896582286", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T19:21:28Z", - "next_check_at": "2024-01-07T20:21:10Z", + "last_check_at": "2024-01-14T19:02:24Z", + "next_check_at": "2024-01-14T20:01:55Z", "created_at": "2021-04-22T21:33:48Z", "mute_until": "forever", "favicon_url": "https://cfas.apprentissage.beta.gouv.fr/favicon.ico", @@ -544951,8 +541819,8 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T14:22:45Z", - "expires_at": "2024-02-04T00:00:14Z", + "tested_at": "2024-01-14T15:03:42Z", + "expires_at": "2024-04-07T00:00:15Z", "valid": true, "error": null }, @@ -545272,7 +542140,7 @@ "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "038AC7D7A9698F5E2BF37BA66A584255479D" + "finding": "0495002937A4716623B55209C9DE2A3ED50A" }, { "id": "cert_serialNumberLen", @@ -545286,21 +542154,21 @@ "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "96E1E3AE0355E5739F8298E41AA02B3CD86DDC05" + "finding": "A53697347C0FF19652683F9D0B6068EF627F27A6" }, { "id": "cert_fingerprintSHA256", "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "E8C59318CF1F2E3D93A5B6DF721FB47336B5BF477B685188EB14E74A9FA01172" + "finding": "7CBDE2DC0B05C60C2E45E41156C438775E24FCC325C7BF35BA4C290C24ED5D74" }, { "id": "cert", "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -545348,22 +542216,22 @@ "id": "cert_expirationStatus", "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "MEDIUM", - "finding": "expires < 30 days (27)" + "severity": "OK", + "finding": "83 >= 30 days" }, { "id": "cert_notBefore", "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "2023-11-06 00:00" + "finding": "2024-01-08 00:00" }, { "id": "cert_notAfter", "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", - "severity": "MEDIUM", - "finding": "2024-02-04 00:00" + "severity": "OK", + "finding": "2024-04-07 00:00" }, { "id": "cert_extlifeSpan", @@ -545545,14 +542413,14 @@ "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "cfas.apprentissage.beta.gouv.fr/141.95.161.225", "port": "443", "severity": "INFO", - "finding": "1704657431" + "finding": "1705259800" }, { "id": "HSTS_time", @@ -546155,8 +543023,8 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self' https://plausible.io; base-uri 'self'; block-all-mixed-content; font-src 'self' https: data:; frame-ancestors 'self' https://cfas.apprentissage.beta.gouv.fr; frame-src 'self' https://plausible.io https://cfas.apprentissage.beta.gouv.fr https://cfas-recette.apprentissage.beta.gouv.fr; img-src 'self' https://files.tableau-de-bord.apprentissage.beta.gouv.fr https://www.notion.so https://mission-apprentissage.notion.site data:; object-src 'none'; script-src 'self' https://plausible.io ; script-src-attr 'none'; style-src 'self' https: *.plausible.io 'unsafe-inline'; connect-src 'self' https://plausible.io https://sentry.apprentissage.beta.gouv.fr ; upgrade-insecure-requests;", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 19:56:28 GMT", - "etag": "\"j2svhn0u95oo8\"", + "date": "Sun, 14 Jan 2024 19:15:59 GMT", + "etag": "\"ia9wsclc5uosk\"", "referrer-policy": "no-referrer-when-downgrade", "strict-transport-security": "max-age=31536000; includeSubdomains", "transfer-encoding": "chunked", @@ -546169,19 +543037,6 @@ "hostname": "cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", "geoip": { - "city": { - "geoname_id": 2988507, - "names": { - "de": "Paris", - "en": "Paris", - "es": "París", - "fr": "Paris", - "ja": "パリ", - "pt-BR": "Paris", - "ru": "Париж", - "zh-CN": "巴黎" - } - }, "continent": { "code": "EU", "geoname_id": 6255148, @@ -546212,14 +543067,11 @@ } }, "location": { - "accuracy_radius": 10, - "latitude": 48.8323, - "longitude": 2.4075, + "accuracy_radius": 500, + "latitude": 48.8582, + "longitude": 2.3387, "time_zone": "Europe/Paris" }, - "postal": { - "code": "75004" - }, "registered_country": { "geoname_id": 3017382, "is_in_european_union": true, @@ -546234,30 +543086,7 @@ "ru": "Франция", "zh-CN": "法国" } - }, - "subdivisions": [ - { - "geoname_id": 3012874, - "iso_code": "IDF", - "names": { - "de": "Île-de-France", - "en": "Île-de-France", - "es": "Isla de Francia", - "fr": "Île-de-France", - "pt-BR": "Ilha de França" - } - }, - { - "geoname_id": 2968815, - "iso_code": "75", - "names": { - "de": "Paris", - "en": "Paris", - "es": "Paris", - "fr": "Paris" - } - } - ] + } } } ] @@ -546453,7 +543282,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 19:55:27", + "@generated": "Sun, 14 Jan 2024 19:14:57", "site": [ { "@name": "https://cfas.apprentissage.beta.gouv.fr", @@ -546652,7 +543481,34 @@ "type": "dns", "host": "cfas.apprentissage.beta.gouv.fr.", "matched-at": "cfas.apprentissage.beta.gouv.fr", - "timestamp": "2024-01-07T19:58:28.085583275Z", + "timestamp": "2024-01-14T19:17:58.437814683Z", + "matcher-status": true + }, + { + "template": "http/technologies/tech-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/tech-detect", + "template-id": "tech-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/tech-detect.yaml", + "info": { + "name": "Wappalyzer Technology Detection", + "author": [ + "hakluke" + ], + "tags": [ + "tech" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "next.js", + "type": "http", + "host": "https://cfas.apprentissage.beta.gouv.fr", + "matched-at": "https://cfas.apprentissage.beta.gouv.fr", + "ip": "141.95.161.225", + "timestamp": "2024-01-14T19:18:42.505613872Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, { @@ -546683,12 +543539,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2024-01-07T19:59:17.181532863Z", + "timestamp": "2024-01-14T19:18:48.253878266Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -546720,12 +543576,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2024-01-07T19:59:17.18159044Z", + "timestamp": "2024-01-14T19:18:48.253924703Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -546757,12 +543613,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2024-01-07T19:59:17.18160662Z", + "timestamp": "2024-01-14T19:18:48.253943097Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -546794,12 +543650,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2024-01-07T19:59:17.181620526Z", + "timestamp": "2024-01-14T19:18:48.253961812Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -546831,12 +543687,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2024-01-07T19:59:17.181642226Z", + "timestamp": "2024-01-14T19:18:48.253975297Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -546868,12 +543724,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2024-01-07T19:59:17.181752253Z", + "timestamp": "2024-01-14T19:18:48.253987048Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -546905,12 +543761,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2024-01-07T19:59:17.181774043Z", + "timestamp": "2024-01-14T19:18:48.253999482Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -546942,12 +543798,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr", "ip": "141.95.161.225", - "timestamp": "2024-01-07T19:59:17.181811152Z", + "timestamp": "2024-01-14T19:18:48.254015281Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr'", "matcher-status": true }, @@ -546987,7 +543843,7 @@ "host": "https://cfas.apprentissage.beta.gouv.fr", "matched-at": "https://cfas.apprentissage.beta.gouv.fr/", "ip": "141.95.161.225", - "timestamp": "2024-01-07T19:59:40.640205821Z", + "timestamp": "2024-01-14T19:19:12.105282024Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: cfas.apprentissage.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cfas.apprentissage.beta.gouv.fr/'", "matcher-status": true }, @@ -547037,7 +543893,7 @@ "SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6" ], "ip": "141.95.161.225", - "timestamp": "2024-01-07T20:00:27.182414969Z", + "timestamp": "2024-01-14T19:20:02.542283905Z", "matcher-status": true }, { @@ -547067,7 +543923,7 @@ "Let's Encrypt" ], "ip": "141.95.161.225", - "timestamp": "2024-01-07T20:01:13.100919972Z", + "timestamp": "2024-01-14T19:20:50.434642576Z", "matcher-status": true }, { @@ -547097,7 +543953,7 @@ "cfas.apprentissage.beta.gouv.fr" ], "ip": "141.95.161.225", - "timestamp": "2024-01-07T20:01:13.101045205Z", + "timestamp": "2024-01-14T19:20:50.434761368Z", "matcher-status": true }, { @@ -547128,7 +543984,7 @@ "tls12" ], "ip": "141.95.161.225", - "timestamp": "2024-01-07T20:01:18.002489664Z", + "timestamp": "2024-01-14T19:20:53.891628119Z", "matcher-status": true }, { @@ -547159,7 +544015,7 @@ "tls13" ], "ip": "141.95.161.225", - "timestamp": "2024-01-07T20:01:18.195315059Z", + "timestamp": "2024-01-14T19:20:54.084408743Z", "matcher-status": true } ], @@ -547167,7 +544023,7 @@ { "requestedUrl": "https://cfas.apprentissage.beta.gouv.fr/", "finalUrl": "https://cfas.apprentissage.beta.gouv.fr/", - "fetchTime": "2024-01-07T19:55:41.428Z", + "fetchTime": "2024-01-14T19:15:11.784Z", "runWarnings": [], "categories": { "performance": { @@ -547178,7 +544034,7 @@ "snapshot" ], "id": "performance", - "score": 0.7769824981689453 + "score": 0.625460433959961 }, "accessibility": { "title": "Accessibility", @@ -547230,53 +544086,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 10198, + "numericValue": 9973, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1528, - "firstMeaningfulPaint": 1528, - "largestContentfulPaint": 7678, - "interactive": 10198, - "speedIndex": 2829, - "totalBlockingTime": 1394, - "maxPotentialFID": 1002, - "cumulativeLayoutShift": 0.1880273573133681, - "cumulativeLayoutShiftMainFrame": 0.1880273573133681, - "totalCumulativeLayoutShift": 0.1880273573133681, + "firstContentfulPaint": 1524, + "firstMeaningfulPaint": 1524, + "largestContentfulPaint": 8167, + "interactive": 9973, + "speedIndex": 2791, + "totalBlockingTime": 888, + "maxPotentialFID": 460, + "cumulativeLayoutShift": 0.5513990071614583, + "cumulativeLayoutShiftMainFrame": 0.5513990071614583, + "totalCumulativeLayoutShift": 0.5513990071614583, "observedTimeOrigin": 0, - "observedTimeOriginTs": 291272259, + "observedTimeOriginTs": 199632728, "observedNavigationStart": 0, - "observedNavigationStartTs": 291272259, - "observedFirstPaint": 630, - "observedFirstPaintTs": 291902710, - "observedFirstContentfulPaint": 1484, - "observedFirstContentfulPaintTs": 292756653, - "observedFirstContentfulPaintAllFrames": 1484, - "observedFirstContentfulPaintAllFramesTs": 292756653, - "observedFirstMeaningfulPaint": 1484, - "observedFirstMeaningfulPaintTs": 292756653, - "observedLargestContentfulPaint": 1484, - "observedLargestContentfulPaintTs": 292756653, - "observedLargestContentfulPaintAllFrames": 1484, - "observedLargestContentfulPaintAllFramesTs": 292756653, - "observedTraceEnd": 4245, - "observedTraceEndTs": 295517331, - "observedLoad": 1252, - "observedLoadTs": 292523897, - "observedDomContentLoaded": 1251, - "observedDomContentLoadedTs": 292523669, - "observedCumulativeLayoutShift": 0.1880273573133681, - "observedCumulativeLayoutShiftMainFrame": 0.1880273573133681, - "observedTotalCumulativeLayoutShift": 0.1880273573133681, - "observedFirstVisualChange": 1482, - "observedFirstVisualChangeTs": 292754259, - "observedLastVisualChange": 1849, - "observedLastVisualChangeTs": 293121259, - "observedSpeedIndex": 1490, - "observedSpeedIndexTs": 292762289 + "observedNavigationStartTs": 199632728, + "observedFirstPaint": 603, + "observedFirstPaintTs": 200235480, + "observedFirstContentfulPaint": 1421, + "observedFirstContentfulPaintTs": 201053685, + "observedFirstContentfulPaintAllFrames": 1421, + "observedFirstContentfulPaintAllFramesTs": 201053685, + "observedFirstMeaningfulPaint": 1421, + "observedFirstMeaningfulPaintTs": 201053685, + "observedLargestContentfulPaint": 1421, + "observedLargestContentfulPaintTs": 201053685, + "observedLargestContentfulPaintAllFrames": 1421, + "observedLargestContentfulPaintAllFramesTs": 201053685, + "observedTraceEnd": 4253, + "observedTraceEndTs": 203885374, + "observedLoad": 1204, + "observedLoadTs": 200836425, + "observedDomContentLoaded": 1203, + "observedDomContentLoadedTs": 200836168, + "observedCumulativeLayoutShift": 0.5513990071614583, + "observedCumulativeLayoutShiftMainFrame": 0.5513990071614583, + "observedTotalCumulativeLayoutShift": 0.5513990071614583, + "observedFirstVisualChange": 1425, + "observedFirstVisualChangeTs": 201057728, + "observedLastVisualChange": 1592, + "observedLastVisualChangeTs": 201224728, + "observedSpeedIndex": 1463, + "observedSpeedIndexTs": 201095289 }, { "lcpInvalidated": false @@ -547294,23 +544150,23 @@ "type": "debugdata", "items": [ { - "numRequests": 54, - "numScripts": 24, + "numRequests": 57, + "numScripts": 26, "numStylesheets": 1, "numFonts": 3, - "numTasks": 1065, - "numTasksOver10ms": 10, - "numTasksOver25ms": 5, + "numTasks": 1203, + "numTasksOver10ms": 7, + "numTasksOver25ms": 6, "numTasksOver50ms": 3, - "numTasksOver100ms": 2, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 83.18599999999999, - "throughput": 16646519.592311878, - "maxRtt": 83.18599999999999, - "maxServerLatency": 9.237000000000009, - "totalByteWeight": 1169254, - "totalTaskTime": 747.3379999999979, - "mainDocumentTransferSize": 9074 + "rtt": 83.029, + "throughput": 14090756.704982635, + "maxRtt": 83.59400000000001, + "maxServerLatency": 9.637, + "totalByteWeight": 1177234, + "totalTaskTime": 576.9500000000013, + "mainDocumentTransferSize": 9112 } ] } @@ -547397,15 +544253,15 @@ "nmapGrade": "B", "nmapOpenPortsCount": 3, "nmapOpenPortsGrade": "F", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-02-04T00:00:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-04-07T00:00:00.000Z", "testsslGrade": "A+", "cookiesGrade": "A", "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.7769824981689453, - "lighthouse_performanceGrade": "B", + "lighthouse_performance": 0.625460433959961, + "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 0.95, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 0.83, @@ -547436,31 +544292,31 @@ "http": { "url": "https://conseil-refondation.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 20:04:16 GMT", + "end_time": "Sun, 14 Jan 2024 19:38:26 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-RAY": "841ecf0848ef982a-SJC", + "CF-RAY": "845856cb8b0d67fe-SJC", "Connection": "keep-alive", "Content-Encoding": "gzip", - "Content-Security-Policy": "connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com", + "Content-Security-Policy": "frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 20:04:15 GMT", + "Date": "Sun, 14 Jan 2024 19:38:24 GMT", "NEL": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", "Referrer-Policy": "same-origin", - "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=bFaOWmcfeoMjEfACMZr3qXxjHnRdAsGzfBHcXIynLsVRtKoTvfu%2FW1M9aYGooiI5NnWcvD5bppsacBGvFI0DOHD24N3UMtosaFBXNNAA6D4ytN0fwkb3K5fPV9C8so%2Buj8etOty9cx%2BnETqfJkzDOXS9wgGp\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "Report-To": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=EjHvvgvazWdGlrFfHn8PwUsDn%2FaiV011PLzyR3YMSDIq7D%2FrgrLlxuPFgU6DLOqgbIcWJK1zVHvxKjbt6m7bTN9jrGcUUAHO7ZmtXFpeuKnyYc%2FWw4KhaGgZhGfBF9QsVtPubn%2FLZ%2FaOIJczVyoqhykdyJAZ\"}],\"group\":\"cf-nel\",\"max_age\":604800}", "Server": "cloudflare", "Transfer-Encoding": "chunked", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", - "X-Request-ID": "e76e7de6-7fee-4f89-ace0-a373fae632b1", + "X-Request-ID": "ef4986b9-0f08-4589-9d86-9b9b1542c5f1", "alt-svc": "h3=\":443\"; ma=86400" }, - "scan_id": 46237765, + "scan_id": 46502037, "score": 80, - "start_time": "Sun, 07 Jan 2024 20:04:13 GMT", + "start_time": "Sun, 14 Jan 2024 19:32:16 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -547473,16 +544329,16 @@ "output": { "data": { "connect-src": [ - "*.facebook.com", + "stats.conseil-refondation.fr", + "form.typeform.com", + "googleads.g.doubleclick.net/", + "client.axept.io", "connect.facebook.net", - "googleadservices.com", + "'self'", + "*.facebook.com", "api.axept.io", - "client.axept.io", "googletagmanager.com", - "googleads.g.doubleclick.net/", - "stats.conseil-refondation.fr", - "form.typeform.com", - "'self'" + "googleadservices.com" ], "default-src": [ "localhost:8000", @@ -547490,44 +544346,44 @@ "'self'" ], "frame-src": [ - "*.facebook.com", + "*.youtube.com", "form.typeform.com", + "datawrapper.dwcdn.net", "*.vimeo.com", - "*.youtube.com", - "datawrapper.dwcdn.net" + "*.facebook.com" ], "img-src": [ - "*.facebook.com", - "*.google.com", "*.google.fr", - "localhost:8000", - "*.gstatic.com", "cellar-c2.services.clever-cloud.com", + "*.gstatic.com", "data:", - "'self'" + "'self'", + "*.facebook.com", + "*.google.com", + "localhost:8000" ], "script-src": [ - "connect.facebook.net", "static.axept.io", - "www.googletagmanager.com", - "googleads.g.doubleclick.net", - "'sha256-bnifc3kd4jwcyrutuxw9ajuyeckeuytlj+5nh6tjbwe='", - "www.googleadservices.com", "stats.conseil-refondation.fr", + "'sha256-bnifc3kd4jwcyrutuxw9ajuyeckeuytlj+5nh6tjbwe='", + "connect.facebook.net", + "'self'", "embed.typeform.com", - "'sha256-1neh+dsrmkevqd7cmk4xkhfjyhtrpair8ncbjlw/w5e='", - "'self'" + "googleads.g.doubleclick.net", + "www.googleadservices.com", + "www.googletagmanager.com", + "'sha256-1neh+dsrmkevqd7cmk4xkhfjyhtrpair8ncbjlw/w5e='" ], "style-src": [ - "'sha256-athis6ynuvjwfhehgese8wafj61fxmzxx7s/uwrv5dg='", + "'sha256-eyt3mcqjjqqqujzulvq9blyx+kvgqzvlpj4tozz4mb8='", "'sha256-xhd5+zyamb/dmdyikywxmzaxokrsmrintdcso/s+hcc='", - "'sha256-ddzkvrijy1xyahb04e1npps7onjw3g8949x7gac/key='", - "'unsafe-hashes'", "'sha256-/68sznaqxdldug09n2c6rd/j5vwzefkxcrsvxk+bc7s='", "'sha256-d//lck7pnf/oy9mpfgyaiotmqjezvwlsukk3uobi08a='", + "'unsafe-hashes'", + "'self'", "embed.typeform.com", - "'sha256-eyt3mcqjjqqqujzulvq9blyx+kvgqzvlpj4tozz4mb8='", - "'self'" + "'sha256-ddzkvrijy1xyahb04e1npps7onjw3g8949x7gac/key='", + "'sha256-athis6ynuvjwfhehgese8wafj61fxmzxx7s/uwrv5dg='" ] }, "http": true, @@ -548115,7 +544971,7 @@ "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "77 >= 60 days" + "finding": "70 >= 60 days" }, { "id": "cert_notBefore", @@ -548325,7 +545181,7 @@ "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "INFO", - "finding": "1704657940" + "finding": "1705261192" }, { "id": "HSTS", @@ -548381,7 +545237,7 @@ "ip": "conseil-refondation.fr/104.21.7.98", "port": "443", "severity": "OK", - "finding": "frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com" + "finding": "connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com" }, { "id": "Referrer-Policy", @@ -549295,7 +546151,7 @@ "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "OK", - "finding": "77 >= 60 days" + "finding": "70 >= 60 days" }, { "id": "cert_notBefore", @@ -549505,7 +546361,7 @@ "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", - "finding": "1704658001" + "finding": "1705261252" }, { "id": "HSTS", @@ -550105,26 +546961,26 @@ "ip": "conseil-refondation.fr/172.67.130.24", "port": "443", "severity": "INFO", - "finding": "123" + "finding": "122" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/Logo-CNR_couleur_variante.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=tNYAq6DoEZxqSeOYclDZKKTED4g%3D&Expires=1704661487" + "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/Logo-CNR_couleur_variante.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=YrrAc4vXje%2BNAO7N7BKG%2BvCGpKU%3D&Expires=1705264736" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-Local.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=JtajG8kehm6ZkjgYwO1SPE%2FJ7pQ%3D&Expires=1704661487" + "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-Local.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=RJUTIB8duIJs6UDBg0inFvEmFmM%3D&Expires=1705264736" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-National.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=8xueFeadT74MbDgv%2BLf3saaOGwI%3D&Expires=1704661487" + "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-National.original.jpg?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=Og%2FhAI3G15folqfZsF7JPpxojqE%3D&Expires=1705264736" }, { "type": "unknown", - "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-General.original.png?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=QD0epCMPT4MNgnXysrOOECFF8nw%3D&Expires=1704661487" + "url": "https://cellar-c2.services.clever-cloud.com/files-storage/images/illustration-General.original.png?AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3&Signature=1TiSrlTTDXmaAuUlpOBQsX8f%2BE8%3D&Expires=1705264736" }, { "type": "unknown", @@ -550132,7 +546988,7 @@ }, { "type": "unknown", - "url": "https://stats.conseil-refondation.fr/matomo.php?action_name=Accueil%20%E2%80%94%20Conseil%20National%20de%20la%20Refondation&idsite=1&rec=1&r=485704&h=20&m=4&s=48&url=https%3A%2F%2Fconseil-refondation.fr%2F&_id=a6e0c5bf55fd9fd8&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=dsVB5D&pf_net=30&pf_srv=187&pf_tfr=68&pf_dm1=116&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" + "url": "https://stats.conseil-refondation.fr/matomo.php?action_name=Accueil%20%E2%80%94%20Conseil%20National%20de%20la%20Refondation&idsite=1&rec=1&r=771588&h=19&m=38&s=57&url=https%3A%2F%2Fconseil-refondation.fr%2F&_id=3251ccaa3c0c152e&_idn=1&send_image=0&_refts=0&cookie=1&res=800x600&pv_id=lByKBc&pf_net=28&pf_srv=388&pf_tfr=149&pf_dm1=205&uadata=%7B%22fullVersionList%22%3A%5B%5D%2C%22mobile%22%3Afalse%2C%22model%22%3A%22%22%2C%22platform%22%3A%22%22%2C%22platformVersion%22%3A%22%22%7D" } ], "cookies": [ @@ -550141,7 +546997,7 @@ "value": "1", "domain": "conseil-refondation.fr", "path": "/", - "expires": 1704659688, + "expires": 1705262937, "size": 15, "httpOnly": false, "secure": false, @@ -550153,10 +547009,10 @@ }, { "name": "_pk_id.1.474c", - "value": "a6e0c5bf55fd9fd8.1704657888.", + "value": "3251ccaa3c0c152e.1705261137.", "domain": "conseil-refondation.fr", "path": "/", - "expires": 1738613088, + "expires": 1739216337, "size": 41, "httpOnly": false, "secure": false, @@ -550170,18 +547026,18 @@ "headers": { "alt-svc": "h3=\":443\"; ma=86400", "cf-cache-status": "DYNAMIC", - "cf-ray": "841ecfd699c181dc-IAD", + "cf-ray": "84585796edea175f-SJC", "content-encoding": "br", - "content-security-policy": "connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com", + "content-security-policy": "frame-src *.youtube.com *.facebook.com *.vimeo.com datawrapper.dwcdn.net form.typeform.com; connect-src connect.facebook.net *.facebook.com 'self' stats.conseil-refondation.fr client.axept.io api.axept.io googletagmanager.com googleadservices.com googleads.g.doubleclick.net/ form.typeform.com; default-src 'self' data: localhost:8000; script-src 'self' 'sha256-bniFC3kd4JwCYRuTuxW9AjUYecKEuyTLJ+5NH6TJBWE=' stats.conseil-refondation.fr 'sha256-1neh+DsrMKevQd7CmK4xkhFjYHtrpaiR8ncbjLw/w5E=' connect.facebook.net static.axept.io www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net embed.typeform.com; style-src 'self' 'unsafe-hashes' 'sha256-d//Lck7pNf/OY9MPfGYaIOTmqjEzvwlSukK3UObI08A=' 'sha256-Eyt3MCqJJqqqUJzUlVq9BLYX+kVGQZVLpJ4toZz4mb8=' 'sha256-Xhd5+zYamb/dMdyIkYwXmzaXokrsMrINTdCsO/s+Hcc=' 'sha256-dDZkVrIJy1Xyahb04E1npPS7ONJw3g8949x7gAc/kEY=' 'sha256-/68szNaQXdlDug09n2c6rD/J5VWzEfkXCRsVxk+Bc7s=' 'sha256-AthIs6YNuVjwfheHgESE8WAfJ61fXMZXX7s/UwRV5Dg=' embed.typeform.com; img-src 'self' data: localhost:8000 *.google.com *.gstatic.com *.facebook.com *.google.fr cellar-c2.services.clever-cloud.com", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 20:04:47 GMT", + "date": "Sun, 14 Jan 2024 19:38:56 GMT", "nel": "{\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}", "referrer-policy": "same-origin", - "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=V2%2FE4kixx4ebwzfChcs8TrsfmiGFVJyL70icfOmvUMvVHT0QvM3l8drkOUndFJu%2BnS3ZDu1WT7muM7zJCoMrZ%2BoGbpECA3uUO77Fmeosx9PLB8vOrFsZoP5oEPBUYUd3VGZeQw%2FHb%2FTU\"}],\"group\":\"cf-nel\",\"max_age\":604800}", + "report-to": "{\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=rC0ousHAnHFYiob57t7QhCg0M1z5uh%2BJ7iW9vrIGbCqF3T6OxTJMFTviIBsASAFAk90qwyuJ9TIEc%2FUplL53R%2BX0169k7FFpVRnMEYNgpTNFPs%2F%2BaBXcQLxOP7trbFOQsUafc7JcOnsK\"}],\"group\":\"cf-nel\",\"max_age\":604800}", "server": "cloudflare", "x-content-type-options": "nosniff", "x-frame-options": "DENY", - "x-request-id": "366503f9-846b-4768-9840-d47ba1556f10" + "x-request-id": "f49e54f8-4c5f-4acb-82b5-feac09183a21" }, "endpoints": [ { @@ -550206,7 +547062,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -550226,7 +547082,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -550316,7 +547172,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -550336,7 +547192,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -550562,7 +547418,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 20:03:48", + "@generated": "Sun, 14 Jan 2024 19:31:51", "site": [ { "@name": "https://conseil-refondation.fr", @@ -550699,8 +547555,8 @@ { "name": "Session Management Response Identified", "riskcode": "0", - "confidence": "3", - "riskdesc": "Informational (High)", + "confidence": "2", + "riskdesc": "Informational (Medium)", "desc": "

The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to \"Auto-Detect\" then this rule will change the session management to use the tokens identified.

" }, { @@ -550723,20 +547579,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -550751,11 +547610,7 @@ "type": "dns", "host": "conseil-refondation.fr.", "matched-at": "conseil-refondation.fr", - "extracted-results": [ - "dell.ns.cloudflare.com.", - "jay.ns.cloudflare.com." - ], - "timestamp": "2024-01-07T20:07:58.102786851Z", + "timestamp": "2024-01-14T19:42:10.888530803Z", "matcher-status": true }, { @@ -550795,26 +547650,26 @@ "10 smtpav.hosteam.fr.", "15 smtpav2.hosteam.fr." ], - "timestamp": "2024-01-07T20:07:58.103551372Z", + "timestamp": "2024-01-14T19:42:11.028832984Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -550830,7 +547685,13 @@ "type": "dns", "host": "conseil-refondation.fr.", "matched-at": "conseil-refondation.fr", - "timestamp": "2024-01-07T20:07:58.105142217Z", + "extracted-results": [ + "\"v=spf1 include:hosteam.fr include:spf.sendinblue.com ~all\"", + "\"Sendinblue-code:3937289e6c66993770f450f99bf64f47\"", + "\"facebook-domain-verification=07suupqq8voxj7kjtdd3l01penyoko\"", + "\"google-site-verification:IBSwrAp9wu4YD4xK5BkDBV24ny_z_JJLypPQjO7IqEA\"" + ], + "timestamp": "2024-01-14T19:42:11.88856784Z", "matcher-status": true }, { @@ -550870,27 +547731,24 @@ "extracted-results": [ "\"v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400\"" ], - "timestamp": "2024-01-07T20:07:58.107149388Z", + "timestamp": "2024-01-14T19:42:11.890177537Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" - ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", - "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -550906,12 +547764,10 @@ "host": "conseil-refondation.fr.", "matched-at": "conseil-refondation.fr", "extracted-results": [ - "\"facebook-domain-verification=07suupqq8voxj7kjtdd3l01penyoko\"", - "\"google-site-verification:IBSwrAp9wu4YD4xK5BkDBV24ny_z_JJLypPQjO7IqEA\"", - "\"v=spf1 include:hosteam.fr include:spf.sendinblue.com ~all\"", - "\"Sendinblue-code:3937289e6c66993770f450f99bf64f47\"" + "dell.ns.cloudflare.com.", + "jay.ns.cloudflare.com." ], - "timestamp": "2024-01-07T20:07:59.104301582Z", + "timestamp": "2024-01-14T19:42:11.944269142Z", "matcher-status": true }, { @@ -550945,7 +547801,7 @@ "type": "dns", "host": "conseil-refondation.fr.", "matched-at": "conseil-refondation.fr", - "timestamp": "2024-01-07T20:07:59.107714483Z", + "timestamp": "2024-01-14T19:42:12.021390543Z", "matcher-status": true }, { @@ -550983,8 +547839,8 @@ "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:08:20.055829581Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:42:33.494715867Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551021,8 +547877,8 @@ "extracted-results": [ "AWSAccessKeyId=P1XYJ1CLP1LKK3QCOYJ3" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:09:08.774819584Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:43:15.66863997Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551048,8 +547904,8 @@ "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:09:08.957873426Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:43:15.878696422Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551081,12 +547937,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:09:25.22826843Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:43:34.135543536Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551118,12 +547974,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "permissions-policy", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:09:25.228303364Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:43:34.135593479Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551155,12 +548011,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:09:25.228313563Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:43:34.135609118Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551192,12 +548048,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:09:25.228323782Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:43:34.135621782Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551229,12 +548085,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:09:25.228340404Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:43:34.135637411Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551266,12 +548122,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:09:25.228353708Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:43:34.135652529Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551303,12 +548159,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:09:25.228367073Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:43:34.135666325Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr'", "matcher-status": true }, @@ -551346,15 +548202,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "registrationDate", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "active" + "2022-09-06T11:40:24Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738438153Z", + "timestamp": "2024-01-14T19:43:57.07050528Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551392,15 +548248,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "Etat francais represente par le Premier Ministre DSAF" + "2023-08-11T08:46:17.724178Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738480922Z", + "timestamp": "2024-01-14T19:43:57.070571323Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551438,15 +548294,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "expirationDate", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "Etat francais represente par le Premier Ministre DSAF" + "2024-09-06T11:40:24Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738501471Z", + "timestamp": "2024-01-14T19:43:57.070593234Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551484,15 +548340,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrantOrg", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "379ccb8c16e9074358b13cd514e3b02b-38069823@contact.gandi.net" + "Etat francais represente par le Premier Ministre DSAF" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.73851211Z", + "timestamp": "2024-01-14T19:43:57.070608101Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551530,18 +548386,16 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", + "extractor-name": "nameServers", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "18 RUE VANEAU", - "PARIS", - "75700", - "FR" + "dell.ns.cloudflare.com", + "jay.ns.cloudflare.com" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738524664Z", + "timestamp": "2024-01-14T19:43:57.070621727Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551579,15 +548433,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantCountry", + "extractor-name": "secureDNS", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "FR" + "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738542226Z", + "timestamp": "2024-01-14T19:43:57.070636374Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551625,15 +548479,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrationDate", + "extractor-name": "status", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "2022-09-06T11:40:24Z" + "active" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738557836Z", + "timestamp": "2024-01-14T19:43:57.070656972Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551671,15 +548525,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantName", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "2023-08-11T08:46:17.724178Z" + "Etat francais represente par le Premier Ministre DSAF" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738574126Z", + "timestamp": "2024-01-14T19:43:57.070674826Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551717,15 +548571,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "registrantEmail", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "2024-09-06T11:40:24Z" + "379ccb8c16e9074358b13cd514e3b02b-38069823@contact.gandi.net" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738588763Z", + "timestamp": "2024-01-14T19:43:57.070688992Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551771,7 +548625,7 @@ "+33.142758000" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738605534Z", + "timestamp": "2024-01-14T19:43:57.070703729Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551809,16 +548663,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "registrantAddress", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "dell.ns.cloudflare.com", - "jay.ns.cloudflare.com" + "FR", + "18 RUE VANEAU", + "PARIS", + "75700" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738614782Z", + "timestamp": "2024-01-14T19:43:57.070724758Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551856,15 +548712,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "registrantCountry", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://rdap.nic.fr/domain/conseil-refondation.fr", "extracted-results": [ - "false" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:09:51.738624199Z", + "timestamp": "2024-01-14T19:43:57.070749044Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/conseil-refondation.fr'", "matcher-status": true }, @@ -551899,12 +548755,12 @@ ] } }, - "matcher-name": "ats", + "matcher-name": "safedog", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr/", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:10:13.632420172Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:44:22.670517054Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: conseil-refondation.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr/'", "matcher-status": true }, @@ -551939,12 +548795,12 @@ ] } }, - "matcher-name": "cloudflare", + "matcher-name": "ats", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr/", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:10:13.632458463Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:44:22.670562399Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: conseil-refondation.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr/'", "matcher-status": true }, @@ -551979,12 +548835,12 @@ ] } }, - "matcher-name": "apachegeneric", + "matcher-name": "cloudflare", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr/", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:10:13.632475535Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:44:22.670581935Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: conseil-refondation.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr/'", "matcher-status": true }, @@ -552019,51 +548875,15 @@ ] } }, - "matcher-name": "safedog", + "matcher-name": "apachegeneric", "type": "http", "host": "https://conseil-refondation.fr", "matched-at": "https://conseil-refondation.fr/", - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:10:13.632491775Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:44:22.670597424Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: conseil-refondation.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://conseil-refondation.fr/'", "matcher-status": true }, - { - "template": "ssl/deprecated-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/deprecated-tls", - "template-id": "deprecated-tls", - "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", - "info": { - "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", - "author": [ - "righettod", - "forgedhallpass" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", - "reference": [ - "https://ssl-config.mozilla.org/#config=intermediate" - ], - "severity": "info", - "metadata": { - "max-request": 3, - "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" - }, - "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" - }, - "type": "ssl", - "host": "conseil-refondation.fr", - "matched-at": "conseil-refondation.fr:443", - "extracted-results": [ - "tls10" - ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.609341407Z", - "matcher-status": true - }, { "template": "ssl/detect-ssl-issuer.yaml", "template-url": "https://templates.nuclei.sh/public/ssl-issuer", @@ -552090,8 +548910,8 @@ "extracted-results": [ "Google Trust Services LLC" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.611688745Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.796134476Z", "matcher-status": true }, { @@ -552121,8 +548941,8 @@ "conseil-refondation.fr", "*.conseil-refondation.fr" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.61180437Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.796257985Z", "matcher-status": true }, { @@ -552156,30 +548976,35 @@ "CN: conseil-refondation.fr", " SAN: [conseil-refondation.fr *.conseil-refondation.fr]" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.611854974Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.796296827Z", "matcher-status": true }, { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "template": "ssl/deprecated-tls.yaml", + "template-url": "https://templates.nuclei.sh/public/deprecated-tls", + "template-id": "deprecated-tls", + "template-path": "/home/runner/nuclei-templates/ssl/deprecated-tls.yaml", "info": { - "name": "TLS Version - Detect", + "name": "Deprecated TLS Detection (TLS 1.1 or SSLv3)", "author": [ - "pdteam", - "pussycat0x" + "righettod", + "forgedhallpass" ], "tags": [ "ssl", "tls" ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "description": "Both TLS 1.1 and SSLv3 are deprecated in favor of stronger encryption.\n", + "reference": [ + "https://ssl-config.mozilla.org/#config=intermediate" + ], "severity": "info", "metadata": { - "max-request": 4 - } + "max-request": 3, + "shodan-query": "ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1" + }, + "remediation": "Update the web server's TLS configuration to disable TLS 1.1 and SSLv3.\n" }, "type": "ssl", "host": "conseil-refondation.fr", @@ -552187,44 +549012,39 @@ "extracted-results": [ "tls10" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.612959008Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.79655894Z", "matcher-status": true }, { - "template": "ssl/weak-cipher-suites.yaml", - "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", - "template-id": "weak-cipher-suites", - "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", "info": { - "name": "Weak Cipher Suites Detection", + "name": "TLS Version - Detect", "author": [ + "pdteam", "pussycat0x" ], "tags": [ "ssl", - "tls", - "misconfig" - ], - "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", - "reference": [ - "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", - "http://ciphersuite.info" + "tls" ], - "severity": "low", + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", "metadata": { "max-request": 4 } }, - "matcher-name": "tls-1.0", "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "[tls10 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" + "tls10" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.647097518Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.821212549Z", "matcher-status": true }, { @@ -552259,8 +549079,8 @@ "extracted-results": [ "tls11" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.676559378Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.823427022Z", "matcher-status": true }, { @@ -552290,8 +549110,8 @@ "extracted-results": [ "tls11" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.679953365Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.842711001Z", "matcher-status": true }, { @@ -552319,15 +549139,15 @@ "max-request": 4 } }, - "matcher-name": "tls-1.1", + "matcher-name": "tls-1.0", "type": "ssl", "host": "conseil-refondation.fr", "matched-at": "conseil-refondation.fr:443", "extracted-results": [ - "[tls11 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" + "[tls10 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.712408004Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.84652542Z", "matcher-status": true }, { @@ -552357,8 +549177,44 @@ "extracted-results": [ "tls12" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.746560002Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.863881107Z", + "matcher-status": true + }, + { + "template": "ssl/weak-cipher-suites.yaml", + "template-url": "https://templates.nuclei.sh/public/weak-cipher-suites", + "template-id": "weak-cipher-suites", + "template-path": "/home/runner/nuclei-templates/ssl/weak-cipher-suites.yaml", + "info": { + "name": "Weak Cipher Suites Detection", + "author": [ + "pussycat0x" + ], + "tags": [ + "ssl", + "tls", + "misconfig" + ], + "description": "A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.", + "reference": [ + "https://www.acunetix.com/vulnerabilities/web/tls-ssl-weak-cipher-suites/", + "http://ciphersuite.info" + ], + "severity": "low", + "metadata": { + "max-request": 4 + } + }, + "matcher-name": "tls-1.1", + "type": "ssl", + "host": "conseil-refondation.fr", + "matched-at": "conseil-refondation.fr:443", + "extracted-results": [ + "[tls11 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA]" + ], + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.869829658Z", "matcher-status": true }, { @@ -552388,8 +549244,8 @@ "extracted-results": [ "tls13" ], - "ip": "104.21.7.98", - "timestamp": "2024-01-07T20:13:29.812552783Z", + "ip": "172.67.130.24", + "timestamp": "2024-01-14T19:47:45.884235182Z", "matcher-status": true } ], @@ -552397,7 +549253,7 @@ { "requestedUrl": "https://conseil-refondation.fr/", "finalUrl": "https://conseil-refondation.fr/", - "fetchTime": "2024-01-07T20:04:02.306Z", + "fetchTime": "2024-01-14T19:32:05.015Z", "runWarnings": [], "categories": { "performance": { @@ -552460,53 +549316,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3094, + "numericValue": 2528, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1670, - "firstMeaningfulPaint": 1670, - "largestContentfulPaint": 3770, - "interactive": 3094, - "speedIndex": 2556, - "totalBlockingTime": 72, - "maxPotentialFID": 170, + "firstContentfulPaint": 1502, + "firstMeaningfulPaint": 1502, + "largestContentfulPaint": 3602, + "interactive": 2528, + "speedIndex": 3026, + "totalBlockingTime": 33, + "maxPotentialFID": 115, "cumulativeLayoutShift": 0.19458675384521484, "cumulativeLayoutShiftMainFrame": 0.19458675384521484, "totalCumulativeLayoutShift": 0.19458675384521484, "observedTimeOrigin": 0, - "observedTimeOriginTs": 307716638, + "observedTimeOriginTs": 280168350, "observedNavigationStart": 0, - "observedNavigationStartTs": 307716638, - "observedFirstPaint": 480, - "observedFirstPaintTs": 308196280, - "observedFirstContentfulPaint": 480, - "observedFirstContentfulPaintTs": 308196280, - "observedFirstContentfulPaintAllFrames": 480, - "observedFirstContentfulPaintAllFramesTs": 308196280, - "observedFirstMeaningfulPaint": 480, - "observedFirstMeaningfulPaintTs": 308196280, - "observedLargestContentfulPaint": 568, - "observedLargestContentfulPaintTs": 308284152, - "observedLargestContentfulPaintAllFrames": 568, - "observedLargestContentfulPaintAllFramesTs": 308284152, - "observedTraceEnd": 3445, - "observedTraceEndTs": 311161962, - "observedLoad": 1137, - "observedLoadTs": 308854082, - "observedDomContentLoaded": 500, - "observedDomContentLoadedTs": 308217100, + "observedNavigationStartTs": 280168350, + "observedFirstPaint": 951, + "observedFirstPaintTs": 281119718, + "observedFirstContentfulPaint": 951, + "observedFirstContentfulPaintTs": 281119718, + "observedFirstContentfulPaintAllFrames": 951, + "observedFirstContentfulPaintAllFramesTs": 281119718, + "observedFirstMeaningfulPaint": 951, + "observedFirstMeaningfulPaintTs": 281119718, + "observedLargestContentfulPaint": 1014, + "observedLargestContentfulPaintTs": 281181858, + "observedLargestContentfulPaintAllFrames": 1014, + "observedLargestContentfulPaintAllFramesTs": 281181858, + "observedTraceEnd": 4112, + "observedTraceEndTs": 284280133, + "observedLoad": 1804, + "observedLoadTs": 281972326, + "observedDomContentLoaded": 968, + "observedDomContentLoadedTs": 281136146, "observedCumulativeLayoutShift": 0.19458675384521484, "observedCumulativeLayoutShiftMainFrame": 0.19458675384521484, "observedTotalCumulativeLayoutShift": 0.19458675384521484, - "observedFirstVisualChange": 471, - "observedFirstVisualChangeTs": 308187638, - "observedLastVisualChange": 1204, - "observedLastVisualChangeTs": 308920638, - "observedSpeedIndex": 573, - "observedSpeedIndexTs": 308290001 + "observedFirstVisualChange": 953, + "observedFirstVisualChangeTs": 281121350, + "observedLastVisualChange": 1653, + "observedLastVisualChangeTs": 281821350, + "observedSpeedIndex": 1024, + "observedSpeedIndexTs": 281192419 }, { "lcpInvalidated": false @@ -552528,19 +549384,19 @@ "numScripts": 3, "numStylesheets": 4, "numFonts": 3, - "numTasks": 895, - "numTasksOver10ms": 6, - "numTasksOver25ms": 5, + "numTasks": 960, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.349, - "throughput": 23978480.16139853, - "maxRtt": 82.91999999999999, - "maxServerLatency": 82.96000000000006, - "totalByteWeight": 855744, - "totalTaskTime": 344.01699999999926, - "mainDocumentTransferSize": 7751 + "rtt": 10.168999999999997, + "throughput": 13749972.386949169, + "maxRtt": 148.721, + "maxServerLatency": 311.356, + "totalByteWeight": 855855, + "totalTaskTime": 231.92500000000044, + "mainDocumentTransferSize": 7685 } ] } @@ -552659,7 +549515,7 @@ "http": { "url": "https://donnees.incubateur.anct.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 00:50:49 GMT", + "end_time": "Sun, 14 Jan 2024 00:51:38 GMT", "grade": "D+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -552668,18 +549524,18 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 00:50:48 GMT", + "Date": "Sun, 14 Jan 2024 00:51:36 GMT", "Etag": "W/\"7674573191606f53b05ecaa6a47b59e867290da685331b2a3eba5a6cca4a6b70\"", - "Expires": "Sun, 07 Jan 2024 01:00:48 UTC", + "Expires": "Sun, 14 Jan 2024 01:01:36 UTC", "Last-Modified": "Tue, 19 Dec 2023 16:31:33 GMT", "Server": "nginx/1.18.0 (Ubuntu)", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "Vary": "Origin" }, - "scan_id": 46225431, + "scan_id": 46434131, "score": 40, - "start_time": "Sun, 07 Jan 2024 00:50:46 GMT", + "start_time": "Sun, 14 Jan 2024 00:51:34 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 4, @@ -552859,39 +549715,39 @@ "version": "8.2p1 Ubuntu 4ubuntu0.11", "vulnerabilities": [ { - "is_exploit": "false", "type": "cve", "cvss": "6.8", + "is_exploit": "false", "id": "CVE-2020-15778" }, { - "is_exploit": "true", "type": "githubexploit", "cvss": "6.8", + "is_exploit": "true", "id": "C94132FD-1FA5-5342-B6EE-0DAF45EEFFE3" }, { - "is_exploit": "true", "type": "githubexploit", "cvss": "6.8", + "is_exploit": "true", "id": "10213DBE-F683-58BB-B6D3-353173626207" }, { - "is_exploit": "false", "type": "prion", "cvss": "5.0", + "is_exploit": "false", "id": "PRION:CVE-2020-12062" }, { - "is_exploit": "false", "type": "prion", "cvss": "5.0", + "is_exploit": "false", "id": "PRION:CVE-2016-20012" }, { - "is_exploit": "false", "type": "cve", "cvss": "5.0", + "is_exploit": "false", "id": "CVE-2020-12062" } ] @@ -553278,7 +550134,7 @@ "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "OK", - "finding": "62 >= 30 days" + "finding": "55 >= 30 days" }, { "id": "cert_notBefore", @@ -553474,14 +550330,14 @@ "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "1704658452" + "finding": "1705261626" }, { "id": "HSTS_time", @@ -554044,7 +550900,7 @@ "ip": "donnees.incubateur.anct.gouv.fr/51.159.153.132", "port": "443", "severity": "INFO", - "finding": "83" + "finding": "95" } ], "thirdparties": { @@ -554055,7 +550911,7 @@ "value": "1", "domain": "donnees.incubateur.anct.gouv.fr", "path": "/", - "expires": 1704660201, + "expires": 1705263368, "size": 16, "httpOnly": false, "secure": false, @@ -554067,10 +550923,10 @@ }, { "name": "_pk_id.73.8572", - "value": "cbfb32955368e76f.1704658402.", + "value": "93ca5620e7fea46c.1705261568.", "domain": "donnees.incubateur.anct.gouv.fr", "path": "/", - "expires": 1738613602, + "expires": 1739216768, "size": 42, "httpOnly": false, "secure": false, @@ -554086,9 +550942,9 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 20:13:20 GMT", + "date": "Sun, 14 Jan 2024 19:46:06 GMT", "etag": "W/\"7674573191606f53b05ecaa6a47b59e867290da685331b2a3eba5a6cca4a6b70\"", - "expires": "Sun, 07 Jan 2024 20:23:20 UTC", + "expires": "Sun, 14 Jan 2024 19:56:06 UTC", "last-modified": "Tue, 19 Dec 2023 16:31:33 GMT", "server": "nginx/1.18.0 (Ubuntu)", "strict-transport-security": "max-age=63072000", @@ -554175,7 +551031,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -554401,7 +551259,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 20:12:37", + "@generated": "Sun, 14 Jan 2024 19:45:23", "site": [ { "@name": "https://donnees.incubateur.anct.gouv.fr", @@ -554527,22 +551385,22 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -554558,27 +551416,29 @@ "type": "dns", "host": "donnees.incubateur.anct.gouv.fr.", "matched-at": "donnees.incubateur.anct.gouv.fr", - "timestamp": "2024-01-07T20:15:36.33952428Z", + "extracted-results": [ + "\"v=spf1 include:_spf.scw-tem.cloud -all\"" + ], + "timestamp": "2024-01-14T19:48:34.003633205Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "mx" + "caa" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -554594,29 +551454,27 @@ "type": "dns", "host": "donnees.incubateur.anct.gouv.fr.", "matched-at": "donnees.incubateur.anct.gouv.fr", - "extracted-results": [ - "0 blackhole.scw-tem.cloud." - ], - "timestamp": "2024-01-07T20:15:36.422716271Z", + "timestamp": "2024-01-14T19:48:34.008024282Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -554633,9 +551491,9 @@ "host": "donnees.incubateur.anct.gouv.fr.", "matched-at": "donnees.incubateur.anct.gouv.fr", "extracted-results": [ - "\"v=spf1 include:_spf.scw-tem.cloud -all\"" + "0 blackhole.scw-tem.cloud." ], - "timestamp": "2024-01-07T20:15:37.20438793Z", + "timestamp": "2024-01-14T19:48:35.005953055Z", "matcher-status": true }, { @@ -554666,7 +551524,7 @@ "nginx/1.18.0" ], "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:15:50.644331643Z", + "timestamp": "2024-01-14T19:48:48.37082608Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -554693,7 +551551,7 @@ "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:19.480712547Z", + "timestamp": "2024-01-14T19:49:18.036571138Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -554725,12 +551583,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.911039356Z", + "timestamp": "2024-01-14T19:49:26.211607992Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -554762,12 +551620,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.911078398Z", + "timestamp": "2024-01-14T19:49:26.211663355Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -554799,12 +551657,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.911098215Z", + "timestamp": "2024-01-14T19:49:26.2116818Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -554836,12 +551694,49 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://donnees.incubateur.anct.gouv.fr", + "matched-at": "https://donnees.incubateur.anct.gouv.fr", + "ip": "51.159.153.132", + "timestamp": "2024-01-14T19:49:26.211696116Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.911112653Z", + "timestamp": "2024-01-14T19:49:26.211713639Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -554873,12 +551768,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "content-security-policy", "type": "http", "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.911125747Z", + "timestamp": "2024-01-14T19:49:26.211728537Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -554915,7 +551810,7 @@ "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.911142108Z", + "timestamp": "2024-01-14T19:49:26.211742413Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -554947,49 +551842,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://donnees.incubateur.anct.gouv.fr", - "matched-at": "https://donnees.incubateur.anct.gouv.fr", - "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.911157015Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.911170951Z", + "timestamp": "2024-01-14T19:49:26.211754706Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -555021,12 +551879,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.911190748Z", + "timestamp": "2024-01-14T19:49:26.211768912Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -555058,12 +551916,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:27.91120731Z", + "timestamp": "2024-01-14T19:49:26.211780965Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -555103,7 +551961,7 @@ "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr/", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:54.810852173Z", + "timestamp": "2024-01-14T19:49:53.305131118Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: donnees.incubateur.anct.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/'", "matcher-status": true }, @@ -555143,7 +552001,7 @@ "host": "https://donnees.incubateur.anct.gouv.fr", "matched-at": "https://donnees.incubateur.anct.gouv.fr/", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:16:54.810899822Z", + "timestamp": "2024-01-14T19:49:53.305182574Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: donnees.incubateur.anct.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://donnees.incubateur.anct.gouv.fr/'", "matcher-status": true }, @@ -555187,7 +552045,7 @@ "host": "donnees.incubateur.anct.gouv.fr:5432", "matched-at": "donnees.incubateur.anct.gouv.fr:5432", "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:17:17.882648107Z", + "timestamp": "2024-01-14T19:50:16.753908866Z", "matcher-status": true }, { @@ -555236,7 +552094,7 @@ "SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11" ], "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:17:17.897207825Z", + "timestamp": "2024-01-14T19:50:16.764005433Z", "matcher-status": true }, { @@ -555266,7 +552124,7 @@ "Let's Encrypt" ], "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:17:20.280518698Z", + "timestamp": "2024-01-14T19:50:20.190192378Z", "matcher-status": true }, { @@ -555296,7 +552154,7 @@ "donnees.incubateur.anct.gouv.fr" ], "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:17:20.280634074Z", + "timestamp": "2024-01-14T19:50:20.190318384Z", "matcher-status": true }, { @@ -555327,7 +552185,7 @@ "tls12" ], "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:17:21.958102539Z", + "timestamp": "2024-01-14T19:50:21.3386024Z", "matcher-status": true }, { @@ -555358,7 +552216,7 @@ "tls13" ], "ip": "51.159.153.132", - "timestamp": "2024-01-07T20:17:22.21504981Z", + "timestamp": "2024-01-14T19:50:21.600364637Z", "matcher-status": true } ], @@ -555366,7 +552224,7 @@ { "requestedUrl": "https://donnees.incubateur.anct.gouv.fr/", "finalUrl": "https://donnees.incubateur.anct.gouv.fr/", - "fetchTime": "2024-01-07T20:12:52.162Z", + "fetchTime": "2024-01-14T19:45:37.740Z", "runWarnings": [], "categories": { "performance": { @@ -555377,7 +552235,7 @@ "snapshot" ], "id": "performance", - "score": 0.6506080627441406 + "score": 0.650631332397461 }, "accessibility": { "title": "Accessibility", @@ -555429,53 +552287,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 12294, + "numericValue": 12819, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4093, - "firstMeaningfulPaint": 4093, - "largestContentfulPaint": 5242, - "interactive": 12294, - "speedIndex": 4093, - "totalBlockingTime": 27, - "maxPotentialFID": 104, + "firstContentfulPaint": 4094, + "firstMeaningfulPaint": 4094, + "largestContentfulPaint": 5243, + "interactive": 12819, + "speedIndex": 4094, + "totalBlockingTime": 42, + "maxPotentialFID": 99, "cumulativeLayoutShift": 0, "cumulativeLayoutShiftMainFrame": 0, "totalCumulativeLayoutShift": 0, "observedTimeOrigin": 0, - "observedTimeOriginTs": 180805289, + "observedTimeOriginTs": 177546939, "observedNavigationStart": 0, - "observedNavigationStartTs": 180805289, - "observedFirstPaint": 1131, - "observedFirstPaintTs": 181936757, - "observedFirstContentfulPaint": 1131, - "observedFirstContentfulPaintTs": 181936757, - "observedFirstContentfulPaintAllFrames": 1131, - "observedFirstContentfulPaintAllFramesTs": 181936757, - "observedFirstMeaningfulPaint": 1131, - "observedFirstMeaningfulPaintTs": 181936757, - "observedLargestContentfulPaint": 1131, - "observedLargestContentfulPaintTs": 181936757, - "observedLargestContentfulPaintAllFrames": 1131, - "observedLargestContentfulPaintAllFramesTs": 181936757, - "observedTraceEnd": 4612, - "observedTraceEndTs": 185417384, - "observedLoad": 2304, - "observedLoadTs": 183109734, - "observedDomContentLoaded": 1125, - "observedDomContentLoadedTs": 181930294, + "observedNavigationStartTs": 177546939, + "observedFirstPaint": 1206, + "observedFirstPaintTs": 178753393, + "observedFirstContentfulPaint": 1206, + "observedFirstContentfulPaintTs": 178753393, + "observedFirstContentfulPaintAllFrames": 1206, + "observedFirstContentfulPaintAllFramesTs": 178753393, + "observedFirstMeaningfulPaint": 1206, + "observedFirstMeaningfulPaintTs": 178753393, + "observedLargestContentfulPaint": 1206, + "observedLargestContentfulPaintTs": 178753393, + "observedLargestContentfulPaintAllFrames": 1206, + "observedLargestContentfulPaintAllFramesTs": 178753393, + "observedTraceEnd": 4556, + "observedTraceEndTs": 182102470, + "observedLoad": 2170, + "observedLoadTs": 179716914, + "observedDomContentLoaded": 1178, + "observedDomContentLoadedTs": 178724686, "observedCumulativeLayoutShift": 0, "observedCumulativeLayoutShiftMainFrame": 0, "observedTotalCumulativeLayoutShift": 0, - "observedFirstVisualChange": 1137, - "observedFirstVisualChangeTs": 181942289, - "observedLastVisualChange": 1320, - "observedLastVisualChangeTs": 182125289, - "observedSpeedIndex": 1139, - "observedSpeedIndexTs": 181944555 + "observedFirstVisualChange": 1195, + "observedFirstVisualChangeTs": 178741939, + "observedLastVisualChange": 1362, + "observedLastVisualChangeTs": 178908939, + "observedSpeedIndex": 1198, + "observedSpeedIndexTs": 178744517 }, { "lcpInvalidated": false @@ -555497,18 +552355,18 @@ "numScripts": 14, "numStylesheets": 3, "numFonts": 3, - "numTasks": 1143, - "numTasksOver10ms": 6, + "numTasks": 1095, + "numTasksOver10ms": 7, "numTasksOver25ms": 2, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 99.515, - "throughput": 15082591.361821653, - "maxRtt": 100.629, - "maxServerLatency": 871.2860000000001, - "totalByteWeight": 2880396, - "totalTaskTime": 284.0739999999991, + "rtt": 99.763, + "throughput": 15604992.85177654, + "maxRtt": 104.728, + "maxServerLatency": 771.7420000000001, + "totalByteWeight": 2880274, + "totalTaskTime": 322.1779999999984, "mainDocumentTransferSize": 12681 } ] @@ -555523,11 +552381,7 @@ "url": "null", "uri": "" }, - "github_repository": { - "grade": "A", - "url": "https://datahub.incubateur.tech", - "uri": "infrastructure" - }, + "github_repository": null, "budget_page": { "grade": "F", "url": "null", @@ -555602,7 +552456,7 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.6506080627441406, + "lighthouse_performance": 0.650631332397461, "lighthouse_performanceGrade": "C", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", @@ -555613,7 +552467,6 @@ "lighthouse_pwa": 0.4, "lighthouse_pwaGrade": "D", "statsGrade": "F", - "githubRepositoryGrade": "A", "budgetPageGrade": "F", "declaration-a11y": "C", "declaration-rgpd-ml": "F", @@ -555628,7 +552481,7 @@ "http": { "url": "https://mes-aides.pole-emploi.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 20:15:10 GMT", + "end_time": "Sun, 14 Jan 2024 20:01:11 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -555638,8 +552491,8 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "default-src 'self' 'unsafe-eval'; img-src 'self' data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline' https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; script-src-elem 'self' http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://privacy.trustcommander.net/ https://*.mapbox.com/ https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; connect-src 'self' https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/ http://localhost:8080; object-src 'self' data; worker-src 'self' blob:", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 20:15:08 GMT", - "ETag": "\"klt7sdl9pma6o\"", + "Date": "Sun, 14 Jan 2024 20:01:09 GMT", + "ETag": "\"8mcky49l7h9if\"", "Permissions-Policy": "", "Referrer-Policy": "strict-origin", "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload, max-age=15768000, max-age=63072000", @@ -555650,9 +552503,9 @@ "X-XSS-Protection": "1; mode=block", "x-nextjs-cache": "HIT" }, - "scan_id": 46237811, + "scan_id": 46504090, "score": 60, - "start_time": "Sun, 07 Jan 2024 20:15:05 GMT", + "start_time": "Sun, 14 Jan 2024 20:00:39 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -555665,10 +552518,10 @@ "output": { "data": { "connect-src": [ - "https://*.mapbox.com/", "https://hd.pe.fr/", + "'self'", "https://geo.api.gouv.fr/", - "'self'" + "https://*.mapbox.com/" ], "default-src": [ "'unsafe-eval'", @@ -555678,33 +552531,33 @@ "'self'" ], "frame-ancestors": [ - "https://recette.1jeune1solution.gouv.fr/", "https://1jeune1solution.gouv.fr/", - "http://localhost:8080", - "'self'" + "'self'", + "https://recette.1jeune1solution.gouv.fr/", + "http://localhost:8080" ], "frame-src": [ "https://www.youtube-nocookie.com/", "'self'" ], "img-src": [ - "https://manager.tagcommander.com/", "data:", + "https://manager.tagcommander.com/", "'self'" ], "object-src": [ - "data", - "'self'" + "'self'", + "data" ], "script-src-elem": [ - "https://*.mapbox.com/", "https://guidances-applicatives.pe-qvr.fr/", - "https://guidances-applicatives.pole-emploi.fr/", - "https://cdn.trustcommander.net/", + "http://cdn.tagcommander.com/", "'self'", - "https://privacy.trustcommander.net/", + "https://guidances-applicatives.pole-emploi.fr/", + "https://*.mapbox.com/", "https://tag.aticdn.net/", - "http://cdn.tagcommander.com/" + "https://cdn.trustcommander.net/", + "https://privacy.trustcommander.net/" ], "style-src": [ "https://guidances-applicatives.pole-emploi.fr/", @@ -555713,8 +552566,8 @@ "'unsafe-inline'" ], "worker-src": [ - "blob:", - "'self'" + "'self'", + "blob:" ] }, "http": true, @@ -555897,10 +552750,10 @@ "version": "8.4p1 Ubuntu 5ubuntu1.2", "vulnerabilities": [ { - "id": "PRION:CVE-2016-20012", "cvss": "5.0", - "type": "prion", - "is_exploit": "false" + "id": "PRION:CVE-2016-20012", + "is_exploit": "false", + "type": "prion" } ] } @@ -555929,23 +552782,23 @@ "vulnerabilities": [ { "addr": "0.0.0.0", - "port": "111", - "owner": "superuser" + "owner": "superuser", + "port": "111" }, { "addr": "::", - "port": "111", - "owner": "superuser" + "owner": "superuser", + "port": "111" }, { "addr": "::", - "port": "111", - "owner": "superuser" + "owner": "superuser", + "port": "111" }, { "addr": "0.0.0.0", - "port": "111", - "owner": "superuser" + "owner": "superuser", + "port": "111" } ] } @@ -556319,7 +553172,7 @@ "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "OK", - "finding": "104 >= 60 days" + "finding": "97 >= 60 days" }, { "id": "cert_notBefore", @@ -556480,7 +553333,7 @@ "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "1704658601" + "finding": "1705262578" }, { "id": "HSTS_multiple", @@ -557085,7 +553938,7 @@ "ip": "mes-aides.pole-emploi.fr/51.83.34.111", "port": "443", "severity": "INFO", - "finding": "75" + "finding": "120" } ], "thirdparties": { @@ -557108,11 +553961,11 @@ }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=624858&idclient=lr3xolkadskz1fwh" + "url": "https://hd.pe.fr/event?s=624858&idclient=lrdx9gnhyv5yhaee" }, { "type": "unknown", - "url": "https://hd.pe.fr/event?s=624858&idclient=lr3xolkadskz1fwh" + "url": "https://hd.pe.fr/event?s=624858&idclient=lrdx9gnhyv5yhaee" }, { "type": "unknown", @@ -557133,8 +553986,8 @@ "content-encoding": "gzip", "content-security-policy": "default-src 'self' 'unsafe-eval'; img-src 'self' data: https://manager.tagcommander.com/; style-src 'self' 'unsafe-inline' https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; script-src-elem 'self' http://cdn.tagcommander.com/ https://tag.aticdn.net/ https://cdn.trustcommander.net/ https://privacy.trustcommander.net/ https://*.mapbox.com/ https://guidances-applicatives.pe-qvr.fr/ https://guidances-applicatives.pole-emploi.fr/; connect-src 'self' https://geo.api.gouv.fr/ https://*.mapbox.com/ https://hd.pe.fr/; font-src 'self'; frame-src 'self' https://www.youtube-nocookie.com/; frame-ancestors 'self' https://1jeune1solution.gouv.fr/ https://recette.1jeune1solution.gouv.fr/ http://localhost:8080; object-src 'self' data; worker-src 'self' blob:", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 20:15:41 GMT", - "etag": "\"klt7sdl9pma6o\"", + "date": "Sun, 14 Jan 2024 20:01:37 GMT", + "etag": "\"8mcky49l7h9if\"", "permissions-policy": "", "referrer-policy": "strict-origin", "strict-transport-security": "max-age=63072000; includeSubDomains; preload\nmax-age=15768000\nmax-age=63072000", @@ -557149,40 +554002,55 @@ "hostname": "mes-aides.pole-emploi.fr", "ip": "51.83.34.111", "geoip": { + "city": { + "geoname_id": 745044, + "names": { + "de": "Istanbul", + "en": "Istanbul", + "es": "Estambul", + "fr": "Istanbul", + "ja": "イスタンブール", + "pt-BR": "Istambul", + "ru": "Стамбул", + "zh-CN": "伊斯坦布尔" + } + }, "continent": { - "code": "EU", - "geoname_id": 6255148, + "code": "AS", + "geoname_id": 6255147, "names": { - "de": "Europa", - "en": "Europe", - "es": "Europa", - "fr": "Europe", - "ja": "ヨーロッパ", - "pt-BR": "Europa", - "ru": "Европа", - "zh-CN": "欧洲" + "de": "Asien", + "en": "Asia", + "es": "Asia", + "fr": "Asie", + "ja": "アジア", + "pt-BR": "Ásia", + "ru": "Азия", + "zh-CN": "亚洲" } }, "country": { - "geoname_id": 3017382, - "is_in_european_union": true, - "iso_code": "FR", + "geoname_id": 298795, + "iso_code": "TR", "names": { - "de": "Frankreich", - "en": "France", - "es": "Francia", - "fr": "France", - "ja": "フランス共和国", - "pt-BR": "França", - "ru": "Франция", - "zh-CN": "法国" + "de": "Türkei", + "en": "Türkiye", + "es": "Turquía", + "fr": "Turquie", + "ja": "トルコ共和国", + "pt-BR": "Turquia", + "ru": "Турция", + "zh-CN": "土耳其" } }, "location": { - "accuracy_radius": 500, - "latitude": 48.8582, - "longitude": 2.3387, - "time_zone": "Europe/Paris" + "accuracy_radius": 1000, + "latitude": 41.0011, + "longitude": 28.9675, + "time_zone": "Europe/Istanbul" + }, + "postal": { + "code": "34134" }, "registered_country": { "geoname_id": 3017382, @@ -557198,7 +554066,21 @@ "ru": "Франция", "zh-CN": "法国" } - } + }, + "subdivisions": [ + { + "geoname_id": 745042, + "iso_code": "34", + "names": { + "de": "Istanbul", + "en": "Istanbul", + "es": "Provincia de Estambul", + "ja": "イスタンブール", + "ru": "Стамбул", + "zh-CN": "伊斯坦布尔" + } + } + ] } }, { @@ -557223,7 +554105,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -557243,7 +554125,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -557271,7 +554153,7 @@ }, { "hostname": "tag.aticdn.net", - "ip": "18.244.202.62", + "ip": "108.156.91.50", "geoip": { "continent": { "code": "NA", @@ -557291,7 +554173,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -557311,7 +554193,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -557401,7 +554283,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -557421,7 +554303,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -557449,7 +554331,7 @@ }, { "hostname": "hd.pe.fr", - "ip": "18.160.18.3", + "ip": "18.160.213.91", "geoip": { "continent": { "code": "NA", @@ -557469,7 +554351,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -557489,7 +554371,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -557765,7 +554647,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 20:14:38", + "@generated": "Sun, 14 Jan 2024 20:00:12", "site": [ { "@name": "https://mes-aides.pole-emploi.fr", @@ -557919,26 +554801,26 @@ "extracted-results": [ "10 213.32.73.220." ], - "timestamp": "2024-01-07T20:18:28.866257564Z", + "timestamp": "2024-01-14T20:04:59.455480215Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -557954,30 +554836,26 @@ "type": "dns", "host": "mes-aides.pole-emploi.fr.", "matched-at": "mes-aides.pole-emploi.fr", - "extracted-results": [ - "\"sendinblue-code:fbe7fdcba6e7f5cae8d93d8c7d8f9ea7\"", - "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com ip4:213.32.73.220 ?all\"" - ], - "timestamp": "2024-01-07T20:18:28.957758977Z", + "timestamp": "2024-01-14T20:04:59.479314528Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -557993,7 +554871,11 @@ "type": "dns", "host": "mes-aides.pole-emploi.fr.", "matched-at": "mes-aides.pole-emploi.fr", - "timestamp": "2024-01-07T20:18:28.976761305Z", + "extracted-results": [ + "\"sendinblue-code:fbe7fdcba6e7f5cae8d93d8c7d8f9ea7\"", + "\"v=spf1 include:spf.mailjet.com include:spf.sendinblue.com ip4:213.32.73.220 ?all\"" + ], + "timestamp": "2024-01-14T20:05:00.507120089Z", "matcher-status": true }, { @@ -558023,7 +554905,7 @@ "HEAD" ], "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:18:41.468127298Z", + "timestamp": "2024-01-14T20:05:13.547532616Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -558064,7 +554946,7 @@ "1; mode=block" ], "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:18:49.444669489Z", + "timestamp": "2024-01-14T20:05:23.444374337Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -558091,7 +554973,7 @@ "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:19:30.678158412Z", + "timestamp": "2024-01-14T20:06:11.284565575Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -558123,12 +555005,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:19:45.205322668Z", + "timestamp": "2024-01-14T20:06:27.715243605Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -558160,12 +555042,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:19:45.205364817Z", + "timestamp": "2024-01-14T20:06:27.715290262Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -558197,12 +555079,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:19:45.205375187Z", + "timestamp": "2024-01-14T20:06:27.715306884Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -558234,12 +555116,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:19:45.205391317Z", + "timestamp": "2024-01-14T20:06:27.715322894Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -558271,12 +555153,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:19:45.205412226Z", + "timestamp": "2024-01-14T20:06:27.715335938Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, @@ -558308,15 +555190,46 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:19:45.205429368Z", + "timestamp": "2024-01-14T20:06:27.715349553Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr'", "matcher-status": true }, + { + "template": "http/miscellaneous/sitemap-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/sitemap-detect", + "template-id": "sitemap-detect", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/sitemap-detect.yaml", + "info": { + "name": "Sitemap Detection", + "author": [ + "houdinis" + ], + "tags": [ + "misc", + "generic", + "sitemap" + ], + "description": "A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.\n", + "severity": "info", + "metadata": { + "google-query": "intext:\"sitemap\" filetype:txt,filetype:xml inurl:sitemap,inurl:\"/sitemap.xsd\" ext:xsd", + "max-request": 3, + "verified": true + } + }, + "type": "http", + "host": "https://mes-aides.pole-emploi.fr", + "matched-at": "https://mes-aides.pole-emploi.fr/sitemap.xml", + "ip": "51.83.34.111", + "timestamp": "2024-01-14T20:06:48.626088319Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr/sitemap.xml'", + "matcher-status": true + }, { "template": "http/miscellaneous/robots-txt.yaml", "template-url": "https://templates.nuclei.sh/public/robots-txt", @@ -558341,7 +555254,7 @@ "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr/robots.txt", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:20:03.301232768Z", + "timestamp": "2024-01-14T20:06:48.626527327Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr/robots.txt'", "matcher-status": true }, @@ -558369,41 +555282,10 @@ "host": "https://mes-aides.pole-emploi.fr", "matched-at": "https://mes-aides.pole-emploi.fr/robots.txt", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:20:03.313023602Z", + "timestamp": "2024-01-14T20:06:48.630601875Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr/robots.txt'", "matcher-status": true }, - { - "template": "http/miscellaneous/sitemap-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/sitemap-detect", - "template-id": "sitemap-detect", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/sitemap-detect.yaml", - "info": { - "name": "Sitemap Detection", - "author": [ - "houdinis" - ], - "tags": [ - "misc", - "generic", - "sitemap" - ], - "description": "A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.\n", - "severity": "info", - "metadata": { - "google-query": "intext:\"sitemap\" filetype:txt,filetype:xml inurl:sitemap,inurl:\"/sitemap.xsd\" ext:xsd", - "max-request": 3, - "verified": true - } - }, - "type": "http", - "host": "https://mes-aides.pole-emploi.fr", - "matched-at": "https://mes-aides.pole-emploi.fr/sitemap.xml", - "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:20:03.313408858Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mes-aides.pole-emploi.fr/sitemap.xml'", - "matcher-status": true - }, { "template": "network/detection/openssh-detect.yaml", "template-url": "https://templates.nuclei.sh/public/openssh-detect", @@ -558450,7 +555332,7 @@ "SSH-2.0-OpenSSH_8.4p1 Ubuntu-5ubuntu1.2" ], "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:20:58.621236657Z", + "timestamp": "2024-01-14T20:07:52.839082932Z", "matcher-status": true }, { @@ -558491,7 +555373,7 @@ "host": "mes-aides.pole-emploi.fr:111", "matched-at": "mes-aides.pole-emploi.fr:111", "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:20:58.62500462Z", + "timestamp": "2024-01-14T20:07:52.932220488Z", "matcher-status": true }, { @@ -558521,7 +555403,7 @@ "Entrust, Inc." ], "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:21:00.693962405Z", + "timestamp": "2024-01-14T20:07:55.768447225Z", "matcher-status": true }, { @@ -558554,7 +555436,7 @@ "portail-mobilite-aides.pole-emploi.fr" ], "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:21:00.694081276Z", + "timestamp": "2024-01-14T20:07:55.768571468Z", "matcher-status": true }, { @@ -558585,7 +555467,7 @@ "tls12" ], "ip": "51.83.34.111", - "timestamp": "2024-01-07T20:21:01.942938476Z", + "timestamp": "2024-01-14T20:07:56.767733646Z", "matcher-status": true } ], @@ -558593,7 +555475,7 @@ { "requestedUrl": "https://mes-aides.pole-emploi.fr/", "finalUrl": "https://mes-aides.pole-emploi.fr/", - "fetchTime": "2024-01-07T20:14:52.707Z", + "fetchTime": "2024-01-14T20:00:26.297Z", "runWarnings": [], "categories": { "performance": { @@ -558656,53 +555538,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7248, + "numericValue": 16542, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1373, - "firstMeaningfulPaint": 1695, - "largestContentfulPaint": 2317, - "interactive": 7248, - "speedIndex": 7076, - "totalBlockingTime": 453, - "maxPotentialFID": 255, + "firstContentfulPaint": 1360, + "firstMeaningfulPaint": 1699, + "largestContentfulPaint": 2560, + "interactive": 16542, + "speedIndex": 7381, + "totalBlockingTime": 501, + "maxPotentialFID": 223, "cumulativeLayoutShift": 0.008557400173611111, "cumulativeLayoutShiftMainFrame": 0.008557400173611111, "totalCumulativeLayoutShift": 0.008557400173611111, "observedTimeOrigin": 0, - "observedTimeOriginTs": 262368298, + "observedTimeOriginTs": 295794665, "observedNavigationStart": 0, - "observedNavigationStartTs": 262368298, - "observedFirstPaint": 797, - "observedFirstPaintTs": 263165706, - "observedFirstContentfulPaint": 797, - "observedFirstContentfulPaintTs": 263165706, - "observedFirstContentfulPaintAllFrames": 797, - "observedFirstContentfulPaintAllFramesTs": 263165706, - "observedFirstMeaningfulPaint": 797, - "observedFirstMeaningfulPaintTs": 263165706, - "observedLargestContentfulPaint": 797, - "observedLargestContentfulPaintTs": 263165706, - "observedLargestContentfulPaintAllFrames": 797, - "observedLargestContentfulPaintAllFramesTs": 263165706, - "observedTraceEnd": 4983, - "observedTraceEndTs": 267350899, - "observedLoad": 685, - "observedLoadTs": 263053515, - "observedDomContentLoaded": 685, - "observedDomContentLoadedTs": 263053324, + "observedNavigationStartTs": 295794665, + "observedFirstPaint": 914, + "observedFirstPaintTs": 296709102, + "observedFirstContentfulPaint": 914, + "observedFirstContentfulPaintTs": 296709102, + "observedFirstContentfulPaintAllFrames": 914, + "observedFirstContentfulPaintAllFramesTs": 296709102, + "observedFirstMeaningfulPaint": 914, + "observedFirstMeaningfulPaintTs": 296709102, + "observedLargestContentfulPaint": 914, + "observedLargestContentfulPaintTs": 296709102, + "observedLargestContentfulPaintAllFrames": 914, + "observedLargestContentfulPaintAllFramesTs": 296709102, + "observedTraceEnd": 5138, + "observedTraceEndTs": 300933162, + "observedLoad": 810, + "observedLoadTs": 296605069, + "observedDomContentLoaded": 810, + "observedDomContentLoadedTs": 296604895, "observedCumulativeLayoutShift": 0.008557400173611111, "observedCumulativeLayoutShiftMainFrame": 0.008557400173611111, "observedTotalCumulativeLayoutShift": 0.008557400173611111, - "observedFirstVisualChange": 804, - "observedFirstVisualChangeTs": 263172298, - "observedLastVisualChange": 2937, - "observedLastVisualChangeTs": 265305298, - "observedSpeedIndex": 1288, - "observedSpeedIndexTs": 263656453 + "observedFirstVisualChange": 926, + "observedFirstVisualChangeTs": 296720665, + "observedLastVisualChange": 4226, + "observedLastVisualChangeTs": 300020665, + "observedSpeedIndex": 1660, + "observedSpeedIndexTs": 297454435 }, { "lcpInvalidated": false @@ -558720,23 +555602,23 @@ "type": "debugdata", "items": [ { - "numRequests": 133, - "numScripts": 36, + "numRequests": 130, + "numScripts": 34, "numStylesheets": 4, "numFonts": 30, - "numTasks": 2156, - "numTasksOver10ms": 12, - "numTasksOver25ms": 4, + "numTasks": 2184, + "numTasksOver10ms": 15, + "numTasksOver25ms": 6, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.07, - "throughput": 21289076.633572146, - "maxRtt": 94.535, - "maxServerLatency": 138.808, - "totalByteWeight": 5857418, - "totalTaskTime": 684.3599999999942, - "mainDocumentTransferSize": 4271 + "rtt": 1.564, + "throughput": 15990034.771792578, + "maxRtt": 116.42599999999999, + "maxServerLatency": 34.45800000000001, + "totalByteWeight": 5855123, + "totalTaskTime": 723.9229999999966, + "mainDocumentTransferSize": 4115 } ] } @@ -558896,13 +555778,13 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 20:25:21 GMT", + "date": "Sun, 14 Jan 2024 20:03:29 GMT", "etag": "W/\"657cb0e4-2f7\"", "last-modified": "Fri, 15 Dec 2023 20:02:44 GMT", "strict-transport-security": "max-age=31536000", "transfer-encoding": "chunked", "vary": "Accept-Encoding", - "x-request-id": "b61295bb232bf87a2277dad3a226d436" + "x-request-id": "5774956820a05039fd6c2431881180eb" }, "endpoints": [ { @@ -558994,7 +555876,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 20:24:40", + "@generated": "Sun, 14 Jan 2024 20:02:48", "site": [ { "@name": "https://mon.franceconnect.gouv.fr", @@ -559116,7 +555998,7 @@ "type": "dns", "host": "mon.franceconnect.gouv.fr.", "matched-at": "mon.franceconnect.gouv.fr", - "timestamp": "2024-01-07T20:36:49.439222842Z", + "timestamp": "2024-01-14T20:14:45.406094204Z", "matcher-status": true }, { @@ -559155,7 +556037,7 @@ "host": "https://mon.franceconnect.gouv.fr", "matched-at": "https://mon.franceconnect.gouv.fr/", "ip": "148.253.96.161", - "timestamp": "2024-01-07T20:39:17.28842055Z", + "timestamp": "2024-01-14T20:16:10.255575431Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: mon.franceconnect.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mon.franceconnect.gouv.fr/'", "matcher-status": true }, @@ -559186,7 +556068,7 @@ "Let's Encrypt" ], "ip": "148.253.96.161", - "timestamp": "2024-01-07T20:41:20.857940405Z", + "timestamp": "2024-01-14T20:17:55.588888817Z", "matcher-status": true }, { @@ -559216,7 +556098,7 @@ "mon.franceconnect.gouv.fr" ], "ip": "148.253.96.161", - "timestamp": "2024-01-07T20:41:20.858055508Z", + "timestamp": "2024-01-14T20:17:55.589011804Z", "matcher-status": true }, { @@ -559247,7 +556129,7 @@ "tls13" ], "ip": "148.253.96.161", - "timestamp": "2024-01-07T20:41:26.639132658Z", + "timestamp": "2024-01-14T20:17:57.623657834Z", "matcher-status": true } ], @@ -559255,7 +556137,7 @@ { "requestedUrl": "https://mon.franceconnect.gouv.fr/", "finalUrl": "https://tableaudebord.franceconnect.gouv.fr/", - "fetchTime": "2024-01-07T20:24:53.997Z", + "fetchTime": "2024-01-14T20:03:02.685Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://mon.franceconnect.gouv.fr/) was redirected to https://tableaudebord.franceconnect.gouv.fr/. Try testing the second URL directly." ], @@ -559320,53 +556202,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3079, + "numericValue": 4134, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2500, - "firstMeaningfulPaint": 2902, - "largestContentfulPaint": 3580, - "interactive": 3079, - "speedIndex": 5405, - "totalBlockingTime": 14, - "maxPotentialFID": 78, - "cumulativeLayoutShift": 0.5853406558566624, - "cumulativeLayoutShiftMainFrame": 0.5853406558566624, - "totalCumulativeLayoutShift": 0.5853406558566624, + "firstContentfulPaint": 2495, + "firstMeaningfulPaint": 2897, + "largestContentfulPaint": 3669, + "interactive": 4134, + "speedIndex": 3951, + "totalBlockingTime": 33, + "maxPotentialFID": 83, + "cumulativeLayoutShift": 0.5850099809434679, + "cumulativeLayoutShiftMainFrame": 0.5850099809434679, + "totalCumulativeLayoutShift": 0.5850099809434679, "observedTimeOrigin": 0, - "observedTimeOriginTs": 293871106, + "observedTimeOriginTs": 253724754, "observedNavigationStart": 0, - "observedNavigationStartTs": 293871106, - "observedFirstPaint": 2409, - "observedFirstPaintTs": 296280223, - "observedFirstContentfulPaint": 2409, - "observedFirstContentfulPaintTs": 296280223, - "observedFirstContentfulPaintAllFrames": 2409, - "observedFirstContentfulPaintAllFramesTs": 296280223, - "observedFirstMeaningfulPaint": 2409, - "observedFirstMeaningfulPaintTs": 296280223, - "observedLargestContentfulPaint": 2591, - "observedLargestContentfulPaintTs": 296462027, - "observedLargestContentfulPaintAllFrames": 2591, - "observedLargestContentfulPaintAllFramesTs": 296462027, - "observedTraceEnd": 5052, - "observedTraceEndTs": 298923315, - "observedLoad": 2375, - "observedLoadTs": 296245870, - "observedDomContentLoaded": 2375, - "observedDomContentLoadedTs": 296245834, - "observedCumulativeLayoutShift": 0.5853406558566624, - "observedCumulativeLayoutShiftMainFrame": 0.5853406558566624, - "observedTotalCumulativeLayoutShift": 0.5853406558566624, - "observedFirstVisualChange": 2417, - "observedFirstVisualChangeTs": 296288106, - "observedLastVisualChange": 2750, - "observedLastVisualChangeTs": 296621106, - "observedSpeedIndex": 2531, - "observedSpeedIndexTs": 296401810 + "observedNavigationStartTs": 253724754, + "observedFirstPaint": 1240, + "observedFirstPaintTs": 254964681, + "observedFirstContentfulPaint": 1240, + "observedFirstContentfulPaintTs": 254964681, + "observedFirstContentfulPaintAllFrames": 1240, + "observedFirstContentfulPaintAllFramesTs": 254964681, + "observedFirstMeaningfulPaint": 1240, + "observedFirstMeaningfulPaintTs": 254964681, + "observedLargestContentfulPaint": 1356, + "observedLargestContentfulPaintTs": 255080467, + "observedLargestContentfulPaintAllFrames": 1356, + "observedLargestContentfulPaintAllFramesTs": 255080467, + "observedTraceEnd": 3767, + "observedTraceEndTs": 257492102, + "observedLoad": 1206, + "observedLoadTs": 254931088, + "observedDomContentLoaded": 1206, + "observedDomContentLoadedTs": 254931049, + "observedCumulativeLayoutShift": 0.5850099809434679, + "observedCumulativeLayoutShiftMainFrame": 0.5850099809434679, + "observedTotalCumulativeLayoutShift": 0.5850099809434679, + "observedFirstVisualChange": 1248, + "observedFirstVisualChangeTs": 254972754, + "observedLastVisualChange": 1815, + "observedLastVisualChangeTs": 255539754, + "observedSpeedIndex": 1323, + "observedSpeedIndexTs": 255047798 }, { "lcpInvalidated": false @@ -559388,18 +556270,18 @@ "numScripts": 1, "numStylesheets": 3, "numFonts": 2, - "numTasks": 281, - "numTasksOver10ms": 3, + "numTasks": 298, + "numTasksOver10ms": 5, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 148.8, - "throughput": 4262980.602437875, - "maxRtt": 151.548, - "maxServerLatency": 11.294999999999959, - "totalByteWeight": 335112, - "totalTaskTime": 105.6540000000001, + "rtt": 82.855, + "throughput": 8762262.786915619, + "maxRtt": 85.09, + "maxServerLatency": 11.216999999999999, + "totalByteWeight": 335120, + "totalTaskTime": 130.44999999999993, "mainDocumentTransferSize": 754 } ] @@ -559489,7 +556371,7 @@ "http": { "url": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 02:32:58 GMT", + "end_time": "Sun, 14 Jan 2024 02:38:14 GMT", "grade": "D", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -559498,19 +556380,19 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 02:32:56 GMT", + "Date": "Sun, 14 Jan 2024 02:38:11 GMT", "Strict-Transport-Security": "max-age=31536000", "Transfer-Encoding": "chunked", "Vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "X-Powered-By": "Next.js", - "X-Request-ID": "56ccabb0-02b0-4fd9-a2bb-e4eac06ca80b", + "X-Request-ID": "4310c9c3-debe-4b35-930a-a74fc45a6465", "link": "; rel=\"alternate\"; hreflang=\"fr\", ; rel=\"alternate\"; hreflang=\"en\", ; rel=\"alternate\"; hreflang=\"x-default\"", - "set-cookie": "NEXT_LOCALE=fr; Path=/; Expires=Mon, 06 Jan 2025 02:32:56 GMT; Max-Age=31536000; SameSite=strict", + "set-cookie": "NEXT_LOCALE=fr; Path=/; Expires=Mon, 13 Jan 2025 02:38:11 GMT; Max-Age=31536000; SameSite=strict", "x-middleware-rewrite": "/fr" }, - "scan_id": 46227238, + "scan_id": 46436131, "score": 35, - "start_time": "Sun, 07 Jan 2024 02:32:53 GMT", + "start_time": "Sun, 14 Jan 2024 02:38:09 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -559550,7 +556432,7 @@ "data": { "NEXT_LOCALE": { "domain": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "expires": 1736130776, + "expires": 1736735891, "httponly": false, "max-age": null, "path": "/", @@ -559715,77 +556597,77 @@ "testssl": [ { "id": "service", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -559793,7 +556675,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -559801,7 +556683,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -559809,7 +556691,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -559817,7 +556699,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -559825,7 +556707,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -559833,476 +556715,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704659502" + "finding": "1705262853" }, { "id": "HSTS_time", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -560310,7 +557192,7 @@ }, { "id": "heartbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -560319,7 +557201,7 @@ }, { "id": "CCS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -560328,7 +557210,7 @@ }, { "id": "ticketbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -560337,7 +557219,7 @@ }, { "id": "ROBOT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -560346,7 +557228,7 @@ }, { "id": "secure_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -560354,7 +557236,7 @@ }, { "id": "secure_client_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -560363,7 +557245,7 @@ }, { "id": "CRIME_TLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -560372,7 +557254,7 @@ }, { "id": "BREACH", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -560381,7 +557263,7 @@ }, { "id": "POODLE_SSL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -560390,14 +557272,14 @@ }, { "id": "fallback_SCSV", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -560406,7 +557288,7 @@ }, { "id": "FREAK", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -560415,7 +557297,7 @@ }, { "id": "DROWN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -560424,7 +557306,7 @@ }, { "id": "DROWN_hint", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -560433,7 +557315,7 @@ }, { "id": "LOGJAM", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -560442,7 +557324,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -560451,7 +557333,7 @@ }, { "id": "BEAST", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -560460,7 +557342,7 @@ }, { "id": "LUCKY13", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -560469,7 +557351,7 @@ }, { "id": "winshock", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -560478,7 +557360,7 @@ }, { "id": "RC4", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -560487,392 +557369,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -560880,7 +557762,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -560888,7 +557770,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -560896,7 +557778,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -560904,7 +557786,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -560912,7 +557794,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -560920,476 +557802,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704659555" + "finding": "1705262911" }, { "id": "HSTS_time", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -561397,7 +558279,7 @@ }, { "id": "heartbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -561406,7 +558288,7 @@ }, { "id": "CCS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -561415,7 +558297,7 @@ }, { "id": "ticketbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -561424,7 +558306,7 @@ }, { "id": "ROBOT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -561433,7 +558315,7 @@ }, { "id": "secure_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -561441,7 +558323,7 @@ }, { "id": "secure_client_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -561450,7 +558332,7 @@ }, { "id": "CRIME_TLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -561459,7 +558341,7 @@ }, { "id": "BREACH", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -561468,7 +558350,7 @@ }, { "id": "POODLE_SSL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -561477,14 +558359,14 @@ }, { "id": "fallback_SCSV", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -561493,7 +558375,7 @@ }, { "id": "FREAK", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -561502,7 +558384,7 @@ }, { "id": "DROWN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -561511,7 +558393,7 @@ }, { "id": "DROWN_hint", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -561520,7 +558402,7 @@ }, { "id": "LOGJAM", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -561529,7 +558411,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -561538,7 +558420,7 @@ }, { "id": "BEAST", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -561547,7 +558429,7 @@ }, { "id": "LUCKY13", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -561556,7 +558438,7 @@ }, { "id": "winshock", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -561565,7 +558447,7 @@ }, { "id": "RC4", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -561574,392 +558456,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -561967,7 +558849,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -561975,7 +558857,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -561983,7 +558865,7 @@ }, { "id": "cipherlist_LOW", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -561991,7 +558873,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -561999,7 +558881,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -562007,476 +558889,476 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIGXDCCBESgAwIBAgIRAOkH5f+AdSJBCZB9ZyjKABAwDQYJKoZIhvcNAQEMBQAwgYgxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpOZXcgSmVyc2V5MRQwEgYDVQQHEwtKZXJzZXkgQ2l0eTEeMBwGA1UEChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMS4wLAYDVQQDEyVVU0VSVHJ1c3QgUlNBIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTIzMDgwMjAwMDAwMFoXDTMzMDgwMTIzNTk1OVowVjELMAkGA1UEBhMCRlIxDjAMBgNVBAoTBUdhbmRpMTcwNQYDVQQDEy5HYW5kaSBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBDQSAzMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAwrwuXKdKIiD9eu4fsNjLN0mS8HsTdDFyPPB5F5uUd6SJGutc7sqDd3T/p+gnVoAZERvzAz8+OEux1GN1UJ+Gd8s5btXJCbDV5DpvzJOhfztk5JmFKz2XBka+MvDAgiyiZKs3G6yoMk8lEOu6NOsK3X8D1w0E6/C/ROa6Ml0ROnKm7vHGNVTfXTP5IqiNh2JXmp4vD23gemf8nfuI2FngayMNsjm6SwpVYWfT3S8jn5el52FKzwo+uKVZAjNH1ulgWoyO8p+PCsP+CvaEGDId3leSUVhPBBPRsxL42jjqo9aOKREgmrGco39JGf4OImxM8vKxQ9AjDrRTRETB9V9jbRf3v3Tojt3vBBwa3xQelVp9xUWQxo/5dV73g/c7WWAvZ628XUw6k6vn6bY7qWuhehUO02plRLd5zP8nBORCbPmFCI97lZAnDYLprB4e9IgCPJp+0zQDLr9o+eNKtR0a2Txb6nzGahIPi3a7QCH6+Yq4iwYVEQm+e6KBJZOm+YiLAgMBAAGjggFwMIIBbDAfBgNVHSMEGDAWgBRTeb9aqitKz1SA4dibwJ3ysgNmyzAdBgNVHQ4EFgQUgRGS3mYypbBbMz1lQ4X81AQt8a4wDgYDVR0PAQH/BAQDAgGGMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCIGA1UdIAQbMBkwDQYLKwYBBAGyMQECAhowCAYGZ4EMAQIBMFAGA1UdHwRJMEcwRaBDoEGGP2h0dHA6Ly9jcmwudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FDZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDBxBggrBgEFBQcBAQRlMGMwOgYIKwYBBQUHMAKGLmh0dHA6Ly9jcnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RSU0FBQUFDQS5jcnQwJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wDQYJKoZIhvcNAQEMBQADggIBADvVncOMStREyA00ZSRUmrkmR3KzAlHVz06X1ydG9EpZz+JTQMWO809buLbDnr6t9z9jVnsDTQnWcMG4qiIkwhJVLxOVXUO+LFSBMskOe1SPBtHwHS42DeZ8QTgbRlW9p/Ey9wIo+MS2tryQ9eaDTkc2FBed/82VjrdsQoeoTyuDdp4tqarixjM/iJMgyEAMCpTkx4EqXJ/z7qgXusacsxMzt6NLv7FYcaKGbwjKqzrRvEk/+ZYnZc5mxnautf0uwRCcOe0kCOh1fd+g6Tyd+cSj6oGcJY/f/Db0sxELpzGqjRkbXan+eMojQfsgIe1n7SVyI5Yxz2RnQQL5ZT5K1mBcucqsTqkk3C7L3hF4hkwC/Otm+badymHQcnbE1Pmz6ymqj2vtwT0mEQzetQdbvv3jc3ey4YcxirAM1ihxtXeINsEP1ndUV/0v+qqmk9iCoIjZQce8vAdziZqBYxO3NiZwTRAtqseiZWLJqQ077fy3ebdjmw6y5U+DhDW2kxF/e+FJnu53DuY5/bE+oUneY770A7BfCuH+6uhEOaMNsn21AHymLr1xlRPQYR0DMgHmsGTqdINcQfot1mlIXr05HQUK0b84CPgEU0zvVQL+j9dc/4rh2sR6rl//tjG01Q+zQKStnR2NlNNrElDUC9IDmvL9JcF20cvOlE4R0lfTXa1k\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704659609" + "finding": "1705262969" }, { "id": "HSTS_time", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Next.js" }, { "id": "cookie_count", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "1 at '/'" }, { "id": "cookie_secure", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0/1 at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "private, no-cache, no-store, max-age=0, must-revalidate" }, { "id": "banner_reverseproxy", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -562484,7 +559366,7 @@ }, { "id": "heartbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -562493,7 +559375,7 @@ }, { "id": "CCS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -562502,7 +559384,7 @@ }, { "id": "ticketbleed", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -562511,7 +559393,7 @@ }, { "id": "ROBOT", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -562520,7 +559402,7 @@ }, { "id": "secure_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -562528,7 +559410,7 @@ }, { "id": "secure_client_renego", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -562537,7 +559419,7 @@ }, { "id": "CRIME_TLS", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -562546,7 +559428,7 @@ }, { "id": "BREACH", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -562555,7 +559437,7 @@ }, { "id": "POODLE_SSL", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -562564,14 +559446,14 @@ }, { "id": "fallback_SCSV", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -562580,7 +559462,7 @@ }, { "id": "FREAK", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -562589,7 +559471,7 @@ }, { "id": "DROWN", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -562598,7 +559480,7 @@ }, { "id": "DROWN_hint", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -562607,7 +559489,7 @@ }, { "id": "LOGJAM", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -562616,7 +559498,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -562625,7 +559507,7 @@ }, { "id": "BEAST", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -562634,7 +559516,7 @@ }, { "id": "LUCKY13", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -562643,7 +559525,7 @@ }, { "id": "winshock", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -562652,7 +559534,7 @@ }, { "id": "RC4", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -562661,315 +559543,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" @@ -563328,7 +560210,7 @@ "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "371 >= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", @@ -563482,14 +560364,14 @@ "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704659662" + "finding": "1705263027" }, { "id": "HSTS_time", @@ -564066,7 +560948,7 @@ "ip": "mfc-web-dev.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "217" + "finding": "235" } ], "thirdparties": { @@ -564077,7 +560959,7 @@ "value": "en", "domain": "mfc-web-dev.osc-secnum-fr1.scalingo.io", "path": "/", - "expires": 1736195462.508973, + "expires": 1736798808.762944, "size": 13, "httpOnly": false, "secure": false, @@ -564092,13 +560974,13 @@ "cache-control": "private, no-cache, no-store, max-age=0, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 20:31:02 GMT", + "date": "Sun, 14 Jan 2024 20:06:48 GMT", "link": "; rel=\"alternate\"; hreflang=\"fr\", ; rel=\"alternate\"; hreflang=\"en\", ; rel=\"alternate\"; hreflang=\"x-default\"", "strict-transport-security": "max-age=31536000", "vary": "RSC, Next-Router-State-Tree, Next-Router-Prefetch, Next-Url, Accept-Encoding", "x-middleware-rewrite": "/en", "x-powered-by": "Next.js", - "x-request-id": "40a22bea-ec72-4bcb-b172-4fe984305542" + "x-request-id": "36b121e1-54b5-4981-9e45-c1efa9b7df5e" }, "endpoints": [ { @@ -564208,7 +561090,7 @@ "name": "Next.js", "description": "Next.js is a React framework for developing single page Javascript applications.", "confidence": 100, - "version": "14.0.3", + "version": "14.0.4", "icon": "Next.js.svg", "website": "https://nextjs.org", "cpe": "cpe:2.3:a:zeit:next.js:*:*:*:*:*:*:*:*", @@ -564308,7 +561190,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 20:30:23", + "@generated": "Sun, 14 Jan 2024 20:06:08", "site": [ { "@name": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", @@ -564439,981 +561321,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", - "info": { - "name": "DNS SaaS Service Detection", - "author": [ - "noah @thesubtlety", - "pdteam" - ], - "tags": [ - "dns", - "service" - ], - "description": "A CNAME DNS record was discovered", - "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "dns", - "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io.", - "matched-at": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "extracted-results": [ - "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." - ], - "timestamp": "2024-01-07T20:35:46.17818089Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io.", - "matched-at": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "timestamp": "2024-01-07T20:35:47.178322321Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.302929375Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.302976794Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.302992092Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.303383473Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.303402188Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.30352112Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.303630144Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.303653527Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.303669607Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/en", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.303686729Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305306304Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "content-security-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305338404Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305357299Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305370383Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305385862Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305400069Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305422721Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305435064Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-frame-options", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305446936Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io", - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:36:35.305458628Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://mfc-web-dev.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "mfc-web-dev.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "Gandi" - ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:42:42.587097269Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "mfc-web-dev.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "*.osc-secnum-fr1.scalingo.io", - "osc-secnum-fr1.scalingo.io" - ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:42:42.587213125Z", - "matcher-status": true - }, - { - "template": "ssl/wildcard-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/wildcard-tls", - "template-id": "wildcard-tls", - "template-path": "/home/runner/nuclei-templates/ssl/wildcard-tls.yaml", - "info": { - "name": "Wildcard TLS Certificate", - "author": [ - "lucky0x0d" - ], - "tags": [ - "ssl", - "wildcard", - "tls" - ], - "description": "Checks a sites certificate to see if there are wildcard CN or SAN entries.\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/transport_layer_protection_cheat_sheet.html#carefully-consider-the-use-of-wildcard-certificates" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "mfc-web-dev.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "CN: *.osc-secnum-fr1.scalingo.io", - " SAN: [*.osc-secnum-fr1.scalingo.io osc-secnum-fr1.scalingo.io]" - ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:42:42.587278768Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "mfc-web-dev.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "tls12" - ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:42:44.763671305Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "mfc-web-dev.osc-secnum-fr1.scalingo.io", - "matched-at": "mfc-web-dev.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "tls13" - ], - "ip": "80.247.13.145", - "timestamp": "2024-01-07T20:42:44.954542467Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/", "finalUrl": "https://mfc-web-dev.osc-secnum-fr1.scalingo.io/", - "fetchTime": "2024-01-07T20:30:37.452Z", + "fetchTime": "2024-01-14T20:06:22.060Z", "runWarnings": [], "categories": { "performance": { @@ -565476,53 +561389,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3080, + "numericValue": 1431, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1359, - "firstMeaningfulPaint": 1359, - "largestContentfulPaint": 3234, - "interactive": 3080, - "speedIndex": 1549, - "totalBlockingTime": 11, - "maxPotentialFID": 71, + "firstContentfulPaint": 1431, + "firstMeaningfulPaint": 1431, + "largestContentfulPaint": 2931, + "interactive": 1431, + "speedIndex": 1738, + "totalBlockingTime": 0, + "maxPotentialFID": 47, "cumulativeLayoutShift": 0.0018484700520833334, "cumulativeLayoutShiftMainFrame": 0.0018484700520833334, "totalCumulativeLayoutShift": 0.0018484700520833334, "observedTimeOrigin": 0, - "observedTimeOriginTs": 305253303, + "observedTimeOriginTs": 181532048, "observedNavigationStart": 0, - "observedNavigationStartTs": 305253303, - "observedFirstPaint": 602, - "observedFirstPaintTs": 305855613, - "observedFirstContentfulPaint": 602, - "observedFirstContentfulPaintTs": 305855613, - "observedFirstContentfulPaintAllFrames": 602, - "observedFirstContentfulPaintAllFramesTs": 305855613, - "observedFirstMeaningfulPaint": 602, - "observedFirstMeaningfulPaintTs": 305855613, - "observedLargestContentfulPaint": 715, - "observedLargestContentfulPaintTs": 305968336, - "observedLargestContentfulPaintAllFrames": 715, - "observedLargestContentfulPaintAllFramesTs": 305968336, - "observedTraceEnd": 3160, - "observedTraceEndTs": 308413243, - "observedLoad": 825, - "observedLoadTs": 306077893, - "observedDomContentLoaded": 573, - "observedDomContentLoadedTs": 305826401, + "observedNavigationStartTs": 181532048, + "observedFirstPaint": 666, + "observedFirstPaintTs": 182197947, + "observedFirstContentfulPaint": 666, + "observedFirstContentfulPaintTs": 182197947, + "observedFirstContentfulPaintAllFrames": 666, + "observedFirstContentfulPaintAllFramesTs": 182197947, + "observedFirstMeaningfulPaint": 666, + "observedFirstMeaningfulPaintTs": 182197947, + "observedLargestContentfulPaint": 865, + "observedLargestContentfulPaintTs": 182396703, + "observedLargestContentfulPaintAllFrames": 865, + "observedLargestContentfulPaintAllFramesTs": 182396703, + "observedTraceEnd": 3335, + "observedTraceEndTs": 184866969, + "observedLoad": 992, + "observedLoadTs": 182524338, + "observedDomContentLoaded": 660, + "observedDomContentLoadedTs": 182191707, "observedCumulativeLayoutShift": 0.0018484700520833334, "observedCumulativeLayoutShiftMainFrame": 0.0018484700520833334, "observedTotalCumulativeLayoutShift": 0.0018484700520833334, - "observedFirstVisualChange": 584, - "observedFirstVisualChangeTs": 305837303, - "observedLastVisualChange": 3151, - "observedLastVisualChangeTs": 308404303, - "observedSpeedIndex": 654, - "observedSpeedIndexTs": 305907097 + "observedFirstVisualChange": 677, + "observedFirstVisualChangeTs": 182209048, + "observedLastVisualChange": 3260, + "observedLastVisualChangeTs": 184792048, + "observedSpeedIndex": 755, + "observedSpeedIndexTs": 182287375 }, { "lcpInvalidated": false @@ -565544,19 +561457,19 @@ "numScripts": 15, "numStylesheets": 2, "numFonts": 3, - "numTasks": 746, - "numTasksOver10ms": 4, - "numTasksOver25ms": 2, + "numTasks": 722, + "numTasksOver10ms": 3, + "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 83.29, - "throughput": 10953418.157666957, - "maxRtt": 83.29, - "maxServerLatency": 9.295000000000002, - "totalByteWeight": 472080, - "totalTaskTime": 260.8619999999988, - "mainDocumentTransferSize": 9569 + "rtt": 100.833, + "throughput": 8933997.02385117, + "maxRtt": 100.833, + "maxServerLatency": 80.887, + "totalByteWeight": 469792, + "totalTaskTime": 210.6149999999992, + "mainDocumentTransferSize": 9487 } ] } @@ -565649,22 +561562,22 @@ "http": { "url": "https://collectivite.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 00:35:13 GMT", + "end_time": "Sun, 14 Jan 2024 00:35:08 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "content-type": "text/html", - "date": "Sun, 07 Jan 2024 00:35:11 GMT", + "date": "Sun, 14 Jan 2024 00:35:07 GMT", "keep-alive": "timeout=5", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000", "transfer-encoding": "chunked", "x-frame-options": "SAMEORIGIN" }, - "scan_id": 46225023, + "scan_id": 46433751, "score": 60, - "start_time": "Sun, 07 Jan 2024 00:35:08 GMT", + "start_time": "Sun, 14 Jan 2024 00:35:04 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -566203,7 +562116,7 @@ "ip": "collectivite.fr/51.159.10.161", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", @@ -566406,7 +562319,7 @@ "ip": "collectivite.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "1704659764" + "finding": "1705263853" }, { "id": "HSTS_time", @@ -566976,7 +562889,7 @@ "ip": "collectivite.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "73" + "finding": "138" } ], "thirdparties": { @@ -566987,7 +562900,7 @@ "value": "1", "domain": "collectivite.fr", "path": "/", - "expires": 1704661501, + "expires": 1705265550, "size": 15, "httpOnly": false, "secure": false, @@ -566999,10 +562912,10 @@ }, { "name": "_pk_id.6.88ba", - "value": "5a989ee39961721e.1704659702.", + "value": "bfd116461068bee2.1705263751.", "domain": "collectivite.fr", "path": "/", - "expires": 1738614902, + "expires": 1739218951, "size": 41, "httpOnly": false, "secure": false, @@ -567015,7 +562928,7 @@ ], "headers": { "content-type": "text/html", - "date": "Sun, 07 Jan 2024 20:35:00 GMT", + "date": "Sun, 14 Jan 2024 20:22:28 GMT", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000", "x-frame-options": "SAMEORIGIN" @@ -567100,7 +563013,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -567225,7 +563140,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 20:34:20", + "@generated": "Sun, 14 Jan 2024 20:21:48", "site": [ { "@name": "https://collectivite.fr", @@ -567323,20 +563238,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -567351,30 +563269,27 @@ "type": "dns", "host": "collectivite.fr.", "matched-at": "collectivite.fr", - "extracted-results": [ - "ns1.dom.scw.cloud.", - "ns0.dom.scw.cloud." - ], - "timestamp": "2024-01-07T20:37:34.647381106Z", + "timestamp": "2024-01-14T20:26:25.754080233Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "MX Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "mx" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -567391,29 +563306,28 @@ "host": "collectivite.fr.", "matched-at": "collectivite.fr", "extracted-results": [ - "\"v=spf1 include:_spf.scw-tem.cloud ip4:51.159.128.187 +a +mx ~all\"", - "\"google-site-verification=5czdtdebjHmPb8k6_ahd9eAFkHr97DD4ycgFLTi02WQ\"" + "0 mx.collectivite.fr." ], - "timestamp": "2024-01-07T20:37:35.066155904Z", + "timestamp": "2024-01-14T20:26:26.37385114Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -567429,28 +563343,28 @@ "type": "dns", "host": "collectivite.fr.", "matched-at": "collectivite.fr", - "timestamp": "2024-01-07T20:37:35.114424429Z", + "extracted-results": [ + "\"v=spf1 include:_spf.scw-tem.cloud ip4:51.159.128.187 +a +mx ~all\"", + "\"google-site-verification=5czdtdebjHmPb8k6_ahd9eAFkHr97DD4ycgFLTi02WQ\"" + ], + "timestamp": "2024-01-14T20:26:27.366595384Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -567466,9 +563380,10 @@ "host": "collectivite.fr.", "matched-at": "collectivite.fr", "extracted-results": [ - "0 mx.collectivite.fr." + "ns0.dom.scw.cloud.", + "ns1.dom.scw.cloud." ], - "timestamp": "2024-01-07T20:37:36.071392879Z", + "timestamp": "2024-01-14T20:26:27.416238271Z", "matcher-status": true }, { @@ -567507,7 +563422,7 @@ "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:37:48.283711394Z", + "timestamp": "2024-01-14T20:26:47.296953575Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567530,6 +563445,7 @@ "openstack" ], "description": "Nova noVNC contains an open redirect vulnerability. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.", + "impact": "An attacker can exploit this vulnerability to redirect users to malicious websites, leading to potential phishing attacks.\n", "reference": [ "https://seclists.org/oss-sec/2021/q3/188", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2021-3654", @@ -567553,7 +563469,7 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss-score": 6.1, "epss-score": 0.92596, - "epss-percentile": 0.98773, + "epss-percentile": 0.98805, "cpe": "cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*" }, "remediation": "Apply the latest security patches or updates provided by the vendor to fix the open redirect vulnerability in the Nova noVNC application.\n" @@ -567562,7 +563478,7 @@ "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr//interact.sh/%2f..", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:37:55.885622543Z", + "timestamp": "2024-01-14T20:26:59.695586293Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr//interact.sh/%2f..'", "matcher-status": true }, @@ -567596,7 +563512,7 @@ "Astro v3.5.0" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:13.703923553Z", + "timestamp": "2024-01-14T20:27:27.715608984Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567623,7 +563539,7 @@ "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:13.759422022Z", + "timestamp": "2024-01-14T20:27:27.773947054Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567655,12 +563571,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:22.838054851Z", + "timestamp": "2024-01-14T20:27:43.272526714Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567692,12 +563608,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:22.838103532Z", + "timestamp": "2024-01-14T20:27:43.272579883Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567729,12 +563645,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:22.838124641Z", + "timestamp": "2024-01-14T20:27:43.272600281Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567766,12 +563682,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "content-security-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:22.838166862Z", + "timestamp": "2024-01-14T20:27:43.272615109Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567803,12 +563719,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:22.838188983Z", + "timestamp": "2024-01-14T20:27:43.272630798Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567840,12 +563756,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:22.838216715Z", + "timestamp": "2024-01-14T20:27:43.272646167Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567877,12 +563793,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:22.838237023Z", + "timestamp": "2024-01-14T20:27:43.272661044Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567914,12 +563830,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:22.838255307Z", + "timestamp": "2024-01-14T20:27:43.272678767Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr'", "matcher-status": true }, @@ -567947,7 +563863,7 @@ "host": "https://collectivite.fr", "matched-at": "https://collectivite.fr/robots.txt", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:38:34.385416973Z", + "timestamp": "2024-01-14T20:28:01.527872267Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr/robots.txt'", "matcher-status": true }, @@ -567985,16 +563901,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "nameServers", + "extractor-name": "status", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "ns0.dom.scw.cloud", - "ns1.dom.scw.cloud" + "client transfer prohibited" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.963847307Z", + "timestamp": "2024-01-14T20:28:03.204052794Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -568032,15 +563947,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "secureDNS", + "extractor-name": "lastChangeDate", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "false" + "2023-03-20T13:28:31.515637Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.963895617Z", + "timestamp": "2024-01-14T20:28:03.204134115Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -568078,15 +563993,107 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "status", + "extractor-name": "expirationDate", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "client transfer prohibited" + "2024-06-20T09:30:09Z" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T20:28:03.204151267Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantOrg", + "type": "http", + "host": "https://collectivite.fr", + "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", + "extracted-results": [ + "Agence nationale de la cohesion des territoires" + ], + "ip": "45.77.228.254", + "timestamp": "2024-01-14T20:28:03.204165313Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", + "matcher-status": true + }, + { + "template": "http/miscellaneous/rdap-whois.yaml", + "template-url": "https://templates.nuclei.sh/public/rdap-whois", + "template-id": "rdap-whois", + "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "info": { + "name": "RDAP WHOIS", + "author": [ + "ricardomaia", + "sttlr" + ], + "tags": [ + "whois", + "rdap", + "osint", + "misc" + ], + "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "reference": [ + "https://about.rdap.org/" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "verified": true + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "extractor-name": "registrantPhone", + "type": "http", + "host": "https://collectivite.fr", + "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", + "extracted-results": [ + "+33.185586003" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.963914192Z", + "timestamp": "2024-01-14T20:28:03.204180472Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -568124,15 +564131,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "lastChangeDate", + "extractor-name": "registrantCountry", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "2023-03-20T13:28:31.515637Z" + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.963927286Z", + "timestamp": "2024-01-14T20:28:03.204195861Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -568170,15 +564177,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "expirationDate", + "extractor-name": "secureDNS", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "2024-06-20T09:30:09Z" + "false" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.963941944Z", + "timestamp": "2024-01-14T20:28:03.20421158Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -568216,15 +564223,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantName", + "extractor-name": "registrationDate", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "Agence nationale de la cohesion des territoires" + "2010-06-20T09:30:09Z" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.96395601Z", + "timestamp": "2024-01-14T20:28:03.204225746Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -568262,7 +564269,7 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantOrg", + "extractor-name": "registrantName", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", @@ -568270,7 +564277,7 @@ "Agence nationale de la cohesion des territoires" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.963970888Z", + "timestamp": "2024-01-14T20:28:03.204238039Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -568308,64 +564315,15 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantAddress", - "type": "http", - "host": "https://collectivite.fr", - "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", - "extracted-results": [ - "20 Avenue de Segur", - "PARIS", - "75007", - "FR" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.963985765Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", - "matcher-status": true - }, - { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", - "info": { - "name": "RDAP WHOIS", - "author": [ - "ricardomaia", - "sttlr" - ], - "tags": [ - "whois", - "rdap", - "osint", - "misc" - ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", - "reference": [ - "https://about.rdap.org/" - ], - "severity": "info", - "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } - }, - "extractor-name": "registrationDate", + "extractor-name": "registrantEmail", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "2010-06-20T09:30:09Z" + "94a60aaa87ebf9a5.1927334@spamfree.bookmyname.com" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.964001906Z", + "timestamp": "2024-01-14T20:28:03.204251685Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -568403,15 +564361,18 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantEmail", + "extractor-name": "registrantAddress", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "94a60aaa87ebf9a5.1927334@spamfree.bookmyname.com" + "20 Avenue de Segur", + "PARIS", + "75007", + "FR" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.964019999Z", + "timestamp": "2024-01-14T20:28:03.204264188Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, @@ -568449,62 +564410,57 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, - "extractor-name": "registrantPhone", + "extractor-name": "nameServers", "type": "http", "host": "https://collectivite.fr", "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", "extracted-results": [ - "+33.185586003" + "ns0.dom.scw.cloud", + "ns1.dom.scw.cloud" ], "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.964035819Z", + "timestamp": "2024-01-14T20:28:03.204279787Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", "matcher-status": true }, { - "template": "http/miscellaneous/rdap-whois.yaml", - "template-url": "https://templates.nuclei.sh/public/rdap-whois", - "template-id": "rdap-whois", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/rdap-whois.yaml", + "template": "http/technologies/waf-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/waf-detect", + "template-id": "waf-detect", + "template-path": "/home/runner/nuclei-templates/http/technologies/waf-detect.yaml", "info": { - "name": "RDAP WHOIS", + "name": "WAF Detection", "author": [ - "ricardomaia", - "sttlr" + "dwisiswant0", + "lu4nx" ], "tags": [ - "whois", - "rdap", - "osint", + "waf", + "tech", "misc" ], - "description": "RDAP (Registration Data Access Protocol) is a standard defined by the IETF to replace the whois protocol\nin queries for information about Internet resource records such as domain names, IP addresses, and ASNs.\n", + "description": "A web application firewall was detected.", "reference": [ - "https://about.rdap.org/" + "https://github.com/ekultek/whatwaf" ], "severity": "info", "metadata": { - "max-request": 1, - "verified": true + "max-request": 1 }, "classification": { "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, - "extractor-name": "registrantCountry", + "matcher-name": "ats", "type": "http", "host": "https://collectivite.fr", - "matched-at": "https://rdap.nic.fr/domain/collectivite.fr", - "extracted-results": [ - "FR" - ], - "ip": "45.77.228.254", - "timestamp": "2024-01-07T20:38:34.96405263Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://www.rdap.net/domain/collectivite.fr'", + "matched-at": "https://collectivite.fr/", + "ip": "51.159.10.161", + "timestamp": "2024-01-14T20:28:25.503315289Z", + "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: collectivite.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr/'", "matcher-status": true }, { @@ -568548,7 +564504,7 @@ "redirect": "/evil.com/%2F.." }, "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:39:04.789999561Z", + "timestamp": "2024-01-14T20:28:50.041581968Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://collectivite.fr//evil.com/%2F..'", "matcher-status": true }, @@ -568579,7 +564535,7 @@ "Let's Encrypt" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:40:44.479052201Z", + "timestamp": "2024-01-14T20:29:21.481486773Z", "matcher-status": true }, { @@ -568609,7 +564565,7 @@ "collectivite.fr" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:40:44.479289242Z", + "timestamp": "2024-01-14T20:29:21.481612067Z", "matcher-status": true }, { @@ -568640,7 +564596,7 @@ "tls12" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:40:56.476071326Z", + "timestamp": "2024-01-14T20:30:08.063561706Z", "matcher-status": true }, { @@ -568671,7 +564627,7 @@ "tls13" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:40:56.662506288Z", + "timestamp": "2024-01-14T20:30:09.386182387Z", "matcher-status": true } ], @@ -568679,7 +564635,7 @@ { "requestedUrl": "https://collectivite.fr/", "finalUrl": "https://collectivite.fr/", - "fetchTime": "2024-01-07T20:34:34.812Z", + "fetchTime": "2024-01-14T20:22:02.506Z", "runWarnings": [], "categories": { "performance": { @@ -568690,7 +564646,7 @@ "snapshot" ], "id": "performance", - "score": 0.9359792709350586 + "score": 0.9359857559204101 }, "accessibility": { "title": "Accessibility", @@ -568722,7 +564678,7 @@ "snapshot" ], "id": "seo", - "score": 0.99 + "score": 1 }, "pwa": { "title": "PWA", @@ -568742,53 +564698,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 7925, + "numericValue": 7385, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 4964, - "firstMeaningfulPaint": 4964, - "largestContentfulPaint": 6282, - "interactive": 7925, - "speedIndex": 4964, - "totalBlockingTime": 45, - "maxPotentialFID": 134, + "firstContentfulPaint": 5410, + "firstMeaningfulPaint": 5410, + "largestContentfulPaint": 5875, + "interactive": 7385, + "speedIndex": 5410, + "totalBlockingTime": 38, + "maxPotentialFID": 123, "cumulativeLayoutShift": 0.1810907236735026, "cumulativeLayoutShiftMainFrame": 0.1810907236735026, "totalCumulativeLayoutShift": 0.1810907236735026, "observedTimeOrigin": 0, - "observedTimeOriginTs": 227130787, + "observedTimeOriginTs": 327753770, "observedNavigationStart": 0, - "observedNavigationStartTs": 227130787, - "observedFirstPaint": 782, - "observedFirstPaintTs": 227912601, - "observedFirstContentfulPaint": 782, - "observedFirstContentfulPaintTs": 227912601, - "observedFirstContentfulPaintAllFrames": 782, - "observedFirstContentfulPaintAllFramesTs": 227912601, - "observedFirstMeaningfulPaint": 803, - "observedFirstMeaningfulPaintTs": 227933443, - "observedLargestContentfulPaint": 886, - "observedLargestContentfulPaintTs": 228016841, - "observedLargestContentfulPaintAllFrames": 886, - "observedLargestContentfulPaintAllFramesTs": 228016841, - "observedTraceEnd": 3733, - "observedTraceEndTs": 230863626, - "observedLoad": 1424, - "observedLoadTs": 228554857, - "observedDomContentLoaded": 827, - "observedDomContentLoadedTs": 227958078, + "observedNavigationStartTs": 327753770, + "observedFirstPaint": 1409, + "observedFirstPaintTs": 329162494, + "observedFirstContentfulPaint": 1409, + "observedFirstContentfulPaintTs": 329162494, + "observedFirstContentfulPaintAllFrames": 1409, + "observedFirstContentfulPaintAllFramesTs": 329162494, + "observedFirstMeaningfulPaint": 1428, + "observedFirstMeaningfulPaintTs": 329182253, + "observedLargestContentfulPaint": 1560, + "observedLargestContentfulPaintTs": 329313436, + "observedLargestContentfulPaintAllFrames": 1560, + "observedLargestContentfulPaintAllFramesTs": 329313436, + "observedTraceEnd": 4820, + "observedTraceEndTs": 332573793, + "observedLoad": 2512, + "observedLoadTs": 330265625, + "observedDomContentLoaded": 1427, + "observedDomContentLoadedTs": 329180349, "observedCumulativeLayoutShift": 0.1810907236735026, "observedCumulativeLayoutShiftMainFrame": 0.1810907236735026, "observedTotalCumulativeLayoutShift": 0.1810907236735026, - "observedFirstVisualChange": 793, - "observedFirstVisualChangeTs": 227923787, - "observedLastVisualChange": 1110, - "observedLastVisualChangeTs": 228240787, - "observedSpeedIndex": 862, - "observedSpeedIndexTs": 227992380 + "observedFirstVisualChange": 1416, + "observedFirstVisualChangeTs": 329169770, + "observedLastVisualChange": 1733, + "observedLastVisualChangeTs": 329486770, + "observedSpeedIndex": 1512, + "observedSpeedIndexTs": 329265329 }, { "lcpInvalidated": false @@ -568810,19 +564766,19 @@ "numScripts": 12, "numStylesheets": 3, "numFonts": 4, - "numTasks": 804, + "numTasks": 841, "numTasksOver10ms": 4, "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 82.943, - "throughput": 16295807.084384937, - "maxRtt": 88.012, - "maxServerLatency": 12.004999999999995, - "totalByteWeight": 1384229, - "totalTaskTime": 191.0180000000003, - "mainDocumentTransferSize": 17309 + "rtt": 148.33, + "throughput": 12123503.93476682, + "maxRtt": 149.052, + "maxServerLatency": 9.692999999999984, + "totalByteWeight": 1384195, + "totalTaskTime": 183.07699999999994, + "mainDocumentTransferSize": 17455 } ] } @@ -568888,13 +564844,13 @@ "cookiesCount": 2, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.9359792709350586, + "lighthouse_performance": 0.9359857559204101, "lighthouse_performanceGrade": "A", "lighthouse_accessibility": 1, "lighthouse_accessibilityGrade": "A", "lighthouse_best-practices": 1, "lighthouse_best-practicesGrade": "A", - "lighthouse_seo": 0.99, + "lighthouse_seo": 1, "lighthouse_seoGrade": "A", "lighthouse_pwa": 0.3, "lighthouse_pwaGrade": "E", @@ -568921,109 +564877,42 @@ "http": { "url": "https://marcenais-33620.collectivite.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 20:55:12 GMT", - "grade": "C", + "end_time": "Sun, 14 Jan 2024 20:30:07 GMT", + "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { - "content-length": "94", - "content-security-policy": "connect-src 'self' https:;img-src 'self' data: blob: annuaire-des-territoires-development-storage.s3.fr-par.scw.cloud;media-src 'self' data: blob: annuaire-des-territoires-development-storage.s3.fr-par.scw.cloud;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'", - "content-type": "application/json; charset=utf-8", - "date": "Sun, 07 Jan 2024 20:55:11 GMT", + "content-type": "text/html", + "date": "Sun, 14 Jan 2024 20:30:06 GMT", "keep-alive": "timeout=5", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000", - "vary": "Origin", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-powered-by": "Strapi " + "transfer-encoding": "chunked", + "x-frame-options": "SAMEORIGIN" }, - "scan_id": 46238322, - "score": 50, - "start_time": "Sun, 07 Jan 2024 20:55:06 GMT", + "scan_id": 46506372, + "score": 60, + "start_time": "Sun, 14 Jan 2024 20:29:57 GMT", "state": "FINISHED", - "status_code": 404, - "tests_failed": 1, - "tests_passed": 11, + "status_code": 200, + "tests_failed": 3, + "tests_passed": 9, "tests_quantity": 12, "details": { "content-security-policy": { "expectation": "csp-implemented-with-no-unsafe", "name": "content-security-policy", "output": { - "data": { - "base-uri": [ - "'self'" - ], - "connect-src": [ - "https:", - "'self'" - ], - "default-src": [ - "'self'" - ], - "font-src": [ - "https:", - "data:", - "'self'" - ], - "form-action": [ - "'self'" - ], - "frame-ancestors": [ - "'self'" - ], - "img-src": [ - "annuaire-des-territoires-development-storage.s3.fr-par.scw.cloud", - "blob:", - "data:", - "'self'" - ], - "media-src": [ - "annuaire-des-territoires-development-storage.s3.fr-par.scw.cloud", - "blob:", - "data:", - "'self'" - ], - "object-src": [ - "'none'" - ], - "script-src": [ - "'self'" - ], - "script-src-attr": [ - "'none'" - ], - "style-src": [ - "'unsafe-inline'", - "https:", - "'self'" - ] - }, - "http": true, + "data": null, + "http": false, "meta": false, - "numPolicies": 1, - "policy": { - "antiClickjacking": true, - "defaultNone": false, - "insecureBaseUri": false, - "insecureFormAction": false, - "insecureSchemeActive": false, - "insecureSchemePassive": false, - "strictDynamic": false, - "unsafeEval": false, - "unsafeInline": false, - "unsafeInlineStyle": true, - "unsafeObjects": false - } + "numPolicies": 0, + "policy": null }, - "pass": true, - "result": "csp-implemented-with-unsafe-inline-in-style-src-only", - "score_description": "Content Security Policy (CSP) implemented with unsafe sources inside style-src. This includes 'unsafe-inline', data: or overly broad sources such as https:.", - "score_modifier": 0 + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 }, "contribute": { "expectation": "contribute-json-only-required-on-mozilla-properties", @@ -569053,15 +564942,15 @@ "name": "cross-origin-resource-sharing", "output": { "data": { - "acao": "https://http-observatory.security.mozilla.org", + "acao": null, "clientaccesspolicy": null, "crossdomain": null } }, - "pass": false, - "result": "cross-origin-resource-sharing-implemented-with-universal-access", - "score_description": "Content is visible via cross-origin resource sharing (CORS) file or headers", - "score_modifier": -50 + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 }, "public-key-pinning": { "expectation": "hpkp-not-implemented", @@ -569082,14 +564971,14 @@ "expectation": "redirection-to-https", "name": "redirection", "output": { - "destination": null, + "destination": "https://collectivite.fr/marcenais", "redirects": true, "route": [ "http://marcenais-33620.collectivite.fr/", "https://marcenais-33620.collectivite.fr:443/", - "https://api.collectivite.fr/marcenais" + "https://collectivite.fr/marcenais" ], - "status_code": null + "status_code": 200 }, "pass": true, "result": "redirection-to-https", @@ -569131,20 +565020,20 @@ "data": {} }, "pass": true, - "result": "sri-not-implemented-response-not-html", - "score_description": "Subresource Integrity (SRI) is only needed for html resources", + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", "score_modifier": 0 }, "x-content-type-options": { "expectation": "x-content-type-options-nosniff", "name": "x-content-type-options", "output": { - "data": "nosniff" + "data": null }, - "pass": true, - "result": "x-content-type-options-nosniff", - "score_description": "X-Content-Type-Options header set to \"nosniff\"", - "score_modifier": 0 + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 }, "x-frame-options": { "expectation": "x-frame-options-sameorigin-or-deny", @@ -569153,9 +565042,9 @@ "data": "SAMEORIGIN" }, "pass": true, - "result": "x-frame-options-implemented-via-csp", - "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", - "score_modifier": 5 + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 }, "x-xss-protection": { "expectation": "x-xss-protection-1-mode-block", @@ -569163,10 +565052,10 @@ "output": { "data": null }, - "pass": true, - "result": "x-xss-protection-not-needed-due-to-csp", - "score_description": "X-XSS-Protection header not needed due to strong Content Security Policy (CSP) header", - "score_modifier": 0 + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 } } }, @@ -569403,7 +565292,7 @@ "ip": "marcenais-33620.collectivite.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "not supported" + "finding": "supported" }, { "id": "TLS_timestamp", @@ -569550,7 +565439,7 @@ "ip": "marcenais-33620.collectivite.fr/51.159.10.161", "port": "443", "severity": "OK", - "finding": "87 >= 30 days" + "finding": "80 >= 30 days" }, { "id": "cert_notBefore", @@ -569753,7 +565642,7 @@ "ip": "marcenais-33620.collectivite.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "1704660990" + "finding": "1705264321" }, { "id": "HSTS_time", @@ -570323,31 +566212,230 @@ "ip": "marcenais-33620.collectivite.fr/51.159.10.161", "port": "443", "severity": "INFO", - "finding": "73" + "finding": "97" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://api.collectivite.fr/marcenais" + "url": "https://collectivite.fr/marcenais" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/dsfr.min.css" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/utility/icons/icons.min.css" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/_astro/carte-nationale-identite.93913f3a.css" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/_astro/index.60cdfc19.css" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/_astro/hoisted.ea2df26b.js" + }, + { + "type": "unknown", + "url": "https://commons.wikimedia.org/wiki/Special:FilePath/Blason%20d%C3%A9partement%20fr%20Gironde.svg" + }, + { + "type": "unknown", + "url": "https://commons.wikimedia.org/wiki/Special:FilePath/Blason_d%C3%A9partement_fr_Gironde.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/dsfr/artwork/pictograms/system/information.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/dsfr/artwork/pictograms/document/document.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/france-service.svg" + }, + { + "type": "unknown", + "url": "https://commons.wikimedia.org/wiki/Special:Redirect/file/Blason_d%C3%A9partement_fr_Gironde.svg" + }, + { + "type": "unknown", + "url": "https://upload.wikimedia.org/wikipedia/commons/a/a1/Blason_d%C3%A9partement_fr_Gironde.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/logo-incubateur.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/dsfr.module.min.js" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/scripts/matomo.js" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/_astro/hoisted.d1fad544.js" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/_astro/Infos.astro_astro_type_script_index_0_lang.8368c51c.js" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/menu-fill.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/close-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Bold.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Medium.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Regular.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Bold.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Medium.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Regular.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/arrow-right-s-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/eye-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/map/map-pin-2-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/device/phone-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/business/mail-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/information-fill.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/document/article-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/external-link-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/arrow-right-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Regular_Italic.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/user/team-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/buildings/home-4-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/map/car-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/fr--info-fill.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/arrow-down-s-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/time-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/fonts/Marianne-Regular_Italic.woff2" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/system/lock-line.svg" + }, + { + "type": "unknown", + "url": "https://collectivite.fr/styles/dsfr/icons/communication/question-answer-line.svg" + } + ], + "cookies": [ + { + "name": "_pk_ses.6.88ba", + "value": "1", + "domain": "collectivite.fr", + "path": "/", + "expires": 1705266038, + "size": 15, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 + }, + { + "name": "_pk_id.6.88ba", + "value": "37f98462a9a53429.1705264239.", + "domain": "collectivite.fr", + "path": "/", + "expires": 1739219439, + "size": 41, + "httpOnly": false, + "secure": false, + "session": false, + "sameSite": "Lax", + "sameParty": false, + "sourceScheme": "Secure", + "sourcePort": 443 } ], - "cookies": [], "headers": { - "content-length": "94", - "content-security-policy": "connect-src 'self' https:;img-src 'self' data: blob: annuaire-des-territoires-development-storage.s3.fr-par.scw.cloud;media-src 'self' data: blob: annuaire-des-territoires-development-storage.s3.fr-par.scw.cloud;default-src 'self';base-uri 'self';font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline'", - "content-type": "application/json; charset=utf-8", - "date": "Sun, 07 Jan 2024 20:55:44 GMT", + "content-type": "text/html", + "date": "Sun, 14 Jan 2024 20:30:37 GMT", "referrer-policy": "no-referrer", "strict-transport-security": "max-age=31536000", - "vary": "Origin", - "x-content-type-options": "nosniff", - "x-dns-prefetch-control": "off", - "x-download-options": "noopen", - "x-frame-options": "SAMEORIGIN", - "x-permitted-cross-domain-policies": "none", - "x-powered-by": "Strapi " + "x-frame-options": "SAMEORIGIN" }, "endpoints": [ { @@ -570429,7 +566517,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -570446,7 +566536,7 @@ } }, { - "hostname": "api.collectivite.fr", + "hostname": "collectivite.fr", "ip": "51.159.10.161", "geoip": { "city": { @@ -570524,7 +566614,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -570539,6 +566631,114 @@ } ] } + }, + { + "hostname": "commons.wikimedia.org", + "ip": "208.80.154.224", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "upload.wikimedia.org", + "ip": "208.80.154.240", + "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } } ] }, @@ -570573,7 +566773,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 20:54:35", + "@generated": "Sun, 14 Jan 2024 20:29:30", "site": [ { "@name": "https://marcenais-33620.collectivite.fr", @@ -570596,11 +566796,11 @@ "desc": "

Permissions Policy Header is an added layer of security that helps to restrict from unauthorized access or usage of browser/client features by web resources. This policy ensures the user privacy by limiting or specifying the features of the browsers can be used by the web resources. Permissions Policy provides a set of standard HTTP headers that allow website owners to limit which features of browsers can be used by the page such as camera, microphone, location, full screen etc.

" }, { - "name": "Server Leaks Information via \"X-Powered-By\" HTTP Response Header Field(s)", + "name": "Secure Pages Include Mixed Content", "riskcode": "1", "confidence": "2", "riskdesc": "Low (Medium)", - "desc": "

The web/application server is leaking information via one or more \"X-Powered-By\" HTTP response headers. Access to such information may facilitate attackers identifying other frameworks/components your web application is reliant upon and the vulnerabilities such components may be subject to.

" + "desc": "

The page includes mixed content, that is content accessed via HTTP instead of HTTPS.

" }, { "name": "X-Content-Type-Options Header Missing", @@ -570623,6 +566823,13 @@ "riskdesc": "Informational (Low)", "desc": "

The response appears to contain suspicious comments which may help an attacker. Note: Matches made within script blocks or files are against the entire content not only comments.

" }, + { + "name": "Modern Web Application", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The application appears to be a modern web application. If you need to explore it automatically then the Ajax Spider may well be more effective than the standard one.

" + }, { "name": "Non-Storable Content", "riskcode": "0", @@ -570685,73 +566892,73 @@ }, "nuclei": [ { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "marcenais-33620.collectivite.fr.", "matched-at": "marcenais-33620.collectivite.fr", - "timestamp": "2024-01-07T20:57:59.266935626Z", + "extracted-results": [ + "lb-kubernetes-prod.incubateur.anct.gouv.fr." + ], + "timestamp": "2024-01-14T20:33:49.601495225Z", "matcher-status": true }, { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "marcenais-33620.collectivite.fr.", "matched-at": "marcenais-33620.collectivite.fr", - "extracted-results": [ - "lb-kubernetes-prod.incubateur.anct.gouv.fr." - ], - "timestamp": "2024-01-07T20:57:59.464953447Z", + "timestamp": "2024-01-14T20:33:49.809444105Z", "matcher-status": true }, { @@ -570773,6 +566980,7 @@ "openstack" ], "description": "Nova noVNC contains an open redirect vulnerability. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.", + "impact": "An attacker can exploit this vulnerability to redirect users to malicious websites, leading to potential phishing attacks.\n", "reference": [ "https://seclists.org/oss-sec/2021/q3/188", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2021-3654", @@ -570796,7 +567004,7 @@ "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "cvss-score": 6.1, "epss-score": 0.92596, - "epss-percentile": 0.98773, + "epss-percentile": 0.98805, "cpe": "cpe:2.3:a:openstack:nova:*:*:*:*:*:*:*:*" }, "remediation": "Apply the latest security patches or updates provided by the vendor to fix the open redirect vulnerability in the Nova noVNC application.\n" @@ -570805,7 +567013,7 @@ "host": "https://marcenais-33620.collectivite.fr", "matched-at": "https://marcenais-33620.collectivite.fr//interact.sh/%2f..", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:58:20.073686561Z", + "timestamp": "2024-01-14T20:34:13.683320763Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://marcenais-33620.collectivite.fr//interact.sh/%2f..'", "matcher-status": true }, @@ -570833,10 +567041,55 @@ "host": "https://marcenais-33620.collectivite.fr", "matched-at": "https://marcenais-33620.collectivite.fr/robots.txt", "ip": "51.159.10.161", - "timestamp": "2024-01-07T20:58:58.191943115Z", + "timestamp": "2024-01-14T20:34:59.039653746Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://marcenais-33620.collectivite.fr/robots.txt'", "matcher-status": true }, + { + "template": "http/vulnerabilities/generic/open-redirect.yaml", + "template-url": "https://templates.nuclei.sh/public/open-redirect", + "template-id": "open-redirect", + "template-path": "/home/runner/nuclei-templates/http/vulnerabilities/generic/open-redirect.yaml", + "info": { + "name": "Open Redirect - Detection", + "author": [ + "afaq", + "melbadry9", + "elmahdi", + "pxmme1337", + "regala_", + "andirrahmani1", + "geeknik" + ], + "tags": [ + "redirect", + "generic" + ], + "description": "An open redirect vulnerability was detected. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.", + "severity": "medium", + "metadata": { + "max-request": 93 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-601" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "cvss-score": 6.1 + } + }, + "type": "http", + "host": "https://marcenais-33620.collectivite.fr", + "matched-at": "https://marcenais-33620.collectivite.fr//evil.com/%2F..", + "meta": { + "redirect": "/evil.com/%2F.." + }, + "ip": "51.159.10.161", + "timestamp": "2024-01-14T20:35:34.877834849Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://marcenais-33620.collectivite.fr//evil.com/%2F..'", + "matcher-status": true + }, { "template": "ssl/detect-ssl-issuer.yaml", "template-url": "https://templates.nuclei.sh/public/ssl-issuer", @@ -570864,7 +567117,7 @@ "Let's Encrypt" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T21:01:21.880935496Z", + "timestamp": "2024-01-14T20:36:14.485589324Z", "matcher-status": true }, { @@ -570894,7 +567147,7 @@ "*.collectivite.fr" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T21:01:21.881172508Z", + "timestamp": "2024-01-14T20:36:14.485703789Z", "matcher-status": true }, { @@ -570929,7 +567182,7 @@ " SAN: [*.collectivite.fr]" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T21:01:21.881219355Z", + "timestamp": "2024-01-14T20:36:14.485785613Z", "matcher-status": true }, { @@ -570960,7 +567213,7 @@ "tls12" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T21:01:40.221602112Z", + "timestamp": "2024-01-14T20:36:23.077866309Z", "matcher-status": true }, { @@ -570991,11 +567244,167 @@ "tls13" ], "ip": "51.159.10.161", - "timestamp": "2024-01-07T21:01:40.430281762Z", + "timestamp": "2024-01-14T20:36:29.691867639Z", "matcher-status": true } ], - "lhr": null, + "lhr": [ + { + "requestedUrl": "https://marcenais-33620.collectivite.fr/", + "finalUrl": "https://collectivite.fr/marcenais", + "fetchTime": "2024-01-14T20:29:44.302Z", + "runWarnings": [ + "The page may not be loading as expected because your test URL (https://marcenais-33620.collectivite.fr/) was redirected to https://collectivite.fr/marcenais. Try testing the second URL directly." + ], + "categories": { + "performance": { + "title": "Performance", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "performance", + "score": 0.9563089370727539 + }, + "accessibility": { + "title": "Accessibility", + "description": "These checks highlight opportunities to [improve the accessibility of your web app](https://developers.google.com/web/fundamentals/accessibility). Only a subset of accessibility issues can be automatically detected so manual testing is also encouraged.", + "manualDescription": "These items address areas which an automated testing tool cannot cover. Learn more in our guide on [conducting an accessibility review](https://developers.google.com/web/fundamentals/accessibility/how-to-review).", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "accessibility", + "score": 0.91 + }, + "best-practices": { + "title": "Best Practices", + "supportedModes": [ + "navigation", + "timespan", + "snapshot" + ], + "id": "best-practices", + "score": 0.83 + }, + "seo": { + "title": "SEO", + "description": "These checks ensure that your page is following basic search engine optimization advice. There are many additional factors Lighthouse does not score here that may affect your search ranking, including performance on [Core Web Vitals](https://web.dev/learn-web-vitals/). [Learn more](https://support.google.com/webmasters/answer/35769).", + "manualDescription": "Run these additional validators on your site to check additional SEO best practices.", + "supportedModes": [ + "navigation", + "snapshot" + ], + "id": "seo", + "score": 1 + }, + "pwa": { + "title": "PWA", + "description": "These checks validate the aspects of a Progressive Web App. [Learn more](https://developers.google.com/web/progressive-web-apps/checklist).", + "manualDescription": "These checks are required by the baseline [PWA Checklist](https://developers.google.com/web/progressive-web-apps/checklist) but are not automatically checked by Lighthouse. They do not affect your score but it's important that you verify them manually.", + "supportedModes": [ + "navigation" + ], + "id": "pwa", + "score": 0.3 + } + }, + "audits": { + "metrics": { + "id": "metrics", + "title": "Metrics", + "description": "Collects all available metrics.", + "score": null, + "scoreDisplayMode": "informative", + "numericValue": 10476, + "numericUnit": "millisecond", + "details": { + "type": "debugdata", + "items": [ + { + "firstContentfulPaint": 7284, + "firstMeaningfulPaint": 7284, + "largestContentfulPaint": 8687, + "interactive": 10476, + "speedIndex": 9164, + "totalBlockingTime": 29, + "maxPotentialFID": 108, + "cumulativeLayoutShift": 0.028476831224229598, + "cumulativeLayoutShiftMainFrame": 0.028476831224229598, + "totalCumulativeLayoutShift": 0.028476831224229598, + "observedTimeOrigin": 0, + "observedTimeOriginTs": 229931094, + "observedNavigationStart": 0, + "observedNavigationStartTs": 229931094, + "observedFirstPaint": 3135, + "observedFirstPaintTs": 233065629, + "observedFirstContentfulPaint": 3135, + "observedFirstContentfulPaintTs": 233065629, + "observedFirstContentfulPaintAllFrames": 3135, + "observedFirstContentfulPaintAllFramesTs": 233065629, + "observedFirstMeaningfulPaint": 3173, + "observedFirstMeaningfulPaintTs": 233103915, + "observedLargestContentfulPaint": 3173, + "observedLargestContentfulPaintTs": 233103915, + "observedLargestContentfulPaintAllFrames": 3173, + "observedLargestContentfulPaintAllFramesTs": 233103915, + "observedTraceEnd": 6132, + "observedTraceEndTs": 236063349, + "observedLoad": 3824, + "observedLoadTs": 233754745, + "observedDomContentLoaded": 3172, + "observedDomContentLoadedTs": 233103328, + "observedCumulativeLayoutShift": 0.028476831224229598, + "observedCumulativeLayoutShiftMainFrame": 0.028476831224229598, + "observedTotalCumulativeLayoutShift": 0.028476831224229598, + "observedFirstVisualChange": 3142, + "observedFirstVisualChangeTs": 233073094, + "observedLastVisualChange": 3292, + "observedLastVisualChangeTs": 233223094, + "observedSpeedIndex": 3179, + "observedSpeedIndexTs": 233109675 + }, + { + "lcpInvalidated": false + } + ] + } + }, + "diagnostics": { + "id": "diagnostics", + "title": "Diagnostics", + "description": "Collection of useful page vitals.", + "score": null, + "scoreDisplayMode": "informative", + "details": { + "type": "debugdata", + "items": [ + { + "numRequests": 47, + "numScripts": 6, + "numStylesheets": 4, + "numFonts": 4, + "numTasks": 1159, + "numTasksOver10ms": 4, + "numTasksOver25ms": 2, + "numTasksOver50ms": 0, + "numTasksOver100ms": 0, + "numTasksOver500ms": 0, + "rtt": 22.037000000000003, + "throughput": 12072691.421690946, + "maxRtt": 105.818, + "maxServerLatency": 147.70599999999996, + "totalByteWeight": 1277643, + "totalTaskTime": 234.94399999999848, + "mainDocumentTransferSize": 91476 + } + ] + } + } + } + } + ], "screenshot": true, "stats": { "grade": "F", @@ -571018,42 +567427,63 @@ "declaration-rgpd": [ { "slug": "ml", - "mention": null, - "maxScore": 0, + "mention": "Mentions légales", + "maxScore": 4, "score": 0, - "missingWords": [], - "missingTrackers": [] + "missingWords": [ + "directeur (ou) directrice", + "publication", + "hébergeur (ou) hébergement", + "éditeur (ou) édité par (ou) editeur (ou) edité par" + ], + "missingTrackers": [], + "declarationUrl": "https://marcenais-33620.collectivite.fr/mentions-legales" }, { "slug": "pc", - "mention": null, - "maxScore": 0, - "score": 0, - "missingWords": [], - "missingTrackers": [] + "mention": "Données personnelles", + "maxScore": 4, + "score": 1, + "missingWords": [ + "finalité", + "durée de conservation", + "sous-traitants (ou) sous traitants" + ], + "missingTrackers": [], + "declarationUrl": "https://marcenais-33620.collectivite.fr/donnees-personnelles" } ], "betagouv": null, "ecoindex": null, "sonarcloud": null, "summary": { - "httpGrade": "C", + "httpGrade": "C+", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", "testsslExpireSoon": false, "testsslExpireDate": "2024-04-04T08:52:00.000Z", "testsslGrade": "A+", - "cookiesGrade": "A", - "cookiesCount": 0, - "trackersGrade": "B", - "trackersCount": 1, + "cookiesGrade": "B", + "cookiesCount": 2, + "trackersGrade": "F", + "trackersCount": 45, + "lighthouse_performance": 0.9563089370727539, + "lighthouse_performanceGrade": "A", + "lighthouse_accessibility": 0.91, + "lighthouse_accessibilityGrade": "A", + "lighthouse_best-practices": 0.83, + "lighthouse_best-practicesGrade": "B", + "lighthouse_seo": 1, + "lighthouse_seoGrade": "A", + "lighthouse_pwa": 0.3, + "lighthouse_pwaGrade": "E", "statsGrade": "F", "githubRepositoryGrade": "F", "budgetPageGrade": "F", "declaration-a11y": "F", - "declaration-rgpd-ml": "F", - "declaration-rgpd-pc": "F" + "declaration-rgpd-ml": "D", + "declaration-rgpd-pc": "D" } }, { @@ -571064,7 +567494,7 @@ "http": { "url": "https://a-just.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 20:55:36 GMT", + "end_time": "Sun, 14 Jan 2024 20:32:39 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -571073,18 +567503,18 @@ "Content-Encoding": "gzip", "Content-Security-Policy": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com;script-src 'report-sample' 'self' 'unsafe-eval' https://*.hsforms.net 'unsafe-inline' *.beta.gouv.fr stonly.com *.stonly.com *.calendly.com *.google-analytics.com;script-src-elem 'self' 'unsafe-inline' *.beta.gouv.fr *.hsforms.net *.calendly.com stonly.com *.stonly.com *.google-analytics.com;worker-src blob:;style-src 'self' 'unsafe-inline';frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com *.hubspot.com;object-src 'self';base-uri 'self';form-action 'self';upgrade-insecure-requests;default-src 'self';frame-ancestors 'self';script-src-attr 'none'", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 20:55:34 GMT", + "Date": "Sun, 14 Jan 2024 20:32:38 GMT", "Transfer-Encoding": "chunked", "Vary": "Origin, Accept-Encoding", "X-Frame-Options": "SAMEORIGIN", "X-RateLimit-Limit": "1000", - "X-RateLimit-Remaining": "957", - "X-RateLimit-Reset": "1704661143", - "X-Request-ID": "f1111801-b5f3-48ff-8f04-a620e43c5dc7" + "X-RateLimit-Remaining": "998", + "X-RateLimit-Reset": "1705264621", + "X-Request-ID": "98d797c6-c6ea-4586-aa2c-6bcb6aea1e40" }, - "scan_id": 46238326, + "scan_id": 46506586, "score": 0, - "start_time": "Sun, 07 Jan 2024 20:55:31 GMT", + "start_time": "Sun, 14 Jan 2024 20:32:34 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -571101,24 +567531,24 @@ ], "connect-src": [ "https://hubspot-forms-static-embed-eu1.s3.amazonaws.com", - "https://www.google-analytics.com/j/collect", "https://forms-eu1.hsforms.com", - "stonly.com", - "https://stats.beta.gouv.fr", - "https://api.mapbox.com", "https://events.mapbox.com", - "*.stonly.com", + "https://www.google-analytics.com/j/collect", "https://stats.beta-gouv.cloud-ed.fr", + "stonly.com", + "https://stats.beta.gouv.fr", + "'self'", "https://api.gitbook.com", - "'self'" + "https://api.mapbox.com", + "*.stonly.com" ], "default-src": [ "'self'" ], "font-src": [ - "https://fonts.gstatic.com", "data:", - "'self'" + "'self'", + "https://fonts.gstatic.com" ], "form-action": [ "'self'" @@ -571127,52 +567557,52 @@ "'self'" ], "frame-src": [ + "stonly.com", "https://meta.a-just.beta.gouv.fr", "*.stonly.com", - "https://forms-eu1.hsforms.com/", "*.hubspot.com", "https://docs.a-just.beta.gouv.fr", - "stonly.com", + "https://forms-eu1.hsforms.com/", "https://calendly.com" ], "img-src": [ + "https://www.ionos.fr", "https://forms.hsforms.com", - "https://api.hubspot.com", "https://forms-eu1.hsforms.com", - "https://img.freepik.com", + "https://api.hubspot.com", "https://js-eu1.hsforms.net", - "https://image.noelshack.com", - "https://www.ionos.fr", + "https://img.freepik.com", "data:", - "'self'" + "'self'", + "https://image.noelshack.com" ], "object-src": [ "'self'" ], "script-src": [ - "'report-sample'", - "*.google-analytics.com", "*.calendly.com", - "'unsafe-eval'", - "'unsafe-inline'", - "*.stonly.com", "https://*.hsforms.net", + "*.google-analytics.com", "stonly.com", + "*.stonly.com", + "'report-sample'", + "'unsafe-inline'", + "'self'", "*.beta.gouv.fr", - "'self'" + "'unsafe-eval'" ], "script-src-attr": [ "'none'" ], "script-src-elem": [ - "*.google-analytics.com", "*.calendly.com", - "'unsafe-inline'", - "*.stonly.com", - "*.hsforms.net", + "*.google-analytics.com", "stonly.com", + "*.stonly.com", + "'unsafe-inline'", + "'self'", "*.beta.gouv.fr", - "'self'" + "*.hsforms.net" ], "style-src": [ "'unsafe-inline'", @@ -571359,7 +567789,7 @@ "uptime": 100, "down": false, "down_since": null, - "up_since": "2024-01-02T07:49:33Z", + "up_since": "2024-01-13T00:07:33Z", "error": null, "period": 300, "apdex_t": 0.5, @@ -571372,8 +567802,8 @@ "email:3205808100", "slack_compatible:4124784183" ], - "last_check_at": "2024-01-07T21:07:50Z", - "next_check_at": "2024-01-07T21:12:47Z", + "last_check_at": "2024-01-14T20:45:42Z", + "next_check_at": "2024-01-14T20:50:40Z", "created_at": "2023-01-30T16:32:40Z", "mute_until": null, "favicon_url": "https://a-just.beta.gouv.fr/favicon.ico", @@ -571381,7 +567811,7 @@ "http_verb": "GET/HEAD", "http_body": "", "ssl": { - "tested_at": "2024-01-07T20:52:57Z", + "tested_at": "2024-01-14T20:25:49Z", "expires_at": "2024-04-05T10:50:10Z", "valid": true, "error": null @@ -571390,11 +567820,11 @@ "apdex": 1, "timings": { "redirect": 0, - "namelookup": 196, - "connection": 180, - "handshake": 179, - "response": 177, - "total": 731 + "namelookup": 134, + "connection": 131, + "handshake": 138, + "response": 137, + "total": 539 } }, "uptimeGrade": "A", @@ -571427,77 +567857,77 @@ "testssl": [ { "id": "service", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -571505,7 +567935,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -571513,7 +567943,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -571521,7 +567951,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -571529,7 +567959,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -571537,7 +567967,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -571545,490 +567975,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-01-06 10:50" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-04-05 10:50" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "-1 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704661031" + "finding": "1705264452" }, { "id": "HSTS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com;script-src 'report-sample' 'self' 'unsafe-eval' https://*.hsforms.net 'unsafe-inline' *.beta.gouv.fr stonly.com *.stonly.com *.calendly.com *.google-analytics.com;script-src-elem 'self' 'unsafe-inline' *.beta.gouv.fr *.hsforms.net *.calendly.com stonly.com *.stonly.com *.google-analytics.com;worker-src blob:;style-src 'self' 'unsafe-inline';frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com *.hubspot.com;object-src 'self';base-uri 'self';form-action 'self';upgrade-insecure-requests;default-src 'self';frame-ancestors 'self';script-src-attr 'none'" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -572036,7 +568466,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -572045,7 +568475,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -572054,7 +568484,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -572063,7 +568493,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -572072,7 +568502,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -572080,7 +568510,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -572089,7 +568519,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -572098,7 +568528,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -572107,7 +568537,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -572116,14 +568546,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -572132,7 +568562,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -572141,7 +568571,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -572150,7 +568580,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -572159,7 +568589,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -572168,7 +568598,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -572177,7 +568607,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -572186,7 +568616,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -572195,7 +568625,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -572204,7 +568634,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -572213,399 +568643,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "a-just.beta.gouv.fr/185.21.194.105", + "ip": "a-just.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -572613,7 +569043,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -572621,7 +569051,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -572629,7 +569059,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -572637,7 +569067,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -572645,7 +569075,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -572653,490 +569083,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-01-06 10:50" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-04-05 10:50" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704661086" + "finding": "1705264507" }, { "id": "HSTS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com;script-src 'report-sample' 'self' 'unsafe-eval' https://*.hsforms.net 'unsafe-inline' *.beta.gouv.fr stonly.com *.stonly.com *.calendly.com *.google-analytics.com;script-src-elem 'self' 'unsafe-inline' *.beta.gouv.fr *.hsforms.net *.calendly.com stonly.com *.stonly.com *.google-analytics.com;worker-src blob:;style-src 'self' 'unsafe-inline';frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com *.hubspot.com;object-src 'self';base-uri 'self';form-action 'self';upgrade-insecure-requests;default-src 'self';frame-ancestors 'self';script-src-attr 'none'" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -573144,7 +569574,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -573153,7 +569583,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -573162,7 +569592,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -573171,7 +569601,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -573180,7 +569610,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -573188,7 +569618,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -573197,7 +569627,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -573206,7 +569636,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -573215,7 +569645,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -573224,14 +569654,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -573240,7 +569670,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -573249,7 +569679,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -573258,7 +569688,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -573267,7 +569697,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -573276,7 +569706,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -573285,7 +569715,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -573294,7 +569724,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -573303,7 +569733,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -573312,7 +569742,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -573321,399 +569751,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "a-just.beta.gouv.fr/80.247.12.255", + "ip": "a-just.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -573721,7 +570151,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -573729,7 +570159,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -573737,7 +570167,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -573745,7 +570175,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -573753,7 +570183,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -573761,490 +570191,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-01-06 10:50" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-04-05 10:50" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704661141" + "finding": "1705264562" }, { "id": "HSTS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com;script-src 'report-sample' 'self' 'unsafe-eval' https://*.hsforms.net 'unsafe-inline' *.beta.gouv.fr stonly.com *.stonly.com *.calendly.com *.google-analytics.com;script-src-elem 'self' 'unsafe-inline' *.beta.gouv.fr *.hsforms.net *.calendly.com stonly.com *.stonly.com *.google-analytics.com;worker-src blob:;style-src 'self' 'unsafe-inline';frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com *.hubspot.com;object-src 'self';base-uri 'self';form-action 'self';upgrade-insecure-requests;default-src 'self';frame-ancestors 'self';script-src-attr 'none'" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -574252,7 +570682,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -574261,7 +570691,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -574270,7 +570700,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -574279,7 +570709,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -574288,7 +570718,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -574296,7 +570726,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -574305,7 +570735,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -574314,7 +570744,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -574323,7 +570753,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -574332,14 +570762,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -574348,7 +570778,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -574357,7 +570787,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -574366,7 +570796,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -574375,7 +570805,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -574384,7 +570814,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -574393,7 +570823,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -574402,7 +570832,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -574411,7 +570841,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -574420,7 +570850,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -574429,399 +570859,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "a-just.beta.gouv.fr/148.253.96.193", + "ip": "a-just.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -574829,7 +571259,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -574837,7 +571267,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -574845,7 +571275,7 @@ }, { "id": "cipherlist_LOW", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -574853,7 +571283,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -574861,7 +571291,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -574869,490 +571299,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "81 >= 30 days" }, { "id": "cert_notBefore", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-01-06 10:50" }, { "id": "cert_notAfter", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-04-05 10:50" }, { "id": "cert_extlifeSpan", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704661200" + "finding": "1705264617" }, { "id": "HSTS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "Content-Security-Policy", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com;script-src 'report-sample' 'self' 'unsafe-eval' https://*.hsforms.net 'unsafe-inline' *.beta.gouv.fr stonly.com *.stonly.com *.calendly.com *.google-analytics.com;script-src-elem 'self' 'unsafe-inline' *.beta.gouv.fr *.hsforms.net *.calendly.com stonly.com *.stonly.com *.google-analytics.com;worker-src blob:;style-src 'self' 'unsafe-inline';frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com *.hubspot.com;object-src 'self';base-uri 'self';form-action 'self';upgrade-insecure-requests;default-src 'self';frame-ancestors 'self';script-src-attr 'none'" }, { "id": "banner_reverseproxy", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -575360,7 +571790,7 @@ }, { "id": "heartbleed", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -575369,7 +571799,7 @@ }, { "id": "CCS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -575378,7 +571808,7 @@ }, { "id": "ticketbleed", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -575387,7 +571817,7 @@ }, { "id": "ROBOT", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -575396,7 +571826,7 @@ }, { "id": "secure_renego", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -575404,7 +571834,7 @@ }, { "id": "secure_client_renego", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -575413,7 +571843,7 @@ }, { "id": "CRIME_TLS", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -575422,7 +571852,7 @@ }, { "id": "BREACH", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -575431,7 +571861,7 @@ }, { "id": "POODLE_SSL", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -575440,14 +571870,14 @@ }, { "id": "fallback_SCSV", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -575456,7 +571886,7 @@ }, { "id": "FREAK", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -575465,7 +571895,7 @@ }, { "id": "DROWN", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -575474,7 +571904,7 @@ }, { "id": "DROWN_hint", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -575483,7 +571913,7 @@ }, { "id": "LOGJAM", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -575492,7 +571922,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -575501,7 +571931,7 @@ }, { "id": "BEAST", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -575510,7 +571940,7 @@ }, { "id": "LUCKY13", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -575519,7 +571949,7 @@ }, { "id": "winshock", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -575528,7 +571958,7 @@ }, { "id": "RC4", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -575537,351 +571967,351 @@ }, { "id": "clientsimulation-android_60", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "a-just.beta.gouv.fr/80.247.13.145", + "ip": "a-just.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "225" + "finding": "222" } ], "thirdparties": { "trackers": [ { "type": "unknown", - "url": "https://stonly.com/js/widget/v2/version?v=1704660969589" + "url": "https://stonly.com/js/widget/v2/version?v=1705264391466" }, { "type": "unknown", - "url": "https://stonly.com/js/widget/v2/stonly-widget.js?v=c162657d" + "url": "https://stonly.com/js/widget/v2/stonly-widget.js?v=07899e03" }, { "type": "unknown", - "url": "https://stonly.com/js/widget/v2/vendors~widget-b824d32ba9462bb713fe.stonly.js" + "url": "https://stonly.com/js/widget/v2/vendors~widget-6fafdd2490c0f86d32c4.stonly.js" }, { "type": "unknown", - "url": "https://stonly.com/js/widget/v2/widget-8a45b79425bd45b988c8.stonly.js" + "url": "https://stonly.com/js/widget/v2/widget-671369e9bd1c9e1a8686.stonly.js" }, { "type": "unknown", @@ -575897,11 +572327,19 @@ }, { "type": "unknown", - "url": "https://api.stonly.com/api/v2/widget/integration?widgetId=d8e598cc-94ee-11ee-bc11-06cb0cb2a85e&stonlyAnonymousId=7b7cdd46-ac3c-400c-90d2-a548b0ad3933&url=https%3A%2F%2Fa-just.beta.gouv.fr%2Fconnexion" + "url": "https://api.stonly.com/api/v2/widget/integration?widgetId=d8e598cc-94ee-11ee-bc11-06cb0cb2a85e&stonlyAnonymousId=50e41a01-ae37-4452-99e6-f0d3d3f68b25&url=https%3A%2F%2Fa-just.beta.gouv.fr%2Fconnexion" + }, + { + "type": "unknown", + "url": "https://api.stonly.com/api/v2/widget/integration?widgetId=d8e598cc-94ee-11ee-bc11-06cb0cb2a85e&stonlyAnonymousId=50e41a01-ae37-4452-99e6-f0d3d3f68b25&url=https%3A%2F%2Fa-just.beta.gouv.fr%2Fconnexion" }, { "type": "unknown", - "url": "https://api.stonly.com/api/v2/widget/integration?widgetId=d8e598cc-94ee-11ee-bc11-06cb0cb2a85e&stonlyAnonymousId=7b7cdd46-ac3c-400c-90d2-a548b0ad3933&url=https%3A%2F%2Fa-just.beta.gouv.fr%2Fconnexion" + "url": "https://api.stonly.com/api/v1/stat" + }, + { + "type": "unknown", + "url": "https://api.stonly.com/api/v1/stat" } ], "cookies": [ @@ -575910,7 +572348,7 @@ "value": "1", "domain": "a-just.beta.gouv.fr", "path": "/", - "expires": 1704662769, + "expires": 1705266191, "size": 16, "httpOnly": false, "secure": false, @@ -575922,10 +572360,10 @@ }, { "name": "_pk_id.65.6e7b", - "value": "de100e28995dba06.1704660970.", + "value": "1dbbd6dd0d7144ff.1705264391.", "domain": "a-just.beta.gouv.fr", "path": "/", - "expires": 1738616170, + "expires": 1739219591, "size": 42, "httpOnly": false, "secure": false, @@ -575940,13 +572378,13 @@ "content-encoding": "gzip", "content-security-policy": "connect-src https://api.gitbook.com https://www.google-analytics.com/j/collect 'self' https://api.mapbox.com https://events.mapbox.com https://stats.beta.gouv.fr https://forms-eu1.hsforms.com https://hubspot-forms-static-embed-eu1.s3.amazonaws.com stonly.com *.stonly.com https://stats.beta-gouv.cloud-ed.fr;font-src 'self' https://fonts.gstatic.com data:;img-src 'self' data: https://js-eu1.hsforms.net https://api.hubspot.com https://forms-eu1.hsforms.com https://forms.hsforms.com https://www.ionos.fr https://img.freepik.com https://image.noelshack.com;script-src 'report-sample' 'self' 'unsafe-eval' https://*.hsforms.net 'unsafe-inline' *.beta.gouv.fr stonly.com *.stonly.com *.calendly.com *.google-analytics.com;script-src-elem 'self' 'unsafe-inline' *.beta.gouv.fr *.hsforms.net *.calendly.com stonly.com *.stonly.com *.google-analytics.com;worker-src blob:;style-src 'self' 'unsafe-inline';frame-src https://docs.a-just.beta.gouv.fr https://meta.a-just.beta.gouv.fr https://forms-eu1.hsforms.com/ https://calendly.com stonly.com *.stonly.com *.hubspot.com;object-src 'self';base-uri 'self';form-action 'self';upgrade-insecure-requests;default-src 'self';frame-ancestors 'self';script-src-attr 'none'", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 20:56:08 GMT", + "date": "Sun, 14 Jan 2024 20:33:09 GMT", "vary": "Origin, Accept-Encoding", "x-frame-options": "SAMEORIGIN", "x-ratelimit-limit": "1000", - "x-ratelimit-remaining": "996", - "x-ratelimit-reset": "1704661200", - "x-request-id": "8b27394a-95bb-437a-a90e-6d8c3337bf34" + "x-ratelimit-remaining": "997", + "x-ratelimit-reset": "1705264570", + "x-request-id": "c86f6f9c-cdd7-4110-a4ea-2aee737cd7e8" }, "endpoints": [ { @@ -576064,7 +572502,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -576083,7 +572521,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -576101,7 +572541,7 @@ }, { "hostname": "s.stonly.com", - "ip": "3.162.112.5", + "ip": "3.162.112.25", "geoip": { "continent": { "code": "NA", @@ -576121,7 +572561,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -576141,7 +572581,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -576155,7 +572595,7 @@ }, { "hostname": "api.stonly.com", - "ip": "13.37.150.71", + "ip": "15.188.180.145", "geoip": { "city": { "geoname_id": 2988507, @@ -576212,7 +572652,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -576231,7 +572671,9 @@ "en": "Île-de-France", "es": "Isla de Francia", "fr": "Île-de-France", - "pt-BR": "Ilha de França" + "ja": "イル・ド・フランス", + "pt-BR": "Ilha de França", + "zh-CN": "法兰西岛" } }, { @@ -576603,7 +573045,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 20:55:06", + "@generated": "Sun, 14 Jan 2024 20:32:07", "site": [ { "@name": "https://a-just.beta.gouv.fr", @@ -576743,23 +573185,22 @@ }, "nuclei": [ { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "CAA Record", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "caa" ], - "description": "DNS DMARC information was detected.\n", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -576769,17 +573210,89 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "a-just.beta.gouv.fr.", - "matched-at": "_dmarc.a-just.beta.gouv.fr", + "matched-at": "a-just.beta.gouv.fr", + "timestamp": "2024-01-14T20:38:21.114743352Z", + "matcher-status": true + }, + { + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "info": { + "name": "MX Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "mx" + ], + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "reference": [ + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "a-just.beta.gouv.fr.", + "matched-at": "a-just.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "20 mx2.alwaysdata.com.", + "10 mx1.alwaysdata.com." + ], + "timestamp": "2024-01-14T20:38:21.188613925Z", + "matcher-status": true + }, + { + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "info": { + "name": "NS Record Detection", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "ns" + ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "a-just.beta.gouv.fr.", + "matched-at": "a-just.beta.gouv.fr", + "extracted-results": [ + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2024-01-07T21:01:25.815593239Z", + "timestamp": "2024-01-14T20:38:21.263872878Z", "matcher-status": true }, { @@ -576817,98 +573330,27 @@ "extracted-results": [ "\"v=spf1 include:_spf.alwaysdata.com ~all\"" ], - "timestamp": "2024-01-07T21:01:25.818229469Z", + "timestamp": "2024-01-14T20:38:22.108840537Z", "matcher-status": true }, { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", - "info": { - "name": "NS Record Detection", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "ns" - ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "a-just.beta.gouv.fr.", - "matched-at": "a-just.beta.gouv.fr", - "extracted-results": [ - "dns2.alwaysdata.com.", - "dns1.alwaysdata.com." - ], - "timestamp": "2024-01-07T21:01:25.896453548Z", - "matcher-status": true - }, - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "a-just.beta.gouv.fr.", - "matched-at": "a-just.beta.gouv.fr", - "timestamp": "2024-01-07T21:01:25.900323777Z", - "matcher-status": true - }, - { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "MX Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "mx" + "dmarc" ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", + "description": "DNS DMARC information was detected.\n", "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], "severity": "info", "metadata": { @@ -576918,17 +573360,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "a-just.beta.gouv.fr.", - "matched-at": "a-just.beta.gouv.fr", + "matched-at": "_dmarc.a-just.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T21:01:26.737821657Z", + "timestamp": "2024-01-14T20:38:22.260511763Z", "matcher-status": true }, { @@ -576964,8 +573406,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:01:59.860945615Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:38:56.427506388Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -576997,12 +573439,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:09.034736139Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:05.992854754Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -577034,12 +573476,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:09.034782394Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:05.992901272Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -577071,12 +573513,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:09.034799787Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:05.992911451Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -577108,12 +573550,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:09.034815867Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:05.992922742Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -577145,12 +573587,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:09.03482837Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:05.992939634Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -577182,12 +573624,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "permissions-policy", "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:09.034839922Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:05.992952929Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -577219,12 +573661,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:09.034853387Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:05.992967466Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -577256,12 +573698,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:09.034868515Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:05.992981011Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -577293,12 +573735,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:09.034912677Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:05.992993875Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, @@ -577337,8 +573779,8 @@ "type": "http", "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr/", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:31.711970447Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:29.555814564Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: a-just.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr/'", "matcher-status": true }, @@ -577377,11 +573819,11 @@ "host": "https://a-just.beta.gouv.fr", "matched-at": "https://a-just.beta.gouv.fr", "meta": { - "cors_origin": "https://po62ubeta.gouv.fr" + "cors_origin": "https://e66gvbeta.gouv.fr" }, - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:02:36.535198889Z", - "curl-command": "curl -X 'GET' -d '' -H 'Host: a-just.beta.gouv.fr' -H 'Origin: https://po62ubeta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:39:34.471881794Z", + "curl-command": "curl -X 'GET' -d '' -H 'Host: a-just.beta.gouv.fr' -H 'Origin: https://e66gvbeta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://a-just.beta.gouv.fr'", "matcher-status": true }, { @@ -577410,8 +573852,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:08:11.98358442Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:45:10.042371935Z", "matcher-status": true }, { @@ -577440,8 +573882,8 @@ "extracted-results": [ "a-just.beta.gouv.fr" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:08:11.983705422Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:45:10.042513661Z", "matcher-status": true }, { @@ -577471,8 +573913,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:08:13.624545085Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:45:11.520165626Z", "matcher-status": true }, { @@ -577502,8 +573944,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T21:08:13.814251203Z", + "ip": "148.253.96.193", + "timestamp": "2024-01-14T20:45:11.698490947Z", "matcher-status": true } ], @@ -577511,7 +573953,7 @@ { "requestedUrl": "https://a-just.beta.gouv.fr/", "finalUrl": "https://a-just.beta.gouv.fr/", - "fetchTime": "2024-01-07T20:55:20.000Z", + "fetchTime": "2024-01-14T20:32:22.450Z", "runWarnings": [], "categories": { "performance": { @@ -577522,7 +573964,7 @@ "snapshot" ], "id": "performance", - "score": 0.7788444519042969 + "score": 0.7653200149536132 }, "accessibility": { "title": "Accessibility", @@ -577574,53 +574016,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 15128, + "numericValue": 16321, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 7481, - "firstMeaningfulPaint": 7481, - "largestContentfulPaint": 11405, - "interactive": 15128, - "speedIndex": 9733, - "totalBlockingTime": 1139, - "maxPotentialFID": 984, + "firstContentfulPaint": 7686, + "firstMeaningfulPaint": 7686, + "largestContentfulPaint": 11550, + "interactive": 16321, + "speedIndex": 10631, + "totalBlockingTime": 1184, + "maxPotentialFID": 1077, "cumulativeLayoutShift": 0.011005859375000001, "cumulativeLayoutShiftMainFrame": 0.011005859375000001, "totalCumulativeLayoutShift": 0.011005859375000001, "observedTimeOrigin": 0, - "observedTimeOriginTs": 355467368, + "observedTimeOriginTs": 250138952, "observedNavigationStart": 0, - "observedNavigationStartTs": 355467368, - "observedFirstPaint": 578, - "observedFirstPaintTs": 356045317, - "observedFirstContentfulPaint": 1332, - "observedFirstContentfulPaintTs": 356799767, - "observedFirstContentfulPaintAllFrames": 1332, - "observedFirstContentfulPaintAllFramesTs": 356799767, - "observedFirstMeaningfulPaint": 1332, - "observedFirstMeaningfulPaintTs": 356799767, - "observedLargestContentfulPaint": 1449, - "observedLargestContentfulPaintTs": 356916359, - "observedLargestContentfulPaintAllFrames": 1449, - "observedLargestContentfulPaintAllFramesTs": 356916359, - "observedTraceEnd": 4315, - "observedTraceEndTs": 359781884, - "observedLoad": 1700, - "observedLoadTs": 357167204, - "observedDomContentLoaded": 1203, - "observedDomContentLoadedTs": 356669967, + "observedNavigationStartTs": 250138952, + "observedFirstPaint": 841, + "observedFirstPaintTs": 250979994, + "observedFirstContentfulPaint": 1614, + "observedFirstContentfulPaintTs": 251752519, + "observedFirstContentfulPaintAllFrames": 1614, + "observedFirstContentfulPaintAllFramesTs": 251752519, + "observedFirstMeaningfulPaint": 1614, + "observedFirstMeaningfulPaintTs": 251752519, + "observedLargestContentfulPaint": 1725, + "observedLargestContentfulPaintTs": 251863754, + "observedLargestContentfulPaintAllFrames": 1725, + "observedLargestContentfulPaintAllFramesTs": 251863754, + "observedTraceEnd": 4805, + "observedTraceEndTs": 254943646, + "observedLoad": 2040, + "observedLoadTs": 252178693, + "observedDomContentLoaded": 1482, + "observedDomContentLoadedTs": 251620567, "observedCumulativeLayoutShift": 0.011005859375000001, "observedCumulativeLayoutShiftMainFrame": 0.011005859375000001, "observedTotalCumulativeLayoutShift": 0.011005859375000001, - "observedFirstVisualChange": 1335, - "observedFirstVisualChangeTs": 356802368, - "observedLastVisualChange": 1451, - "observedLastVisualChangeTs": 356918368, - "observedSpeedIndex": 1435, - "observedSpeedIndexTs": 356902390 + "observedFirstVisualChange": 1617, + "observedFirstVisualChangeTs": 251755952, + "observedLastVisualChange": 1750, + "observedLastVisualChangeTs": 251888952, + "observedSpeedIndex": 1719, + "observedSpeedIndexTs": 251858259 }, { "lcpInvalidated": false @@ -577638,23 +574080,23 @@ "type": "debugdata", "items": [ { - "numRequests": 31, + "numRequests": 33, "numScripts": 12, "numStylesheets": 1, "numFonts": 3, - "numTasks": 666, - "numTasksOver10ms": 7, - "numTasksOver25ms": 6, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasks": 716, + "numTasksOver10ms": 10, + "numTasksOver25ms": 8, + "numTasksOver50ms": 3, + "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 6.204000000000001, - "throughput": 18038205.42538681, - "maxRtt": 89.833, - "maxServerLatency": 12.852000000000004, - "totalByteWeight": 2208068, - "totalTaskTime": 646.0379999999994, - "mainDocumentTransferSize": 2505 + "rtt": 1.9080000000000013, + "throughput": 17672346.526025683, + "maxRtt": 89.415, + "maxServerLatency": 17.881, + "totalByteWeight": 2278975, + "totalTaskTime": 817.6250000000016, + "mainDocumentTransferSize": 2506 } ] } @@ -577757,9 +574199,9 @@ "testsslGrade": "A", "cookiesGrade": "B", "cookiesCount": 2, - "trackersGrade": "C", - "trackersCount": 9, - "lighthouse_performance": 0.7788444519042969, + "trackersGrade": "F", + "trackersCount": 11, + "lighthouse_performance": 0.7653200149536132, "lighthouse_performanceGrade": "B", "lighthouse_accessibility": 0.71, "lighthouse_accessibilityGrade": "B", @@ -577793,7 +574235,7 @@ "http": { "url": "https://dotations.incubateur.anct.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 01:00:00 GMT", + "end_time": "Sun, 14 Jan 2024 01:03:57 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -577801,16 +574243,16 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=utf-8", - "Date": "Sun, 07 Jan 2024 00:59:59 GMT", + "Date": "Sun, 14 Jan 2024 01:03:56 GMT", "ETag": "\"onywqj55lh1nr\"", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Powered-By": "Next.js", - "X-Request-ID": "2bdc259a-e92b-4ddf-9a5c-c9bf086902d6" + "X-Request-ID": "c4658272-206d-4712-8366-b27013baf704" }, - "scan_id": 46225535, + "scan_id": 46434571, "score": 0, - "start_time": "Sun, 07 Jan 2024 00:59:57 GMT", + "start_time": "Sun, 14 Jan 2024 01:03:54 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 6, @@ -578271,7 +574713,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "043D495D31303935A91F55C67404BE8A67FE" + "finding": "03FF1D90C09B0E5B0B41C9EBB13B2F6AA6C5" }, { "id": "cert_serialNumberLen", @@ -578285,21 +574727,21 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2406E58ECAF5CF9E644D824A9A826E6B4E9CFACD" + "finding": "4011E42E2A5EA2DB447455F5893F1168FB578A14" }, { "id": "cert_fingerprintSHA256", "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "A43197BDC57B9E9F920E8FE239BD50161DB0D6702F3342EC20CDCC12A4872578" + "finding": "8E6540749144A0402F00E6361BAE50DD8A3658D57A80EFD92AA7093E368CFE7B" }, { "id": "cert", "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -578348,21 +574790,21 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "31 >= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2023-11-10 15:42" + "finding": "2024-01-09 15:45" }, { "id": "cert_notAfter", "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "OK", - "finding": "2024-02-08 15:42" + "finding": "2024-04-08 15:45" }, { "id": "cert_extlifeSpan", @@ -578425,7 +574867,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", @@ -578483,6 +574925,48 @@ "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, + { + "id": "intermediate_cert <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, { "id": "intermediate_cert_badOCSP", "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", @@ -578509,7 +574993,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.233.130", "port": "443", "severity": "INFO", - "finding": "1704661290" + "finding": "1705265395" }, { "id": "HSTS", @@ -578682,7 +575166,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A43197BDC57B9E9F920E8FE239BD50161DB0D6702F3342EC20CDCC12A4872578" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8E6540749144A0402F00E6361BAE50DD8A3658D57A80EFD92AA7093E368CFE7B" }, { "id": "LOGJAM", @@ -579330,7 +575814,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "043D495D31303935A91F55C67404BE8A67FE" + "finding": "03FF1D90C09B0E5B0B41C9EBB13B2F6AA6C5" }, { "id": "cert_serialNumberLen", @@ -579344,21 +575828,21 @@ "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2406E58ECAF5CF9E644D824A9A826E6B4E9CFACD" + "finding": "4011E42E2A5EA2DB447455F5893F1168FB578A14" }, { "id": "cert_fingerprintSHA256", "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "A43197BDC57B9E9F920E8FE239BD50161DB0D6702F3342EC20CDCC12A4872578" + "finding": "8E6540749144A0402F00E6361BAE50DD8A3658D57A80EFD92AA7093E368CFE7B" }, { "id": "cert", "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -579407,21 +575891,21 @@ "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "31 >= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2023-11-10 15:42" + "finding": "2024-01-09 15:45" }, { "id": "cert_notAfter", "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "OK", - "finding": "2024-02-08 15:42" + "finding": "2024-04-08 15:45" }, { "id": "cert_extlifeSpan", @@ -579484,7 +575968,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", @@ -579542,6 +576026,48 @@ "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, + { + "id": "intermediate_cert <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, { "id": "intermediate_cert_badOCSP", "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", @@ -579568,7 +576094,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/148.253.75.120", "port": "443", "severity": "INFO", - "finding": "1704661344" + "finding": "1705265495" }, { "id": "HSTS", @@ -579741,7 +576267,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A43197BDC57B9E9F920E8FE239BD50161DB0D6702F3342EC20CDCC12A4872578" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8E6540749144A0402F00E6361BAE50DD8A3658D57A80EFD92AA7093E368CFE7B" }, { "id": "LOGJAM", @@ -580389,7 +576915,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "043D495D31303935A91F55C67404BE8A67FE" + "finding": "03FF1D90C09B0E5B0B41C9EBB13B2F6AA6C5" }, { "id": "cert_serialNumberLen", @@ -580403,21 +576929,21 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2406E58ECAF5CF9E644D824A9A826E6B4E9CFACD" + "finding": "4011E42E2A5EA2DB447455F5893F1168FB578A14" }, { "id": "cert_fingerprintSHA256", "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "A43197BDC57B9E9F920E8FE239BD50161DB0D6702F3342EC20CDCC12A4872578" + "finding": "8E6540749144A0402F00E6361BAE50DD8A3658D57A80EFD92AA7093E368CFE7B" }, { "id": "cert", "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\nMIIFDjCCA/agAwIBAgISBD1JXTEwOTWpH1XGdAS+imf+MA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMTAxNTQyMTFaFw0yNDAyMDgxNTQyMTBaMCwxKjAoBgNVBAMTIWRvdGF0aW9ucy5pbmN1YmF0ZXVyLmFuY3QuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJrHPvIrrU+qz90nd8fAemwiacZQMncGB676nDozuOWBz7vtoNPlv8axmFeGoHtlJ34mmrPKp4txp8reK9dSuJH2r/2OgTa/18374Skt/q54EFqANiMDRUWPuAFE5+vk34qh8wlNG7MiiwH5buMxPzE45WBtty0+aF6cuNdaB12nLdbp0whA25Oz86q2fut+/c1q80e1BWCnggAEe5dro8IseCq2KTieZC5Ys3Uh2TZLnh6vwI+E1U99wBix7Sr4keIu05ByakdWAkBVepVob3eG42dXny3qhV/JDtAz1eBL+Q+OwO2Zi9iTePLxhslc0tBASQlf/np0hQRDMtv1ZIsCAwEAAaOCAiIwggIeMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUdZzR6+X+KJTy9CgKN6tPjOrQAS4wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wLAYDVR0RBCUwI4IhZG90YXRpb25zLmluY3ViYXRldXIuYW5jdC5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGLuhzM8wAABAMARjBEAiAjG2uIFGio9n3huvGVklXTypgia3gOEY2xKvj43LMDggIgWKrDUGNdZj55FJxbB1OyTVJxictQU81NCoWneBHkAk8AdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYu6HMz7AAAEAwBHMEUCIQDMD+pFYKbAG6OsuXZy/3P/WXfB4v9fAC+OBOFhyyh5bAIgXRImngxHmKaakU7XcvOn8ZCLrPBeAbGm3ix/37a3Bo0wDQYJKoZIhvcNAQELBQADggEBAAU5h9kF0JwoXRwsLSuh6Nh7WjGWNzfgTCKgmLAzXvesAn+iN2slxx885qW9SH77fZXN0yD/2+QCbHHS7AqNEx2t9Fyd0IrYnrZfVLwsLzYWe77MI8XNcm+Y7bDXhNpWBxl0jHOEm0zGps1L6Iieu6K+V55NvN32JV1vCO0bdOqu0dZnS6Vp3S9Oe1RoiKF+ObZmDWDwMLmaM8VT+VJnEJ9NST8jN/ftt2Tq5ifSZg5TVYmlMmBgi5gou2MhWo8lteL4cCi54mPhwh6aEpIw6XBR/o4Ij5n1gqz+pyNBnyiQkmxS1MT9jlQ1qAkoI0MSeWlqfjScwVNfb+7TIQ2+l0c=\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -580466,21 +576992,21 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "31 >= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2023-11-10 15:42" + "finding": "2024-01-09 15:45" }, { "id": "cert_notAfter", "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "OK", - "finding": "2024-02-08 15:42" + "finding": "2024-04-08 15:45" }, { "id": "cert_extlifeSpan", @@ -580543,7 +577069,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", @@ -580601,6 +577127,48 @@ "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, + { + "id": "intermediate_cert <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, { "id": "intermediate_cert_badOCSP", "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", @@ -580627,7 +577195,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/109.232.236.90", "port": "443", "severity": "INFO", - "finding": "1704661398" + "finding": "1705265595" }, { "id": "HSTS", @@ -580800,7 +577368,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A43197BDC57B9E9F920E8FE239BD50161DB0D6702F3342EC20CDCC12A4872578" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8E6540749144A0402F00E6361BAE50DD8A3658D57A80EFD92AA7093E368CFE7B" }, { "id": "LOGJAM", @@ -581448,7 +578016,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "043D495D31303935A91F55C67404BE8A67FE" + "finding": "03FF1D90C09B0E5B0B41C9EBB13B2F6AA6C5" }, { "id": "cert_serialNumberLen", @@ -581462,21 +578030,21 @@ "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2406E58ECAF5CF9E644D824A9A826E6B4E9CFACD" + "finding": "4011E42E2A5EA2DB447455F5893F1168FB578A14" }, { "id": "cert_fingerprintSHA256", "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "A43197BDC57B9E9F920E8FE239BD50161DB0D6702F3342EC20CDCC12A4872578" + "finding": "8E6540749144A0402F00E6361BAE50DD8A3658D57A80EFD92AA7093E368CFE7B" }, { "id": "cert", "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + "finding": "-----BEGIN CERTIFICATE-----\nMIIFDzCCA/egAwIBAgISA/8dkMCbDlsLQcnrsTsvaqbFMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yNDAxMDkxNTQ1MTFaFw0yNDA0MDgxNTQ1MTBaMCwxKjAoBgNVBAMTIWRvdGF0aW9ucy5pbmN1YmF0ZXVyLmFuY3QuZ291di5mcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJwVe+USua4PDLqhsDU5Hc3DiqVd/G7TntAyvfeX1sQViUg+BQfQTTncLM24mPTR7caoB+D/oIysolpE+j3gdNzwnz2lPJmxM/Z2nvh1bN+fsd8prBwhCdC58s/ebZew3eSTB6uHI8Wu4B3ch7lUHs+TfdUJanEwIjOqc2sZKFPQIBkzVu/FqdZ6h7SwGMFwWiqEKNoESC0+H/QsTx9OOmjq45xY4VWlTnlfQ8ju6kiNrUq5xcUFC0RnpDcV4fbZAg8FZgY5gggh48o3czLAkDOi1WCjKogJvRt1Pz0kAX/zJF+Nc7AV3dUYAFyuW3ZX3dTlgNGQQalLj9oUdBlQLSUCAwEAAaOCAiMwggIfMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUfAK7Jfe3I7o3hvFvCf+iec/ufD8wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wLAYDVR0RBCUwI4IhZG90YXRpb25zLmluY3ViYXRldXIuYW5jdC5nb3V2LmZyMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGM7x0d+QAABAMASDBGAiEA6ZsxnceIm0yVo0AyaQnYCfwKxqA+TUiMpDBkoLpFuPECIQDEzjwoSzl9cLA821c/68grECqJbmRYNFWTq6fL/yK5hAB1ACnQOhu2dKpxHNMDW2VXwU+Kp4tP6DiUSeykU/lEvSRoAAABjO8dHqoAAAQDAEYwRAIgWqW+BXQXTAE/oS4Rja4fIt0wh9S2ph2l/aOA2RJFa30CIFgcxUknG547U2ItlIMy5HDkrqg+Z6kdD8IvaTgVIEH3MA0GCSqGSIb3DQEBCwUAA4IBAQCajE+Ei5ApyAj2uPDxCWAKUPsHSQfMIsfnJRqRA3OMja4ZfaXd3b1RCmUxKQ4zmd3AQH/3qiYJ7UCLdrGahCqtyILSL5U8WRJ9y/sl8xuRopUY9SA4EnEC/IaGz7rSu0NnTtwYwKbAvHl5j7MdXAU80Sp/mmbqgnBj2XNmYbBU6ARo2chbqNfy50f6Rzy9l+LiIsdm5IxayBMhQqghCGucUaYUUCmlSOQHKikmquXJrdwjPIMpFJfW2VTIxDtNqat3r//G5N4Qlu0txX1iwyXWZsnFd0lGfloTXCbD79Kr8i6WbGWpqBIuO9yf2xtX8DZYB8FesPvEMot9p70n1EEX\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", @@ -581525,21 +578093,21 @@ "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "31 >= 30 days" + "finding": "84 >= 30 days" }, { "id": "cert_notBefore", "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2023-11-10 15:42" + "finding": "2024-01-09 15:45" }, { "id": "cert_notAfter", "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "OK", - "finding": "2024-02-08 15:42" + "finding": "2024-04-08 15:45" }, { "id": "cert_extlifeSpan", @@ -581602,7 +578170,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "2" + "finding": "3" }, { "id": "certs_list_ordering_problem", @@ -581660,6 +578228,48 @@ "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, + { + "id": "intermediate_cert <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, { "id": "intermediate_cert_badOCSP", "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", @@ -581686,7 +578296,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "1704661454" + "finding": "1705265696" }, { "id": "HSTS", @@ -581859,7 +578469,7 @@ "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=A43197BDC57B9E9F920E8FE239BD50161DB0D6702F3342EC20CDCC12A4872578" + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=8E6540749144A0402F00E6361BAE50DD8A3658D57A80EFD92AA7093E368CFE7B" }, { "id": "LOGJAM", @@ -582242,7 +578852,7 @@ "ip": "dotations.incubateur.anct.gouv.fr/5.104.101.30", "port": "443", "severity": "INFO", - "finding": "220" + "finding": "408" } ], "thirdparties": { @@ -582284,16 +578894,16 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 21:00:39 GMT", + "date": "Sun, 14 Jan 2024 20:48:25 GMT", "etag": "\"onywqj55lh1nr\"", "vary": "Accept-Encoding", "x-powered-by": "Next.js", - "x-request-id": "c4c3ba79-ce69-4543-94ee-2f6c28791b8d" + "x-request-id": "3b6ab053-40c1-4e44-8bfb-58fbd60b7b59" }, "endpoints": [ { "hostname": "dotations.incubateur.anct.gouv.fr", - "ip": "148.253.75.120", + "ip": "109.232.236.90", "geoip": { "continent": { "code": "EU", @@ -582349,15 +578959,18 @@ }, { "hostname": "cdn.jsdelivr.net", - "ip": "146.75.37.229", + "ip": "151.101.41.229", "geoip": { "city": { - "geoname_id": 4781530, + "geoname_id": 5392171, "names": { - "de": "Reston", - "en": "Reston", - "ja": "レストン", - "ru": "Рестон" + "de": "San José", + "en": "San Jose", + "es": "San José", + "fr": "San José", + "ja": "サンノゼ", + "pt-BR": "San José", + "ru": "Сан-Хосе" } }, "continent": { @@ -582378,7 +578991,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -582390,19 +579003,19 @@ }, "location": { "accuracy_radius": 20, - "latitude": 38.9609, - "longitude": -77.3429, - "metro_code": 511, - "time_zone": "America/New_York" + "latitude": 37.1835, + "longitude": -121.7714, + "metro_code": 807, + "time_zone": "America/Los_Angeles" }, "postal": { - "code": "20190" + "code": "95141" }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -582414,15 +579027,17 @@ }, "subdivisions": [ { - "geoname_id": 6254928, - "iso_code": "VA", + "geoname_id": 5332921, + "iso_code": "CA", "names": { - "en": "Virginia", - "fr": "Virginie", - "ja": "バージニア州", - "pt-BR": "Virgínia", - "ru": "Вирджиния", - "zh-CN": "弗吉尼亚州" + "de": "Kalifornien", + "en": "California", + "es": "California", + "fr": "Californie", + "ja": "カリフォルニア州", + "pt-BR": "Califórnia", + "ru": "Калифорния", + "zh-CN": "加州" } } ] @@ -582430,7 +579045,7 @@ }, { "hostname": "dotations-locales-back.osc-fr1.scalingo.io", - "ip": "109.232.233.130", + "ip": "148.253.75.120", "geoip": { "continent": { "code": "EU", @@ -582700,7 +579315,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 20:59:59", + "@generated": "Sun, 14 Jan 2024 20:47:44", "site": [ { "@name": "https://dotations.incubateur.anct.gouv.fr", @@ -582847,73 +579462,73 @@ }, "nuclei": [ { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS SaaS Service Detection", + "name": "CAA Record", "author": [ - "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "service" + "caa" ], - "description": "A CNAME DNS record was discovered", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] } }, "type": "dns", "host": "dotations.incubateur.anct.gouv.fr.", "matched-at": "dotations.incubateur.anct.gouv.fr", - "extracted-results": [ - "dotations-locales-app.osc-fr1.scalingo.io." - ], - "timestamp": "2024-01-07T21:05:37.840022899Z", + "timestamp": "2024-01-14T20:56:50.373973677Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", "info": { - "name": "CAA Record", + "name": "DNS SaaS Service Detection", "author": [ + "noah @thesubtlety", "pdteam" ], "tags": [ "dns", - "caa" + "service" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A CNAME DNS record was discovered", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" ], "severity": "info", "metadata": { "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] } }, "type": "dns", "host": "dotations.incubateur.anct.gouv.fr.", "matched-at": "dotations.incubateur.anct.gouv.fr", - "timestamp": "2024-01-07T21:05:38.06696291Z", + "extracted-results": [ + "dotations-locales-app.osc-fr1.scalingo.io." + ], + "timestamp": "2024-01-14T20:56:50.578674172Z", "matcher-status": true }, { @@ -582942,8 +579557,8 @@ "GET", "HEAD" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:05:44.751852495Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:57:01.681759978Z", "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -582965,12 +579580,12 @@ "max-request": 1 } }, - "matcher-name": "next.js", + "matcher-name": "jsdelivr", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:12.140721695Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:57:47.285708275Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -582992,12 +579607,12 @@ "max-request": 1 } }, - "matcher-name": "jsdelivr", + "matcher-name": "next.js", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:12.140802475Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:57:47.285748871Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583029,12 +579644,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.521317298Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.10801767Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583066,12 +579681,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.521363393Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.108066742Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583103,12 +579718,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.521400773Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.108091959Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583140,12 +579755,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.521416432Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.108112397Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583177,12 +579792,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "clear-site-data", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.521434045Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.108134458Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583214,12 +579829,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.52144749Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.108155137Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583251,12 +579866,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.521460704Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.108166528Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583288,12 +579903,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.521473468Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.108177579Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583325,12 +579940,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.5214855Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.10818925Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583362,12 +579977,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.521497903Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.108200351Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583399,12 +580014,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:21.521510497Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:03.108211191Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr'", "matcher-status": true }, @@ -583431,8 +580046,8 @@ "type": "http", "host": "https://dotations.incubateur.anct.gouv.fr", "matched-at": "https://dotations.incubateur.anct.gouv.fr/robots.txt", - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:06:31.118392003Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T20:58:20.09862355Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://dotations.incubateur.anct.gouv.fr/robots.txt'", "matcher-status": true }, @@ -583462,8 +580077,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:12:24.244489349Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T21:04:35.641341557Z", "matcher-status": true }, { @@ -583492,8 +580107,8 @@ "extracted-results": [ "dotations.incubateur.anct.gouv.fr" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:12:24.244603652Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T21:04:35.641481168Z", "matcher-status": true }, { @@ -583523,8 +580138,8 @@ "extracted-results": [ "tls12" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:12:25.342505937Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T21:04:37.913436891Z", "matcher-status": true }, { @@ -583554,8 +580169,8 @@ "extracted-results": [ "tls13" ], - "ip": "109.232.236.90", - "timestamp": "2024-01-07T21:12:25.536111889Z", + "ip": "148.253.75.120", + "timestamp": "2024-01-14T21:04:38.226796223Z", "matcher-status": true } ], @@ -583563,7 +580178,7 @@ { "requestedUrl": "https://dotations.incubateur.anct.gouv.fr/", "finalUrl": "https://dotations.incubateur.anct.gouv.fr/", - "fetchTime": "2024-01-07T21:00:12.893Z", + "fetchTime": "2024-01-14T20:47:58.724Z", "runWarnings": [], "categories": { "performance": { @@ -583626,53 +580241,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 6050, + "numericValue": 6615, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1925, - "firstMeaningfulPaint": 2745, - "largestContentfulPaint": 3751, - "interactive": 6050, - "speedIndex": 3705, - "totalBlockingTime": 313, - "maxPotentialFID": 242, - "cumulativeLayoutShift": 0.00773581200478504, - "cumulativeLayoutShiftMainFrame": 0.00773581200478504, - "totalCumulativeLayoutShift": 0.00773581200478504, + "firstContentfulPaint": 2106, + "firstMeaningfulPaint": 2897, + "largestContentfulPaint": 4024, + "interactive": 6615, + "speedIndex": 4514, + "totalBlockingTime": 403, + "maxPotentialFID": 234, + "cumulativeLayoutShift": 0.002487818400065104, + "cumulativeLayoutShiftMainFrame": 0.002487818400065104, + "totalCumulativeLayoutShift": 0.002487818400065104, "observedTimeOrigin": 0, - "observedTimeOriginTs": 305463849, + "observedTimeOriginTs": 285201187, "observedNavigationStart": 0, - "observedNavigationStartTs": 305463849, - "observedFirstPaint": 852, - "observedFirstPaintTs": 306315364, - "observedFirstContentfulPaint": 852, - "observedFirstContentfulPaintTs": 306315364, - "observedFirstContentfulPaintAllFrames": 852, - "observedFirstContentfulPaintAllFramesTs": 306315364, - "observedFirstMeaningfulPaint": 852, - "observedFirstMeaningfulPaintTs": 306315364, - "observedLargestContentfulPaint": 852, - "observedLargestContentfulPaintTs": 306315364, - "observedLargestContentfulPaintAllFrames": 852, - "observedLargestContentfulPaintAllFramesTs": 306315364, - "observedTraceEnd": 3500, - "observedTraceEndTs": 308963774, - "observedLoad": 784, - "observedLoadTs": 306247483, - "observedDomContentLoaded": 777, - "observedDomContentLoadedTs": 306240961, - "observedCumulativeLayoutShift": 0.00773581200478504, - "observedCumulativeLayoutShiftMainFrame": 0.00773581200478504, - "observedTotalCumulativeLayoutShift": 0.00773581200478504, - "observedFirstVisualChange": 857, - "observedFirstVisualChangeTs": 306320849, - "observedLastVisualChange": 1573, - "observedLastVisualChangeTs": 307036849, - "observedSpeedIndex": 880, - "observedSpeedIndexTs": 306344246 + "observedNavigationStartTs": 285201187, + "observedFirstPaint": 1355, + "observedFirstPaintTs": 286556266, + "observedFirstContentfulPaint": 1355, + "observedFirstContentfulPaintTs": 286556266, + "observedFirstContentfulPaintAllFrames": 1355, + "observedFirstContentfulPaintAllFramesTs": 286556266, + "observedFirstMeaningfulPaint": 1355, + "observedFirstMeaningfulPaintTs": 286556266, + "observedLargestContentfulPaint": 1355, + "observedLargestContentfulPaintTs": 286556266, + "observedLargestContentfulPaintAllFrames": 1355, + "observedLargestContentfulPaintAllFramesTs": 286556266, + "observedTraceEnd": 4286, + "observedTraceEndTs": 289486698, + "observedLoad": 1298, + "observedLoadTs": 286499267, + "observedDomContentLoaded": 1293, + "observedDomContentLoadedTs": 286494332, + "observedCumulativeLayoutShift": 0.002487818400065104, + "observedCumulativeLayoutShiftMainFrame": 0.002487818400065104, + "observedTotalCumulativeLayoutShift": 0.002487818400065104, + "observedFirstVisualChange": 1354, + "observedFirstVisualChangeTs": 286555187, + "observedLastVisualChange": 2137, + "observedLastVisualChangeTs": 287338187, + "observedSpeedIndex": 1388, + "observedSpeedIndexTs": 286589036 }, { "lcpInvalidated": false @@ -583694,18 +580309,18 @@ "numScripts": 8, "numStylesheets": 2, "numFonts": 3, - "numTasks": 529, - "numTasksOver10ms": 4, + "numTasks": 521, + "numTasksOver10ms": 3, "numTasksOver25ms": 3, "numTasksOver50ms": 2, "numTasksOver100ms": 0, "numTasksOver500ms": 0, "rtt": 0, - "throughput": 11608990.955089908, - "maxRtt": 88.758, - "maxServerLatency": 5.910000000000004, - "totalByteWeight": 613327, - "totalTaskTime": 229.86599999999856, + "throughput": 6467305.983509143, + "maxRtt": 151.588, + "maxServerLatency": 8.090000000000003, + "totalByteWeight": 613338, + "totalTaskTime": 240.71999999999935, "mainDocumentTransferSize": 1146 } ] @@ -583788,8 +580403,8 @@ "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", - "testsslExpireSoon": true, - "testsslExpireDate": "2024-02-08T15:42:00.000Z", + "testsslExpireSoon": false, + "testsslExpireDate": "2024-04-08T15:45:00.000Z", "testsslGrade": "A", "cookiesGrade": "A", "cookiesCount": 0, @@ -583829,7 +580444,7 @@ "http": { "url": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 21:15:57 GMT", + "end_time": "Sun, 14 Jan 2024 20:52:10 GMT", "grade": "C+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -583837,22 +580452,22 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 21:15:56 GMT", + "Date": "Sun, 14 Jan 2024 20:52:09 GMT", "Strict-Transport-Security": "max-age=31536000, max-age=63072000; includeSubDomains; preload", "Transfer-Encoding": "chunked", - "X-Request-ID": "f0eb8f3c-9d05-4fc3-b247-8d79bbaec178", + "X-Request-ID": "050f77a1-23b8-4d4e-8210-850db31fd103", "access-control-allow-origin": "*", "cache-control": "max-age 1800", - "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-YYZEpn6sV17gv5lXSWO2rw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", - "etag": "W/\"14coog0\"", - "link": "<./_app/immutable/entry/start.a1a3c6cf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.0703f560.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.cda357de.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.8faa0dda.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.daf51d68.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.73b717f1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.f039b7f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.bf0edadd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.84fdf51b.js>; rel=\"modulepreload\"; nopush", + "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-5yi3Y4OaXGm1b7trsSJikQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", + "etag": "W/\"1hv846r\"", + "link": "<./_app/immutable/entry/start.ac17f7b2.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.0703f560.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.960e7d0f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.8faa0dda.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.5bf2e444.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.3ae5b4cb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.0ffe96cf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.bf0edadd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.376583ea.js>; rel=\"modulepreload\"; nopush", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-sveltekit-page": "true" }, - "scan_id": 46238621, + "scan_id": 46508110, "score": 60, - "start_time": "Sun, 07 Jan 2024 21:15:53 GMT", + "start_time": "Sun, 14 Jan 2024 20:52:07 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -583865,15 +580480,15 @@ "output": { "data": { "connect-src": [ + "wss://client.relay.crisp.chat/w/b1/", "wss://stream.relay.crisp.chat", + "https://storage.crisp.chat", + "https://geo.api.gouv.fr", "'self'", "https://sentry.incubateur.net", - "https://geo.api.gouv.fr", - "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io", "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "https://storage.crisp.chat", - "https://client.crisp.chat/", - "wss://client.relay.crisp.chat/w/b1/" + "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io", + "https://client.crisp.chat/" ], "default-src": [ "'self'" @@ -583883,15 +580498,15 @@ "'self'" ], "frame-src": [ - "https://game.crisp.chat", - "'self'" + "'self'", + "https://game.crisp.chat" ], "img-src": [ - "data:", + "https://client.crisp.chat", "https://image.crisp.chat", - "'self'", "https://storage.crisp.chat", - "https://client.crisp.chat" + "'self'", + "data:" ], "report-to": [ "'csp-endpoint'" @@ -583900,14 +580515,14 @@ "https://sentry.incubateur.net" ], "script-src": [ - "https://settings.crisp.chat", - "'nonce-yyzepn6sv17gv5lxswo2rw=='", + "https://client.crisp.chat", + "'unsafe-eval'", + "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io", "'self'", + "https://settings.crisp.chat", "https://sentry.incubateur.net", "'sha256-+x7z1kw2vcl9pendybp0fyl6f0hzek43abp/14cwq+u='", - "'unsafe-eval'", - "https://matomo-datasubvention.osc-secnum-fr1.scalingo.io", - "https://client.crisp.chat" + "'nonce-5yi3y4oaxgm1b7trssjikq=='" ], "style-src": [ "https://client.crisp.chat", @@ -584112,77 +580727,77 @@ "testssl": [ { "id": "service", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -584190,7 +580805,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -584198,7 +580813,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -584206,7 +580821,7 @@ }, { "id": "cipherlist_LOW", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -584214,7 +580829,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -584222,7 +580837,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -584230,497 +580845,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704662230" + "finding": "1705265637" }, { "id": "HSTS_multiple", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-EGr68I9nWO64b8dNNO820Q=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-A6/BjxtWCkVBvUs/CWWAQg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -584728,7 +581343,7 @@ }, { "id": "heartbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -584737,7 +581352,7 @@ }, { "id": "CCS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -584746,7 +581361,7 @@ }, { "id": "ticketbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -584755,7 +581370,7 @@ }, { "id": "ROBOT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -584764,7 +581379,7 @@ }, { "id": "secure_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -584772,7 +581387,7 @@ }, { "id": "secure_client_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -584781,7 +581396,7 @@ }, { "id": "CRIME_TLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -584790,7 +581405,7 @@ }, { "id": "BREACH", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -584799,7 +581414,7 @@ }, { "id": "POODLE_SSL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -584808,14 +581423,14 @@ }, { "id": "fallback_SCSV", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -584824,7 +581439,7 @@ }, { "id": "FREAK", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -584833,7 +581448,7 @@ }, { "id": "DROWN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -584842,7 +581457,7 @@ }, { "id": "DROWN_hint", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -584851,7 +581466,7 @@ }, { "id": "LOGJAM", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -584860,7 +581475,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -584869,7 +581484,7 @@ }, { "id": "BEAST", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -584878,7 +581493,7 @@ }, { "id": "LUCKY13", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -584887,7 +581502,7 @@ }, { "id": "winshock", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -584896,7 +581511,7 @@ }, { "id": "RC4", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -584905,315 +581520,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" @@ -585572,7 +582187,7 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "371 >= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", @@ -585733,7 +582348,7 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704662283" + "finding": "1705265733" }, { "id": "HSTS_multiple", @@ -585810,7 +582425,7 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-liB/CZoTVNXtUGu17zSjPQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-0iOaxVEg2jT+QbK0eP9wIQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", @@ -586328,77 +582943,77 @@ }, { "id": "service", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -586406,7 +583021,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -586414,7 +583029,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -586422,7 +583037,7 @@ }, { "id": "cipherlist_LOW", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -586430,7 +583045,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -586438,7 +583053,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -586446,497 +583061,497 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704662337" + "finding": "1705265827" }, { "id": "HSTS_multiple", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "MEDIUM", "finding": "Multiple HSTS headers. Using first header: max-age=31536000" }, { "id": "HSTS_time", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-9WFVzEsgQlzR95arpdxWjg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-2yN1ruPiLKdt2JAhjZJQ0g=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -586944,7 +583559,7 @@ }, { "id": "heartbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -586953,7 +583568,7 @@ }, { "id": "CCS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -586962,7 +583577,7 @@ }, { "id": "ticketbleed", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -586971,7 +583586,7 @@ }, { "id": "ROBOT", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -586980,7 +583595,7 @@ }, { "id": "secure_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -586988,7 +583603,7 @@ }, { "id": "secure_client_renego", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -586997,7 +583612,7 @@ }, { "id": "CRIME_TLS", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -587006,7 +583621,7 @@ }, { "id": "BREACH", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -587015,7 +583630,7 @@ }, { "id": "POODLE_SSL", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -587024,14 +583639,14 @@ }, { "id": "fallback_SCSV", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -587040,7 +583655,7 @@ }, { "id": "FREAK", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -587049,7 +583664,7 @@ }, { "id": "DROWN", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -587058,7 +583673,7 @@ }, { "id": "DROWN_hint", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -587067,7 +583682,7 @@ }, { "id": "LOGJAM", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -587076,7 +583691,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -587085,7 +583700,7 @@ }, { "id": "BEAST", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -587094,7 +583709,7 @@ }, { "id": "LUCKY13", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -587103,7 +583718,7 @@ }, { "id": "winshock", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -587112,7 +583727,7 @@ }, { "id": "RC4", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -587121,315 +583736,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" @@ -587788,7 +584403,7 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "371 >= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", @@ -587949,7 +584564,7 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704662391" + "finding": "1705265922" }, { "id": "HSTS_multiple", @@ -588026,7 +584641,7 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", - "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-CVn5vh4A9oqwzILMlH2CJg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" + "finding": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-wviipqq/m01CaULpOWgHQQ=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'" }, { "id": "Access-Control-Allow-Origin", @@ -588547,7 +585162,7 @@ "ip": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "216" + "finding": "384" } ], "thirdparties": { @@ -588558,15 +585173,15 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-21-16" + "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-20-52" }, { "type": "unknown", @@ -588586,7 +585201,7 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/en.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/en.js?e0efffc" }, { "type": "unknown", @@ -588594,15 +585209,15 @@ }, { "type": "unknown", - "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2Fa76805d99ddc4800%2Fmoipro_16ad6dc.png&width=60&height=60&1704527293195" + "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2Fdf82169218f89000%2F1555594446856_1fvlg5p.jpeg&width=60&height=60&1704527293195" }, { "type": "unknown", - "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2F647c81e2dba70400%2Fidmi_qkr60n.png&width=60&height=60&1704527293195" + "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2F86a032f82d04c000%2F1613422099292_1ak69j0.jpg&width=60&height=60&1704527293195" }, { "type": "unknown", - "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2Fdf82169218f89000%2F1555594446856_1fvlg5p.jpeg&width=60&height=60&1704527293195" + "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2Fa76805d99ddc4800%2Fmoipro_16ad6dc.png&width=60&height=60&1704527293195" }, { "type": "unknown", @@ -588610,19 +585225,19 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?e0efffc" } ], "cookies": [], @@ -588630,15 +585245,15 @@ "access-control-allow-origin": "*", "cache-control": "max-age 1800", "content-encoding": "gzip", - "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-cus60rI9QCmYhSIgtkt2Sg=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", + "content-security-policy": "default-src 'self'; frame-src 'self' https://game.crisp.chat; worker-src blob:; connect-src 'self' https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io https://client.crisp.chat/ wss://client.relay.crisp.chat/w/b1/ https://storage.crisp.chat wss://stream.relay.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://geo.api.gouv.fr https://sentry.incubateur.net; font-src 'self' https://client.crisp.chat; img-src 'self' data: https://image.crisp.chat https://client.crisp.chat https://storage.crisp.chat; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://client.crisp.chat https://settings.crisp.chat https://matomo-datasubvention.osc-secnum-fr1.scalingo.io https://sentry.incubateur.net 'sha256-+X7Z1KW2Vcl9pendYbp0FYL6F0HZek43aBP/14cwq+U=' 'nonce-0pQ8u+r4IqyGKsJexpdxsw=='; style-src 'self' https://client.crisp.chat 'unsafe-inline'; report-uri https://sentry.incubateur.net; report-to 'csp-endpoint'", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 21:16:29 GMT", - "etag": "W/\"dzocfy\"", - "link": "<./_app/immutable/entry/start.a1a3c6cf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.0703f560.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.cda357de.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.8faa0dda.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.daf51d68.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.73b717f1.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.f039b7f0.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.bf0edadd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.84fdf51b.js>; rel=\"modulepreload\"; nopush", + "date": "Sun, 14 Jan 2024 20:52:42 GMT", + "etag": "W/\"191mxjp\"", + "link": "<./_app/immutable/entry/start.ac17f7b2.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/scheduler.0703f560.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/singletons.960e7d0f.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.8faa0dda.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/paths.5bf2e444.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/entry/app.3ae5b4cb.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/hasTracingEnabled.14e4e196.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/stores.0ffe96cf.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/public.bf0edadd.js>; rel=\"modulepreload\"; nopush, <./_app/immutable/chunks/index.376583ea.js>; rel=\"modulepreload\"; nopush", "strict-transport-security": "max-age=31536000\nmax-age=63072000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", - "x-request-id": "cd222da0-9306-4223-ba5f-281d121b68e2", + "x-request-id": "e5077a15-9f8f-471a-9f38-22cb81509352", "x-sveltekit-page": "true" }, "endpoints": [ @@ -588700,47 +585315,13 @@ }, { "hostname": "client.crisp.chat", - "ip": "172.64.153.75", + "ip": "104.18.34.181", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -588808,7 +585389,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -588844,13 +585425,47 @@ }, { "hostname": "image.crisp.chat", - "ip": "104.18.34.181", + "ip": "172.64.153.75", "geoip": { + "continent": { + "code": "NA", + "geoname_id": 6255149, + "names": { + "de": "Nordamerika", + "en": "North America", + "es": "Norteamérica", + "fr": "Amérique du Nord", + "ja": "北アメリカ", + "pt-BR": "América do Norte", + "ru": "Северная Америка", + "zh-CN": "北美洲" + } + }, + "country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + }, + "location": { + "accuracy_radius": 1000, + "latitude": 37.751, + "longitude": -97.822, + "time_zone": "America/Chicago" + }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -589018,7 +585633,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 21:15:28", + "@generated": "Sun, 14 Jan 2024 20:51:41", "site": [ { "@name": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", @@ -589163,608 +585778,12 @@ } ] }, - "nuclei": [ - { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io.", - "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "timestamp": "2024-01-07T21:21:13.866885385Z", - "matcher-status": true - }, - { - "template": "dns/dns-saas-service-detection.yaml", - "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", - "template-id": "dns-saas-service-detection", - "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", - "info": { - "name": "DNS SaaS Service Detection", - "author": [ - "noah @thesubtlety", - "pdteam" - ], - "tags": [ - "dns", - "service" - ], - "description": "A CNAME DNS record was discovered", - "reference": [ - "https://ns1.com/resources/cname", - "https://www.theregister.com/2021/02/24/dns_cname_tracking/", - "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "dns", - "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io.", - "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "extracted-results": [ - "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." - ], - "timestamp": "2024-01-07T21:21:13.868008581Z", - "matcher-status": true - }, - { - "template": "http/miscellaneous/options-method.yaml", - "template-url": "https://templates.nuclei.sh/public/options-method", - "template-id": "options-method", - "template-path": "/home/runner/nuclei-templates/http/miscellaneous/options-method.yaml", - "info": { - "name": "Allowed Options Method", - "author": [ - "pdteam" - ], - "tags": [ - "misc", - "generic" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "extracted-results": [ - "GET, HEAD, OPTIONS" - ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:20.603010677Z", - "curl-command": "curl -X 'OPTIONS' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/exposures/tokens/generic/credentials-disclosure.yaml", - "template-url": "https://templates.nuclei.sh/public/credentials-disclosure", - "template-id": "credentials-disclosure", - "template-path": "/home/runner/nuclei-templates/http/exposures/tokens/generic/credentials-disclosure.yaml", - "info": { - "name": "Credentials Disclosure Check", - "author": [ - "sy3omda", - "forgedhallpass", - "geeknik" - ], - "tags": [ - "exposure", - "token", - "key", - "api", - "secret", - "password", - "generic" - ], - "description": "Look for keys/tokens/passwords in HTTP responses, exposed keys/tokens/secrets requires manual verification for impact evaluation.", - "severity": "unknown", - "metadata": { - "max-request": 1 - } - }, - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "extracted-results": [ - "\"SENTRY_AUTH_TOKEN\":\"8f22800536c04e71addb3c4040722e59b7338166c3ad49ba982cc58260bcecda\"", - "\"NODE_ENV\":\"production\"", - "AUTH_TOKEN\":\"8f22800536c04e71addb3c4040722e59b7338166c3ad49ba982cc58260bcecda\"" - ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:46.837516713Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/technologies/fingerprinthub-web-fingerprints.yaml", - "template-url": "https://templates.nuclei.sh/public/fingerprinthub-web-fingerprints", - "template-id": "fingerprinthub-web-fingerprints", - "template-path": "/home/runner/nuclei-templates/http/technologies/fingerprinthub-web-fingerprints.yaml", - "info": { - "name": "FingerprintHub Technology Fingerprint", - "author": [ - "pdteam", - "righettod" - ], - "tags": [ - "tech" - ], - "description": "FingerprintHub Technology Fingerprint tests run in nuclei.", - "reference": [ - "https://github.com/0x727/fingerprinthub" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "matcher-name": "dfe-scada", - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:46.881090798Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "clear-site-data", - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:55.62658953Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-embedder-policy", - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:55.626628393Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-opener-policy", - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:55.626638582Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "cross-origin-resource-policy", - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:55.626655373Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:55.626678326Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:55.626695959Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "referrer-policy", - "type": "http", - "host": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:21:55.626712761Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", - "matcher-status": true - }, - { - "template": "ssl/detect-ssl-issuer.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-issuer", - "template-id": "ssl-issuer", - "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", - "info": { - "name": "Detect SSL Certificate Issuer", - "author": [ - "lingtren" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "Gandi" - ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:27:56.609470993Z", - "matcher-status": true - }, - { - "template": "ssl/ssl-dns-names.yaml", - "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", - "template-id": "ssl-dns-names", - "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", - "info": { - "name": "SSL DNS Names", - "author": [ - "pdteam" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "*.osc-secnum-fr1.scalingo.io", - "osc-secnum-fr1.scalingo.io" - ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:27:56.609599363Z", - "matcher-status": true - }, - { - "template": "ssl/wildcard-tls.yaml", - "template-url": "https://templates.nuclei.sh/public/wildcard-tls", - "template-id": "wildcard-tls", - "template-path": "/home/runner/nuclei-templates/ssl/wildcard-tls.yaml", - "info": { - "name": "Wildcard TLS Certificate", - "author": [ - "lucky0x0d" - ], - "tags": [ - "ssl", - "wildcard", - "tls" - ], - "description": "Checks a sites certificate to see if there are wildcard CN or SAN entries.\n", - "reference": [ - "https://cheatsheetseries.owasp.org/cheatsheets/transport_layer_protection_cheat_sheet.html#carefully-consider-the-use-of-wildcard-certificates" - ], - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "type": "ssl", - "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "CN: *.osc-secnum-fr1.scalingo.io", - " SAN: [*.osc-secnum-fr1.scalingo.io osc-secnum-fr1.scalingo.io]" - ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:27:56.60964594Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "tls12" - ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:27:57.817951251Z", - "matcher-status": true - }, - { - "template": "ssl/tls-version.yaml", - "template-url": "https://templates.nuclei.sh/public/tls-version", - "template-id": "tls-version", - "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", - "info": { - "name": "TLS Version - Detect", - "author": [ - "pdteam", - "pussycat0x" - ], - "tags": [ - "ssl", - "tls" - ], - "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", - "severity": "info", - "metadata": { - "max-request": 4 - } - }, - "type": "ssl", - "host": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "matched-at": "front-datasubvention-preprod.osc-secnum-fr1.scalingo.io:443", - "extracted-results": [ - "tls13" - ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:27:58.035896692Z", - "matcher-status": true - } - ], + "nuclei": [], "lhr": [ { "requestedUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", "finalUrl": "https://front-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", - "fetchTime": "2024-01-07T21:15:42.584Z", + "fetchTime": "2024-01-14T20:51:55.102Z", "runWarnings": [], "categories": { "performance": { @@ -589827,53 +585846,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 4088, + "numericValue": 4870, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2560, - "firstMeaningfulPaint": 2560, - "largestContentfulPaint": 4363, - "interactive": 4088, - "speedIndex": 3271, - "totalBlockingTime": 119, - "maxPotentialFID": 118, + "firstContentfulPaint": 2286, + "firstMeaningfulPaint": 2286, + "largestContentfulPaint": 2943, + "interactive": 4870, + "speedIndex": 4063, + "totalBlockingTime": 234, + "maxPotentialFID": 172, "cumulativeLayoutShift": 0.3970623779296875, "cumulativeLayoutShiftMainFrame": 0.3970623779296875, "totalCumulativeLayoutShift": 0.3970623779296875, "observedTimeOrigin": 0, - "observedTimeOriginTs": 216311069, + "observedTimeOriginTs": 307477353, "observedNavigationStart": 0, - "observedNavigationStartTs": 216311069, - "observedFirstPaint": 844, - "observedFirstPaintTs": 217155487, - "observedFirstContentfulPaint": 844, - "observedFirstContentfulPaintTs": 217155487, - "observedFirstContentfulPaintAllFrames": 844, - "observedFirstContentfulPaintAllFramesTs": 217155487, - "observedFirstMeaningfulPaint": 844, - "observedFirstMeaningfulPaintTs": 217155487, - "observedLargestContentfulPaint": 921, - "observedLargestContentfulPaintTs": 217231597, - "observedLargestContentfulPaintAllFrames": 921, - "observedLargestContentfulPaintAllFramesTs": 217231597, - "observedTraceEnd": 4519, - "observedTraceEndTs": 220830307, - "observedLoad": 315, - "observedLoadTs": 216626472, - "observedDomContentLoaded": 277, - "observedDomContentLoadedTs": 216587824, + "observedNavigationStartTs": 307477353, + "observedFirstPaint": 1247, + "observedFirstPaintTs": 308724145, + "observedFirstContentfulPaint": 1247, + "observedFirstContentfulPaintTs": 308724145, + "observedFirstContentfulPaintAllFrames": 1247, + "observedFirstContentfulPaintAllFramesTs": 308724145, + "observedFirstMeaningfulPaint": 1247, + "observedFirstMeaningfulPaintTs": 308724145, + "observedLargestContentfulPaint": 1247, + "observedLargestContentfulPaintTs": 308724145, + "observedLargestContentfulPaintAllFrames": 1247, + "observedLargestContentfulPaintAllFramesTs": 308724145, + "observedTraceEnd": 5073, + "observedTraceEndTs": 312550198, + "observedLoad": 474, + "observedLoadTs": 307951113, + "observedDomContentLoaded": 431, + "observedDomContentLoadedTs": 307908295, "observedCumulativeLayoutShift": 0.3970623779296875, "observedCumulativeLayoutShiftMainFrame": 0.3970623779296875, "observedTotalCumulativeLayoutShift": 0.3970623779296875, - "observedFirstVisualChange": 846, - "observedFirstVisualChangeTs": 217157069, - "observedLastVisualChange": 1080, - "observedLastVisualChangeTs": 217391069, - "observedSpeedIndex": 864, - "observedSpeedIndexTs": 217175146 + "observedFirstVisualChange": 1260, + "observedFirstVisualChangeTs": 308737353, + "observedLastVisualChange": 1560, + "observedLastVisualChangeTs": 309037353, + "observedSpeedIndex": 1283, + "observedSpeedIndexTs": 308759982 }, { "lcpInvalidated": false @@ -589895,19 +585914,19 @@ "numScripts": 36, "numStylesheets": 6, "numFonts": 4, - "numTasks": 1416, - "numTasksOver10ms": 8, + "numTasks": 1432, + "numTasksOver10ms": 7, "numTasksOver25ms": 5, "numTasksOver50ms": 3, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 5.575, - "throughput": 16625396.943988783, - "maxRtt": 84.83800000000001, - "maxServerLatency": 12.072, - "totalByteWeight": 556265, - "totalTaskTime": 444.4749999999974, - "mainDocumentTransferSize": 4473 + "rtt": 8.693, + "throughput": 15263254.665191622, + "maxRtt": 147.12400000000002, + "maxServerLatency": 11.155000000000001, + "totalByteWeight": 556193, + "totalTaskTime": 430.9799999999984, + "mainDocumentTransferSize": 4472 } ] } @@ -596378,7 +592397,7 @@ "http": { "url": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 21:24:55 GMT", + "end_time": "Sun, 14 Jan 2024 21:18:01 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -596390,17 +592409,17 @@ "Content-Length": "174", "Content-Security-Policy": "default-src 'none'", "Content-Type": "application/json; charset=utf-8", - "Date": "Sun, 07 Jan 2024 21:24:54 GMT", + "Date": "Sun, 14 Jan 2024 21:18:00 GMT", "ETag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", "X-Powered-By": "Express", - "X-Request-ID": "01104756-dddf-478f-add3-d57fad59d713" + "X-Request-ID": "76d59d2a-f454-4031-841e-7b00fc6f27ac" }, - "scan_id": 46238745, + "scan_id": 46510046, "score": 80, - "start_time": "Sun, 07 Jan 2024 21:24:52 GMT", + "start_time": "Sun, 14 Jan 2024 21:17:58 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -596609,77 +592628,77 @@ "testssl": [ { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -596687,7 +592706,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -596695,7 +592714,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -596703,7 +592722,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -596711,7 +592730,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -596719,7 +592738,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -596727,490 +592746,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704662800" + "finding": "1705267153" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Access-Control-Allow-Origin", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -597218,7 +593237,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -597227,7 +593246,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -597236,7 +593255,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -597245,7 +593264,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -597254,7 +593273,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -597262,7 +593281,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -597271,7 +593290,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -597280,7 +593299,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -597289,7 +593308,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -597298,14 +593317,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -597314,7 +593333,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -597323,7 +593342,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -597332,7 +593351,7 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -597341,7 +593360,7 @@ }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -597350,7 +593369,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -597359,7 +593378,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -597368,7 +593387,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -597377,7 +593396,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -597386,7 +593405,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -597395,392 +593414,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -597788,7 +593807,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -597796,7 +593815,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -597804,7 +593823,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -597812,7 +593831,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -597820,7 +593839,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -597828,490 +593847,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704662895" + "finding": "1705267203" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Access-Control-Allow-Origin", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -598319,7 +594338,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -598328,7 +594347,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -598337,7 +594356,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -598346,7 +594365,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -598355,7 +594374,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -598363,7 +594382,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -598372,7 +594391,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -598381,7 +594400,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -598390,7 +594409,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -598399,14 +594418,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -598415,7 +594434,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -598424,7 +594443,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -598433,7 +594452,7 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -598442,7 +594461,7 @@ }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -598451,7 +594470,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -598460,7 +594479,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -598469,7 +594488,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -598478,7 +594497,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -598487,7 +594506,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -598496,392 +594515,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -598889,7 +594908,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -598897,7 +594916,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -598905,7 +594924,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -598913,7 +594932,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -598921,7 +594940,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -598929,490 +594948,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704662989" + "finding": "1705267253" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Access-Control-Allow-Origin", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -599420,7 +595439,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -599429,7 +595448,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -599438,7 +595457,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -599447,7 +595466,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -599456,7 +595475,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -599464,7 +595483,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -599473,7 +595492,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -599482,7 +595501,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -599491,7 +595510,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -599500,14 +595519,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -599516,7 +595535,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -599525,7 +595544,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -599534,7 +595553,7 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -599543,7 +595562,7 @@ }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -599552,7 +595571,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -599561,7 +595580,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -599570,7 +595589,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -599579,7 +595598,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -599588,7 +595607,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -599597,392 +595616,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -599990,7 +596009,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -599998,7 +596017,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -600006,7 +596025,7 @@ }, { "id": "cipherlist_LOW", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -600014,7 +596033,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -600022,7 +596041,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -600030,490 +596049,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704663084" + "finding": "1705267303" }, { "id": "HSTS_time", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "0 at '/'" }, { "id": "X-Frame-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "DENY" }, { "id": "X-Content-Type-Options", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "default-src 'none'" }, { "id": "Access-Control-Allow-Origin", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "*" }, { "id": "Cache-Control", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "max-age 1800" }, { "id": "banner_reverseproxy", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -600521,7 +596540,7 @@ }, { "id": "heartbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -600530,7 +596549,7 @@ }, { "id": "CCS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -600539,7 +596558,7 @@ }, { "id": "ticketbleed", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -600548,7 +596567,7 @@ }, { "id": "ROBOT", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -600557,7 +596576,7 @@ }, { "id": "secure_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -600565,7 +596584,7 @@ }, { "id": "secure_client_renego", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -600574,7 +596593,7 @@ }, { "id": "CRIME_TLS", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -600583,7 +596602,7 @@ }, { "id": "BREACH", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -600592,7 +596611,7 @@ }, { "id": "POODLE_SSL", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -600601,14 +596620,14 @@ }, { "id": "fallback_SCSV", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -600617,7 +596636,7 @@ }, { "id": "FREAK", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -600626,7 +596645,7 @@ }, { "id": "DROWN", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -600635,7 +596654,7 @@ }, { "id": "DROWN_hint", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -600644,7 +596663,7 @@ }, { "id": "LOGJAM", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -600653,7 +596672,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -600662,7 +596681,7 @@ }, { "id": "BEAST", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -600671,7 +596690,7 @@ }, { "id": "LUCKY13", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -600680,7 +596699,7 @@ }, { "id": "winshock", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -600689,7 +596708,7 @@ }, { "id": "RC4", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -600698,325 +596717,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "382" + "finding": "203" } ], "thirdparties": { @@ -601029,18 +597048,18 @@ "content-length": "174", "content-security-policy": "default-src 'none'", "content-type": "application/json; charset=utf-8", - "date": "Sun, 07 Jan 2024 21:25:27 GMT", + "date": "Sun, 14 Jan 2024 21:18:34 GMT", "etag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-powered-by": "Express", - "x-request-id": "89feda93-1acb-4cb3-9f6b-ed42857f57a0" + "x-request-id": "ffc18888-f75d-4d8d-8ead-037a9250cdff" }, "endpoints": [ { "hostname": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.12.255", + "ip": "185.21.194.105", "geoip": { "continent": { "code": "EU", @@ -601166,7 +597185,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 21:24:22", + "@generated": "Sun, 14 Jan 2024 21:17:29", "site": [ { "@name": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", @@ -601281,7 +597300,7 @@ "type": "dns", "host": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io.", "matched-at": "api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "timestamp": "2024-01-07T21:33:11.141270878Z", + "timestamp": "2024-01-14T21:23:03.113268329Z", "matcher-status": true }, { @@ -601316,7 +597335,7 @@ "extracted-results": [ "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." ], - "timestamp": "2024-01-07T21:33:11.158426903Z", + "timestamp": "2024-01-14T21:23:03.11434643Z", "matcher-status": true }, { @@ -601341,8 +597360,8 @@ "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:34:07.041827927Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:23:36.925102529Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -601374,12 +597393,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:34:21.917915414Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:23:45.845926242Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -601411,12 +597430,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:34:21.917967681Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:23:45.84597336Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -601448,12 +597467,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:34:21.917985595Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:23:45.8459896Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -601485,12 +597504,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:34:21.918174055Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:23:45.846002063Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -601522,12 +597541,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:34:21.918199682Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:23:45.846013876Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -601559,12 +597578,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:34:21.918427823Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:23:45.846026479Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -601596,12 +597615,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:34:21.918455985Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:23:45.846040506Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io'", "matcher-status": true }, @@ -601640,8 +597659,8 @@ "type": "http", "host": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io", "matched-at": "https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/", - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:34:59.840059801Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:24:07.678195238Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: api-datasubvention-preprod.osc-secnum-fr1.scalingo.io' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://api-datasubvention-preprod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -601671,8 +597690,8 @@ "extracted-results": [ "Gandi" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:40:51.574842953Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:29:46.989723225Z", "matcher-status": true }, { @@ -601702,8 +597721,8 @@ "*.osc-secnum-fr1.scalingo.io", "osc-secnum-fr1.scalingo.io" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:40:51.574960982Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:29:46.98985447Z", "matcher-status": true }, { @@ -601737,8 +597756,8 @@ "CN: *.osc-secnum-fr1.scalingo.io", " SAN: [*.osc-secnum-fr1.scalingo.io osc-secnum-fr1.scalingo.io]" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:40:51.575001257Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:29:46.989890848Z", "matcher-status": true }, { @@ -601768,8 +597787,8 @@ "extracted-results": [ "tls12" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:40:53.786890859Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:29:48.280793267Z", "matcher-status": true }, { @@ -601799,8 +597818,8 @@ "extracted-results": [ "tls13" ], - "ip": "185.21.194.105", - "timestamp": "2024-01-07T21:40:54.108349956Z", + "ip": "80.247.13.145", + "timestamp": "2024-01-14T21:29:48.498120462Z", "matcher-status": true } ], @@ -601915,7 +597934,7 @@ "http": { "url": "http://api.datasubvention.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 21:40:27 GMT", + "end_time": "Sun, 14 Jan 2024 21:21:00 GMT", "grade": "B+", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -601927,17 +597946,17 @@ "Content-Length": "174", "Content-Security-Policy": "default-src 'none'", "Content-Type": "application/json; charset=utf-8", - "Date": "Sun, 07 Jan 2024 21:40:26 GMT", + "Date": "Sun, 14 Jan 2024 21:20:59 GMT", "ETag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", "X-Content-Type-Options": "nosniff", "X-Frame-Options": "DENY", "X-Powered-By": "Express", - "X-Request-ID": "fb070239-a0fa-4910-beb2-8e40c68e433c" + "X-Request-ID": "0ffddf39-5cf7-4c6d-ace7-23abeffb67fb" }, - "scan_id": 46238917, + "scan_id": 46510271, "score": 80, - "start_time": "Sun, 07 Jan 2024 21:40:24 GMT", + "start_time": "Sun, 14 Jan 2024 21:20:56 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 1, @@ -602144,1142 +598163,6 @@ "dependabot": null, "codescan": null, "testssl": [ - { - "id": "service", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2023-12-19 14:07" - }, - { - "id": "cert_notAfter", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2024-03-18 14:07" - }, - { - "id": "cert_extlifeSpan", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "1704663704" - }, - { - "id": "HSTS_time", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "730 days (=63072000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "includes subdomains" - }, - { - "id": "HSTS_preload", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "domain IS marked for preloading" - }, - { - "id": "HPKP", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "X-Powered-By: Express" - }, - { - "id": "cookie_count", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "DENY" - }, - { - "id": "X-Content-Type-Options", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "nosniff" - }, - { - "id": "Content-Security-Policy", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "default-src 'none'" - }, - { - "id": "Access-Control-Allow-Origin", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "*" - }, - { - "id": "Cache-Control", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "max-age 1800" - }, - { - "id": "banner_reverseproxy", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6CE7EA8123B049EB6A855E6FBA62AB4F267DBF2CACCD305C76356670AB5D2019" - }, - { - "id": "LOGJAM", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", - "port": "443", - "severity": "OK", - "finding": "A+" - }, { "id": "service", "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", @@ -603627,7 +598510,7 @@ "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "70 >= 30 days" + "finding": "63 >= 30 days" }, { "id": "cert_notBefore", @@ -603830,7 +598713,7 @@ "ip": "api.datasubvention.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704663759" + "finding": "1705267331" }, { "id": "HSTS_time", @@ -604763,7 +599646,7 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "70 >= 30 days" + "finding": "63 >= 30 days" }, { "id": "cert_notBefore", @@ -604966,7 +599849,7 @@ "ip": "api.datasubvention.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704663815" + "finding": "1705267383" }, { "id": "HSTS_time", @@ -605899,7 +600782,7 @@ "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "70 >= 30 days" + "finding": "63 >= 30 days" }, { "id": "cert_notBefore", @@ -606102,7 +600985,7 @@ "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704663870" + "finding": "1705267436" }, { "id": "HSTS_time", @@ -606688,12 +601571,1148 @@ "severity": "OK", "finding": "A+" }, + { + "id": "service", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2023-12-19 14:07" + }, + { + "id": "cert_notAfter", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2024-03-18 14:07" + }, + { + "id": "cert_extlifeSpan", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "1705267488" + }, + { + "id": "HSTS_time", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "730 days (=63072000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "includes subdomains" + }, + { + "id": "HSTS_preload", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "domain IS marked for preloading" + }, + { + "id": "HPKP", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "X-Powered-By: Express" + }, + { + "id": "cookie_count", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "X-Frame-Options", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "DENY" + }, + { + "id": "X-Content-Type-Options", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "nosniff" + }, + { + "id": "Content-Security-Policy", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "default-src 'none'" + }, + { + "id": "Access-Control-Allow-Origin", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "*" + }, + { + "id": "Cache-Control", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "max-age 1800" + }, + { + "id": "banner_reverseproxy", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=6CE7EA8123B049EB6A855E6FBA62AB4F267DBF2CACCD305C76356670AB5D2019" + }, + { + "id": "LOGJAM", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", + "port": "443", + "severity": "OK", + "finding": "A+" + }, { "id": "scanTime", - "ip": "api.datasubvention.beta.gouv.fr/148.253.96.193", + "ip": "api.datasubvention.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "224" + "finding": "212" } ], "thirdparties": { @@ -606707,18 +602726,18 @@ "content-length": "174", "content-security-policy": "default-src 'none'", "content-type": "application/json; charset=utf-8", - "date": "Sun, 07 Jan 2024 21:41:01 GMT", + "date": "Sun, 14 Jan 2024 21:21:31 GMT", "etag": "W/\"ae-aaepo/6j8eK5LAryuhO1tqx1gP0\"", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-frame-options": "DENY", "x-powered-by": "Express", - "x-request-id": "919af62c-f392-429f-b79b-3ddedf3b2207" + "x-request-id": "cadf109f-fb64-4363-8c9d-59bddd92bae1" }, "endpoints": [ { "hostname": "api.datasubvention.beta.gouv.fr", - "ip": "148.253.96.193", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -606844,7 +602863,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 21:39:55", + "@generated": "Sun, 14 Jan 2024 21:20:27", "site": [ { "@name": "http://api.datasubvention.beta.gouv.fr", @@ -607029,21 +603048,21 @@ "http": { "url": "https://datasubvention.beta.gouv.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 21:52:32 GMT", + "end_time": "Sun, 14 Jan 2024 21:22:48 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", "response_headers": { "CF-Cache-Status": "DYNAMIC", - "CF-Ray": "841f6d846a3f982a-SJC", + "CF-Ray": "8458ef92d897fa4a-SJC", "Cache-Control": "public, max-age=604800", "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 07 Jan 2024 21:52:27 GMT", + "Date": "Sun, 14 Jan 2024 21:22:43 GMT", "Link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", "Server": "cloudflare", - "Set-Cookie": "__cf_bm=LJWquON_hYgdHMB0UCtdQIK_SjFTRUwd8EvkD.ivt7U-1704664347-1-AfXo2dBocw/egx4U4ItQ+nJDKUMw+j03uA/0shpLjNzKutSgpmLYOz9DoJK4UrEGwGotKXyb2rs0C0GBXnKkABE=; path=/; expires=Sun, 07-Jan-24 22:22:27 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None, _cfuvid=6vAoTWqzXADlHYB.XxhpFgeAcvUTgEJZZ3X1TpOmjAE-1704664347853-0-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", + "Set-Cookie": "__cf_bm=eMZyt5FoXFhFyk4JE_.9A4WHoLfwCWn0vG4c6kQIHaE-1705267363-1-AZE7H/e3546vrL2XmiiBGj9hydedJsFV8OHvwJSaNP6+CDN77KPNfR90ISzzFE7y3nrbfdkTDOMgj5JBnC7pRK8=; path=/; expires=Sun, 14-Jan-24 21:52:43 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None, _cfuvid=LY76rD92gD3ul_lydPMivsinQv9alYorAe1V_nBTtqg-1705267363076-0-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "alt-svc": "h3=\":443\"; ma=86400", @@ -607053,9 +603072,9 @@ "ec-source": "dynamic", "x-powered-by": "Elementor Cloud" }, - "scan_id": 46239030, + "scan_id": 46510392, "score": 20, - "start_time": "Sun, 07 Jan 2024 21:52:23 GMT", + "start_time": "Sun, 14 Jan 2024 21:22:39 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -607095,7 +603114,7 @@ "data": { "__cf_bm": { "domain": ".datasubvention.beta.gouv.fr", - "expires": 1704666147, + "expires": 1705269163, "httponly": true, "max-age": null, "path": "/", @@ -607293,77 +603312,77 @@ "testssl": [ { "id": "service", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -607371,7 +603390,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -607379,7 +603398,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -607387,7 +603406,7 @@ }, { "id": "cipherlist_LOW", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -607395,7 +603414,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -607403,7 +603422,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -607411,728 +603430,721 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "0DA9F9EAF8C64D2696130B7A869E0FF3" }, { "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "F678E58FEA6FFFACECFD25F2258D07AB67991E09" }, { "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "271ADBDBC05D1CC64ED63941EF2A61AFA8480EFF6212B2BFEEB29B5F067A4124" }, { "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "elementor.cloud" }, { "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "242 >= 60 days" + "finding": "235 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2023-09-07 00:00" }, { "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "2024-09-05 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" }, { "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:46" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Agreement" }, { "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "044CC93C280ED0CEED9248C6BDCC29ED" }, { "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "F2A5448BE88C00F2132DBCFFC9360ABA11174E66" }, { "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "1F389151FADADD17069B0DEA9E7B9ED20B5E96984FEDB7936FFAD3B866A9CA98" }, { "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "elementor.cloud" }, { "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", - "finding": "242 >= 60 days" + "finding": "235 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2023-09-07 00:00" }, { "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "2024-09-05 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "+232 seconds from localtime" + "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", - "port": "443", - "severity": "INFO", - "finding": "1704664438" - }, - { - "id": "HTTP_headerAge", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", - "finding": "232 seconds" + "finding": "1705267446" }, { "id": "HSTS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "x-powered-by: Elementor Cloud" }, { "id": "cookie_count", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "public, max-age=604800" }, { "id": "banner_reverseproxy", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -608140,7 +604152,7 @@ }, { "id": "heartbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -608149,7 +604161,7 @@ }, { "id": "CCS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -608158,7 +604170,7 @@ }, { "id": "ticketbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -608167,7 +604179,7 @@ }, { "id": "ROBOT", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -608176,7 +604188,7 @@ }, { "id": "secure_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -608184,7 +604196,7 @@ }, { "id": "secure_client_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -608193,7 +604205,7 @@ }, { "id": "CRIME_TLS", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -608202,7 +604214,7 @@ }, { "id": "BREACH", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -608211,7 +604223,7 @@ }, { "id": "POODLE_SSL", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -608220,14 +604232,14 @@ }, { "id": "fallback_SCSV", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -608236,7 +604248,7 @@ }, { "id": "FREAK", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -608245,7 +604257,7 @@ }, { "id": "DROWN", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -608254,7 +604266,7 @@ }, { "id": "DROWN_hint", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -608263,7 +604275,7 @@ }, { "id": "LOGJAM", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -608272,7 +604284,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -608281,7 +604293,7 @@ }, { "id": "BEAST", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -608290,7 +604302,7 @@ }, { "id": "LUCKY13", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -608299,7 +604311,7 @@ }, { "id": "winshock", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -608308,7 +604320,7 @@ }, { "id": "RC4", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -608317,399 +604329,399 @@ }, { "id": "clientsimulation-android_60", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "datasubvention.beta.gouv.fr/162.159.137.9", + "ip": "datasubvention.beta.gouv.fr/162.159.138.9", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -608717,7 +604729,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -608725,7 +604737,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -608733,7 +604745,7 @@ }, { "id": "cipherlist_LOW", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -608741,7 +604753,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -608749,7 +604761,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "cwe": "CWE-310", @@ -608757,728 +604769,728 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "server -- TLS 1.3 client determined" }, { "id": "FS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-CHACHA20-POLY1305-OLD ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CHACHA20-POLY1305-OLD" }, { "id": "FS_ECDHE_curves", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "prime256v1" }, { "id": "TLS_extensions", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'next protocol/#13172' 'key share/#51' 'supported versions/#43' 'extended master secret/#23' 'application layer protocol negotiation/#16' 'compress_certificate/#27'" }, { "id": "TLS_session_ticket", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "valid for 64800 seconds only (", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "0DA9F9EAF8C64D2696130B7A869E0FF3" }, { "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "F678E58FEA6FFFACECFD25F2258D07AB67991E09" }, { "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "271ADBDBC05D1CC64ED63941EF2A61AFA8480EFF6212B2BFEEB29B5F067A4124" }, { "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "elementor.cloud" }, { "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "242 >= 60 days" + "finding": "235 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2023-09-07 00:00" }, { "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "2024-09-05 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncRSACA-2.crl http://crl4.digicert.com/CloudflareIncRSACA-2.crl" }, { "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "AEC863898F284D6CD4C6A3F6C3E6523480A359C33DAF66FAD3381849B8BB018B" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:46" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc RSA CA-2 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "cert_signatureAlgorithm ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "ECDSA with SHA256" }, { "id": "cert_keySize ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "EC 256 bits (curve P-256)" }, { "id": "cert_keyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Agreement" }, { "id": "cert_extKeyUsage ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLS Web Client Authentication, TLS Web Server Authentication" }, { "id": "cert_serialNumber ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "044CC93C280ED0CEED9248C6BDCC29ED" }, { "id": "cert_serialNumberLen ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "16" }, { "id": "cert_fingerprintSHA1 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "F2A5448BE88C00F2132DBCFFC9360ABA11174E66" }, { "id": "cert_fingerprintSHA256 ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "1F389151FADADD17069B0DEA9E7B9ED20B5E96984FEDB7936FFAD3B866A9CA98" }, { "id": "cert ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "elementor.cloud" }, { "id": "cert_subjectAltName ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "datasubvention.beta.gouv.fr" }, { "id": "cert_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", - "finding": "242 >= 60 days" + "finding": "235 >= 60 days" }, { "id": "cert_notBefore ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2023-09-07 00:00" }, { "id": "cert_notAfter ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "2024-09-05 23:59" }, { "id": "cert_extlifeSpan ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http://crl3.digicert.com/CloudflareIncECCCA-3.crl http://crl4.digicert.com/CloudflareIncECCCA-3.crl" }, { "id": "cert_ocspURL ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "http://ocsp.digicert.com" }, { "id": "OCSP_stapling ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cert_ocspRevoked ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "not revoked" }, { "id": "cert_mustStapleExtension ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 (Cloudflare, Inc. from US)" }, { "id": "intermediate_cert <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "3ABBE63DAF756C5016B6B85F52015FD8E8ACBE277C5087B127A60563A841ED8A" }, { "id": "intermediate_cert_notBefore <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2020-01-27 12:48" }, { "id": "intermediate_cert_notAfter <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "2024-12-31 23:59" }, { "id": "intermediate_cert_expiration <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1> ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Cloudflare Inc ECC CA-3 <-- Baltimore CyberTrust Root" }, { "id": "intermediate_cert_badOCSP ", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "+221 seconds from localtime" + "finding": "+362 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "1704664496" + "finding": "1705267504" }, { "id": "HTTP_headerAge", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "221 seconds" + "finding": "362 seconds" }, { "id": "HSTS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "cloudflare" }, { "id": "banner_application", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "x-powered-by: Elementor Cloud" }, { "id": "cookie_count", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "Cache-Control", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "public, max-age=604800" }, { "id": "banner_reverseproxy", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -609486,7 +605498,7 @@ }, { "id": "heartbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -609495,7 +605507,7 @@ }, { "id": "CCS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -609504,7 +605516,7 @@ }, { "id": "ticketbleed", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -609513,7 +605525,7 @@ }, { "id": "ROBOT", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -609522,7 +605534,7 @@ }, { "id": "secure_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -609530,7 +605542,7 @@ }, { "id": "secure_client_renego", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -609539,7 +605551,7 @@ }, { "id": "CRIME_TLS", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -609548,7 +605560,7 @@ }, { "id": "BREACH", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "MEDIUM", "cve": "CVE-2013-3587", @@ -609557,7 +605569,7 @@ }, { "id": "POODLE_SSL", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -609566,14 +605578,14 @@ }, { "id": "fallback_SCSV", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -609582,7 +605594,7 @@ }, { "id": "FREAK", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -609591,7 +605603,7 @@ }, { "id": "DROWN", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -609600,7 +605612,7 @@ }, { "id": "DROWN_hint", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -609609,7 +605621,7 @@ }, { "id": "LOGJAM", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -609618,7 +605630,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -609627,7 +605639,7 @@ }, { "id": "BEAST", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -609636,7 +605648,7 @@ }, { "id": "LUCKY13", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "LOW", "cve": "CVE-2013-0169", @@ -609645,7 +605657,7 @@ }, { "id": "winshock", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -609654,7 +605666,7 @@ }, { "id": "RC4", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -609663,332 +605675,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305-OLD" }, { "id": "clientsimulation-android_70", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-ie_11_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_15_win10", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-java1102", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-openssl_110l", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_111d", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "datasubvention.beta.gouv.fr/162.159.138.9", + "ip": "datasubvention.beta.gouv.fr/162.159.137.9", "port": "443", "severity": "INFO", - "finding": "120" + "finding": "122" } ], "thirdparties": { @@ -610111,35 +606123,35 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/client.js?0a15717" + "url": "https://sibautomation.com/cm.html?key=uvxc7hbx21zuv3f2yjbhub71" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/stylesheets/client_default.css?0a15717" + "url": "https://client.crisp.chat/static/javascripts/client.js?e0efffc" }, { "type": "unknown", - "url": "https://ml4m9p8dxdpd.i.optimole.com/w:1200/h:1200/q:mauto/https://datasubvention.beta.gouv.fr/wp-content/uploads/2023/06/Batch-posts-LinkedIn-3.svg" + "url": "https://client.crisp.chat/static/stylesheets/client_default.css?e0efffc" }, { "type": "unknown", - "url": "https://ml4m9p8dxdpd.i.optimole.com/w:1200/h:1200/q:mauto/https://datasubvention.beta.gouv.fr/wp-content/uploads/2023/06/2.svg" + "url": "https://ml4m9p8dxdpd.i.optimole.com/w:1200/h:1200/q:mauto/https://datasubvention.beta.gouv.fr/wp-content/uploads/2023/06/Batch-posts-LinkedIn-3.svg" }, { "type": "unknown", - "url": "https://sibautomation.com/cm.html?key=uvxc7hbx21zuv3f2yjbhub71" + "url": "https://ml4m9p8dxdpd.i.optimole.com/w:1200/h:1200/q:mauto/https://datasubvention.beta.gouv.fr/wp-content/uploads/2023/06/2.svg" }, { "type": "unknown", - "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-7-21-53" + "url": "https://in-automate.brevo.com/cm?uuid=1b1343bf-34f3-4c26-8a8c-0aa7a6fdb7d5&key=uvxc7hbx21zuv3f2yjbhub71&cuid=6e3bf5d0-249c-40da-9f28-b054ae4a2c38" }, { "type": "unknown", - "url": "https://in-automate.brevo.com/cm?uuid=88016859-d47f-4a0d-9f29-d6bc9c748256&key=uvxc7hbx21zuv3f2yjbhub71&cuid=b6d2a97b-aa07-4190-9118-1352826b6e97" + "url": "https://client.crisp.chat/settings/website/9b58fbdb-9b81-4ac8-9754-ee1eb9d8d058/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2024-0-14-21-23" }, { "type": "unknown", - "url": "https://in-automate.brevo.com/p?key=uvxc7hbx21zuv3f2yjbhub71&cuid=b6d2a97b-aa07-4190-9118-1352826b6e97&ma_url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&sib_type=page&ma_title=Data.Subvention%20-%20les%20informations%20sur%20les%20associations%20et%20leurs%20subventions&sib_name=Data.Subvention%20-%20les%20informations%20sur%20les%20associations%20et%20leurs%20subventions&ma_referrer=&ma_path=%2F" + "url": "https://in-automate.brevo.com/p?key=uvxc7hbx21zuv3f2yjbhub71&cuid=6e3bf5d0-249c-40da-9f28-b054ae4a2c38&ma_url=https%3A%2F%2Fdatasubvention.beta.gouv.fr%2F&sib_type=page&ma_title=Data.Subvention%20-%20les%20informations%20sur%20les%20associations%20et%20leurs%20subventions&sib_name=Data.Subvention%20-%20les%20informations%20sur%20les%20associations%20et%20leurs%20subventions&ma_referrer=&ma_path=%2F" }, { "type": "unknown", @@ -610147,19 +606159,19 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/javascripts/locales/en.js?0a15717" + "url": "https://client.crisp.chat/static/javascripts/locales/en.js?e0efffc" }, { "type": "unknown", - "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2Fa76805d99ddc4800%2Fmoipro_16ad6dc.png&width=60&height=60&1704527293195" + "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2Fdf82169218f89000%2F1555594446856_1fvlg5p.jpeg&width=60&height=60&1704527293195" }, { "type": "unknown", - "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2F647c81e2dba70400%2Fidmi_qkr60n.png&width=60&height=60&1704527293195" + "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2F86a032f82d04c000%2F1613422099292_1ak69j0.jpg&width=60&height=60&1704527293195" }, { "type": "unknown", - "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2Fdf82169218f89000%2F1555594446856_1fvlg5p.jpeg&width=60&height=60&1704527293195" + "url": "https://image.crisp.chat/process/thumbnail/?url=https%3A%2F%2Fstorage.crisp.chat%2Fusers%2Favatar%2Foperator%2Fa76805d99ddc4800%2Fmoipro_16ad6dc.png&width=60&height=60&1704527293195" }, { "type": "unknown", @@ -610167,25 +606179,25 @@ }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_bold.woff2?e0efffc" }, { "type": "unknown", - "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?0a15717" + "url": "https://client.crisp.chat/static/fonts/noto_sans/0020-007F/noto_sans_regular.woff2?e0efffc" } ], "cookies": [ { "name": "_cfuvid", - "value": "t2nLB9Q9hb_7Gl6sF3C2GX9mxQSbO7NpUFH6dfRy_jc-1704664380413-0-604800000", + "value": "L4b11D_sMACu2tZPukMhs88smXNxI8lTNkJYrDFw6xI-1705267393739-0-604800000", "domain": ".datasubvention.beta.gouv.fr", "path": "/", "expires": -1, @@ -610203,7 +606215,7 @@ "value": "1", "domain": "datasubvention.beta.gouv.fr", "path": "/", - "expires": 1704666181, + "expires": 1705269194, "size": 17, "httpOnly": false, "secure": false, @@ -610215,10 +606227,10 @@ }, { "name": "_pk_id.258.755a", - "value": "ac63dc7ee197b761.1704664381.", + "value": "3c2c8016aaf9425e.1705267395.", "domain": "datasubvention.beta.gouv.fr", "path": "/", - "expires": 1738619581, + "expires": 1739222595, "size": 43, "httpOnly": false, "secure": false, @@ -610230,11 +606242,11 @@ }, { "name": "cf_clearance", - "value": "w3C91T80wE6B2P6tKnVJ6Mu6yzROPkaCheJlEig1m.U-1704664381-0-2-4a9e58c.ff04a9e5.792e9f0b-0.1.1704664381", + "value": "TF0Q3D34qvN5PrOUwuj8SctpxazX7.M5NfNUrxUtKME-1705267394-0-2-79d2e0b6.39750b52.c06104a4-0.1.1705267394", "domain": ".datasubvention.beta.gouv.fr", "path": "/", - "expires": 1736200381.412748, - "size": 111, + "expires": 1736803394.88351, + "size": 112, "httpOnly": true, "secure": true, "session": false, @@ -610245,10 +606257,10 @@ }, { "name": "sib_cuid", - "value": "b6d2a97b-aa07-4190-9118-1352826b6e97", + "value": "6e3bf5d0-249c-40da-9f28-b054ae4a2c38", "domain": ".datasubvention.beta.gouv.fr", "path": "/", - "expires": 1720313581, + "expires": 1720916594, "size": 44, "httpOnly": false, "secure": false, @@ -610259,10 +606271,10 @@ }, { "name": "__cf_bm", - "value": "8Kyg83WZzvqDdMUPIO6ZfJ1PrTXQ.K0IGA1eNKgs_os-1704664380-1-AWWNvyBRHiLcc8yWMQCrYmy5fZxC752fFNt05DIdQjVx/isi94hBp8Lf/npTE9HWvNu8IFjs0JZ67gb9ifqVF6E=", + "value": "KKIZcnMlONi8dhJRWKdgEAiSoulZe0YrAtz8To6NLDI-1705267393-1-AaCqKpjkM0wUXs0vT1xPS2YIPwpSGWYbrl11syVZ4b+K4wp7XFQB6eznqCMsOxdgXgIiOz+l8ar7sMPcMhkRsAM=", "domain": ".datasubvention.beta.gouv.fr", "path": "/", - "expires": 1704666180.420076, + "expires": 1705269193.743439, "size": 152, "httpOnly": true, "secure": true, @@ -610274,35 +606286,35 @@ } ], "headers": { - "age": "174", + "age": "168", "alt-svc": "h3=\":443\"; ma=86400", "cache-control": "public, max-age=604800", "cf-cache-status": "HIT", - "cf-ray": "841f6e5978222ab7-LAX", + "cf-ray": "8458f05abec96fef-IAD", "content-encoding": "br", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 21:53:00 GMT", + "date": "Sun, 14 Jan 2024 21:23:13 GMT", "ec-cdn-cache-control": "public, max-age=604800", "ec-cdn-status": "hit", "ec-cdn-supported": "1", "ec-source": "dynamic", - "last-modified": "Sun, 07 Jan 2024 21:50:06 GMT", + "last-modified": "Sun, 14 Jan 2024 21:20:25 GMT", "link": "; rel=\"https://api.w.org/\", ; rel=\"alternate\"; type=\"application/json\", ; rel=shortlink", "server": "cloudflare", - "set-cookie": "__cf_bm=8Kyg83WZzvqDdMUPIO6ZfJ1PrTXQ.K0IGA1eNKgs_os-1704664380-1-AWWNvyBRHiLcc8yWMQCrYmy5fZxC752fFNt05DIdQjVx/isi94hBp8Lf/npTE9HWvNu8IFjs0JZ67gb9ifqVF6E=; path=/; expires=Sun, 07-Jan-24 22:23:00 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None\n_cfuvid=t2nLB9Q9hb_7Gl6sF3C2GX9mxQSbO7NpUFH6dfRy_jc-1704664380413-0-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", + "set-cookie": "__cf_bm=KKIZcnMlONi8dhJRWKdgEAiSoulZe0YrAtz8To6NLDI-1705267393-1-AaCqKpjkM0wUXs0vT1xPS2YIPwpSGWYbrl11syVZ4b+K4wp7XFQB6eznqCMsOxdgXgIiOz+l8ar7sMPcMhkRsAM=; path=/; expires=Sun, 14-Jan-24 21:53:13 GMT; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None\n_cfuvid=L4b11D_sMACu2tZPukMhs88smXNxI8lTNkJYrDFw6xI-1705267393739-0-604800000; path=/; domain=.datasubvention.beta.gouv.fr; HttpOnly; Secure; SameSite=None", "vary": "Accept-Encoding", "x-powered-by": "Elementor Cloud" }, "endpoints": [ { "hostname": "datasubvention.beta.gouv.fr", - "ip": "162.159.137.9", + "ip": "162.159.138.9", "geoip": { "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610316,7 +606328,7 @@ }, { "hostname": "fonts.googleapis.com", - "ip": "142.250.188.234", + "ip": "172.253.122.95", "geoip": { "continent": { "code": "NA", @@ -610336,7 +606348,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610356,7 +606368,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610370,7 +606382,7 @@ }, { "hostname": "ml4m9p8dxdpd.i.optimole.com", - "ip": "99.84.203.77", + "ip": "18.160.18.73", "geoip": { "continent": { "code": "NA", @@ -610390,7 +606402,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610410,7 +606422,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610430,7 +606442,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610477,7 +606489,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610501,7 +606513,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610537,7 +606549,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610571,7 +606583,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610591,7 +606603,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610605,7 +606617,7 @@ }, { "hostname": "fonts.gstatic.com", - "ip": "142.250.189.3", + "ip": "172.253.115.94", "geoip": { "continent": { "code": "NA", @@ -610625,7 +606637,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610645,7 +606657,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610659,27 +606671,7 @@ }, { "hostname": "in-automate.brevo.com", - "ip": "104.18.38.216", - "geoip": { - "registered_country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - } - } - }, - { - "hostname": "image.crisp.chat", - "ip": "172.64.153.75", + "ip": "172.64.149.40", "geoip": { "continent": { "code": "NA", @@ -610699,7 +606691,7 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -610719,7 +606711,27 @@ "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", + "en": "United States", + "es": "Estados Unidos", + "fr": "États Unis", + "ja": "アメリカ", + "pt-BR": "EUA", + "ru": "США", + "zh-CN": "美国" + } + } + } + }, + { + "hostname": "image.crisp.chat", + "ip": "104.18.34.181", + "geoip": { + "registered_country": { + "geoname_id": 6252001, + "iso_code": "US", + "names": { + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -611305,7 +607317,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 21:51:57", + "@generated": "Sun, 14 Jan 2024 21:22:14", "site": [ { "@name": "https://datasubvention.beta.gouv.fr", @@ -611494,20 +607506,24 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/dmarc-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/dmarc-detect", + "template-id": "dmarc-detect", + "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS DMARC - Detect", "author": [ - "pdteam" + "juliosmelo" ], "tags": [ "dns", - "ns" + "dmarc" + ], + "description": "DNS DMARC information was detected.\n", + "reference": [ + "https://dmarc.org/", + "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -611516,36 +607532,36 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ] + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" } }, "type": "dns", "host": "datasubvention.beta.gouv.fr.", - "matched-at": "datasubvention.beta.gouv.fr", + "matched-at": "_dmarc.datasubvention.beta.gouv.fr", "extracted-results": [ - "dns1.alwaysdata.com.", - "dns2.alwaysdata.com." + "\"v=DMARC1;p=none;\"" ], - "timestamp": "2024-01-07T21:56:27.698096363Z", + "timestamp": "2024-01-14T21:26:34.625396092Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -611561,29 +607577,26 @@ "type": "dns", "host": "datasubvention.beta.gouv.fr.", "matched-at": "datasubvention.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:_spf.alwaysdata.com ~all\"" - ], - "timestamp": "2024-01-07T21:56:27.870270126Z", + "timestamp": "2024-01-14T21:26:34.792475381Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -611599,28 +607612,27 @@ "type": "dns", "host": "datasubvention.beta.gouv.fr.", "matched-at": "datasubvention.beta.gouv.fr", - "timestamp": "2024-01-07T21:56:27.92324385Z", + "extracted-results": [ + "\"v=spf1 include:_spf.alwaysdata.com ~all\"" + ], + "timestamp": "2024-01-14T21:26:35.617928649Z", "matcher-status": true }, { - "template": "dns/mx-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", - "template-id": "mx-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "MX Record Detection", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "mx" - ], - "description": "An MX record was detected. MX records direct emails to a mail exchange server.", - "reference": [ - "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", - "https://mxtoolbox.com/" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -611636,30 +607648,30 @@ "host": "datasubvention.beta.gouv.fr.", "matched-at": "datasubvention.beta.gouv.fr", "extracted-results": [ - "10 mx1.alwaysdata.com.", - "20 mx2.alwaysdata.com." + "dns1.alwaysdata.com.", + "dns2.alwaysdata.com." ], - "timestamp": "2024-01-07T21:56:28.698563915Z", + "timestamp": "2024-01-14T21:26:35.617958072Z", "matcher-status": true }, { - "template": "dns/dmarc-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/dmarc-detect", - "template-id": "dmarc-detect", - "template-path": "/home/runner/nuclei-templates/dns/dmarc-detect.yaml", + "template": "dns/mx-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/mx-fingerprint", + "template-id": "mx-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/mx-fingerprint.yaml", "info": { - "name": "DNS DMARC - Detect", + "name": "MX Record Detection", "author": [ - "juliosmelo" + "pdteam" ], "tags": [ "dns", - "dmarc" + "mx" ], - "description": "DNS DMARC information was detected.\n", + "description": "An MX record was detected. MX records direct emails to a mail exchange server.", "reference": [ - "https://dmarc.org/", - "https://dmarc.org/wiki/faq#why_is_dmarc_important.3f" + "https://www.cloudflare.com/learning/dns/dns-records/dns-mx-record/", + "https://mxtoolbox.com/" ], "severity": "info", "metadata": { @@ -611669,17 +607681,17 @@ "cve-id": null, "cwe-id": [ "cwe-200" - ], - "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + ] } }, "type": "dns", "host": "datasubvention.beta.gouv.fr.", - "matched-at": "_dmarc.datasubvention.beta.gouv.fr", + "matched-at": "datasubvention.beta.gouv.fr", "extracted-results": [ - "\"v=DMARC1;p=none;\"" + "10 mx1.alwaysdata.com.", + "20 mx2.alwaysdata.com." ], - "timestamp": "2024-01-07T21:56:28.740152158Z", + "timestamp": "2024-01-14T21:26:35.62365034Z", "matcher-status": true }, { @@ -611717,47 +607729,82 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:35.965278894Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:26:42.940262923Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, { - "template": "http/misconfiguration/httponly-cookie-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/httponly-cookie-detect", - "template-id": "httponly-cookie-detect", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/httponly-cookie-detect.yaml", + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", "info": { - "name": "HttpOnly Cookie - Detect", + "name": "HTTP Missing Security Headers", "author": [ - "mr. bobo hp" + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" ], "tags": [ "misconfig", - "http", - "cookie", + "headers", "generic" ], - "description": "Checks whether cookies in the HTTP response contain the HttpOnly attribute. If the HttpOnly flag is set, it means that the cookie is HTTP-only\n", - "reference": [ - "https://stackoverflow.com/questions/4316539/how-do-i-test-httponly-cookie-flag" + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://datasubvention.beta.gouv.fr", + "matched-at": "https://datasubvention.beta.gouv.fr", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:05.659758778Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", "severity": "info", "metadata": { - "max-request": 1, - "verified": true - }, - "classification": { - "cve-id": null, - "cwe-id": null, - "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + "max-request": 1 } }, + "matcher-name": "permissions-policy", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:36.061704009Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:05.659834878Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -611789,12 +607836,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:58.095705905Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:05.659852481Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -611826,12 +607873,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:58.09578853Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:05.659881094Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -611867,8 +607914,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:58.095817955Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:05.659898646Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -611900,12 +607947,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:58.095840617Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:05.659915107Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -611937,12 +607984,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:58.095856397Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:05.659936106Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -611978,8 +608025,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:58.095876965Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:05.659951695Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -612011,86 +608058,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", - "type": "http", - "host": "https://datasubvention.beta.gouv.fr", - "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:58.095894097Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-content-type-options", - "type": "http", - "host": "https://datasubvention.beta.gouv.fr", - "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:58.09591171Z", - "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", - "matcher-status": true - }, - { - "template": "http/misconfiguration/http-missing-security-headers.yaml", - "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", - "template-id": "http-missing-security-headers", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", - "info": { - "name": "HTTP Missing Security Headers", - "author": [ - "socketz", - "geeknik", - "g4l1t0", - "convisoappsec", - "kurohost", - "dawid-czarnecki", - "forgedhallpass", - "jub0bs" - ], - "tags": [ - "misconfig", - "headers", - "generic" - ], - "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", - "severity": "info", - "metadata": { - "max-request": 1 - } - }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "clear-site-data", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:56:58.095926598Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:05.659970449Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -612112,12 +608085,12 @@ "max-request": 1 } }, - "matcher-name": "elementor", + "matcher-name": "cloudflare", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:57:03.197916337Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:10.029948606Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -612139,12 +608112,12 @@ "max-request": 1 } }, - "matcher-name": "cloudflare", + "matcher-name": "elementor", "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:57:03.197988351Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:10.029989632Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr'", "matcher-status": true }, @@ -612180,8 +608153,8 @@ "extracted-results": [ "https://static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317" ], - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:57:07.816900042Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:14.871366579Z", "curl-command": "curl -X 'GET' -d '' -H 'Host: datasubvention.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr/'", "matcher-status": true }, @@ -612220,8 +608193,8 @@ "type": "http", "host": "https://datasubvention.beta.gouv.fr", "matched-at": "https://datasubvention.beta.gouv.fr/", - "ip": "162.159.138.9", - "timestamp": "2024-01-07T21:57:12.657793482Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:27:19.732949628Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: datasubvention.beta.gouv.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://datasubvention.beta.gouv.fr/'", "matcher-status": true }, @@ -612251,8 +608224,8 @@ "extracted-results": [ "Cloudflare, Inc." ], - "ip": "162.159.138.9", - "timestamp": "2024-01-07T22:00:07.399471586Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:30:14.726922986Z", "matcher-status": true }, { @@ -612281,8 +608254,8 @@ "extracted-results": [ "datasubvention.beta.gouv.fr" ], - "ip": "162.159.138.9", - "timestamp": "2024-01-07T22:00:07.399631596Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:30:14.727035615Z", "matcher-status": true }, { @@ -612312,8 +608285,8 @@ "extracted-results": [ "tls12" ], - "ip": "162.159.138.9", - "timestamp": "2024-01-07T22:00:07.415910366Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:30:14.767783646Z", "matcher-status": true }, { @@ -612343,8 +608316,8 @@ "extracted-results": [ "tls13" ], - "ip": "162.159.138.9", - "timestamp": "2024-01-07T22:00:07.569663736Z", + "ip": "162.159.137.9", + "timestamp": "2024-01-14T21:30:14.830263519Z", "matcher-status": true } ], @@ -612352,7 +608325,7 @@ { "requestedUrl": "https://datasubvention.beta.gouv.fr/", "finalUrl": "https://datasubvention.beta.gouv.fr/", - "fetchTime": "2024-01-07T21:52:11.703Z", + "fetchTime": "2024-01-14T21:22:28.391Z", "runWarnings": [], "categories": { "performance": { @@ -612415,53 +608388,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 15986, + "numericValue": 15289, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2367, - "firstMeaningfulPaint": 3729, - "largestContentfulPaint": 22825, - "interactive": 15986, - "speedIndex": 11157, - "totalBlockingTime": 661, - "maxPotentialFID": 612, + "firstContentfulPaint": 2206, + "firstMeaningfulPaint": 3961, + "largestContentfulPaint": 23097, + "interactive": 15289, + "speedIndex": 8522, + "totalBlockingTime": 641, + "maxPotentialFID": 442, "cumulativeLayoutShift": 0.007050130208333333, "cumulativeLayoutShiftMainFrame": 0.007050130208333333, "totalCumulativeLayoutShift": 0.007050130208333333, "observedTimeOrigin": 0, - "observedTimeOriginTs": 340186541, + "observedTimeOriginTs": 325687843, "observedNavigationStart": 0, - "observedNavigationStartTs": 340186541, - "observedFirstPaint": 429, - "observedFirstPaintTs": 340615691, - "observedFirstContentfulPaint": 429, - "observedFirstContentfulPaintTs": 340615691, - "observedFirstContentfulPaintAllFrames": 429, - "observedFirstContentfulPaintAllFramesTs": 340615691, - "observedFirstMeaningfulPaint": 645, - "observedFirstMeaningfulPaintTs": 340831616, - "observedLargestContentfulPaint": 1408, - "observedLargestContentfulPaintTs": 341594872, - "observedLargestContentfulPaintAllFrames": 1408, - "observedLargestContentfulPaintAllFramesTs": 341594872, - "observedTraceEnd": 3812, - "observedTraceEndTs": 343998213, - "observedLoad": 1482, - "observedLoadTs": 341668616, - "observedDomContentLoaded": 741, - "observedDomContentLoadedTs": 340927805, + "observedNavigationStartTs": 325687843, + "observedFirstPaint": 349, + "observedFirstPaintTs": 326037014, + "observedFirstContentfulPaint": 349, + "observedFirstContentfulPaintTs": 326037014, + "observedFirstContentfulPaintAllFrames": 349, + "observedFirstContentfulPaintAllFramesTs": 326037014, + "observedFirstMeaningfulPaint": 531, + "observedFirstMeaningfulPaintTs": 326218671, + "observedLargestContentfulPaint": 2201, + "observedLargestContentfulPaintTs": 327889216, + "observedLargestContentfulPaintAllFrames": 2201, + "observedLargestContentfulPaintAllFramesTs": 327889216, + "observedTraceEnd": 3746, + "observedTraceEndTs": 329433718, + "observedLoad": 1420, + "observedLoadTs": 327107975, + "observedDomContentLoaded": 554, + "observedDomContentLoadedTs": 326242049, "observedCumulativeLayoutShift": 0.007050130208333333, "observedCumulativeLayoutShiftMainFrame": 0.007050130208333333, "observedTotalCumulativeLayoutShift": 0.007050130208333333, - "observedFirstVisualChange": 433, - "observedFirstVisualChangeTs": 340619541, - "observedLastVisualChange": 2866, - "observedLastVisualChangeTs": 343052541, - "observedSpeedIndex": 1263, - "observedSpeedIndexTs": 341449841 + "observedFirstVisualChange": 349, + "observedFirstVisualChangeTs": 326036843, + "observedLastVisualChange": 2682, + "observedLastVisualChangeTs": 328369843, + "observedSpeedIndex": 1130, + "observedSpeedIndexTs": 326818093 }, { "lcpInvalidated": false @@ -612479,23 +608452,23 @@ "type": "debugdata", "items": [ { - "numRequests": 110, + "numRequests": 108, "numScripts": 43, "numStylesheets": 21, "numFonts": 4, - "numTasks": 2716, - "numTasksOver10ms": 18, + "numTasks": 2587, + "numTasksOver10ms": 16, "numTasksOver25ms": 6, "numTasksOver50ms": 3, "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 7.7940000000000005, - "throughput": 45714657.739161365, - "maxRtt": 147.595, - "maxServerLatency": 183.945, - "totalByteWeight": 3950581, - "totalTaskTime": 1079.5000000000027, - "mainDocumentTransferSize": 30346 + "rtt": 5.154000000000001, + "throughput": 110334530.5665675, + "maxRtt": 81.911, + "maxServerLatency": 57.50300000000001, + "totalByteWeight": 4299743, + "totalTaskTime": 1031.7099999999966, + "mainDocumentTransferSize": 30296 } ] } @@ -612617,7 +608590,186 @@ "url": "https://cje.beta.gouv.fr", "category": "startup", "betaId": "pass.engagement.jeune", - "http": null, + "http": { + "url": "https://cje.beta.gouv.fr", + "algorithm_version": 2, + "end_time": "Sun, 14 Jan 2024 21:41:44 GMT", + "grade": "F", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "no-cache", + "Connection": "close", + "Content-Type": "text/html", + "X-CleverCloudUpgrade": "true" + }, + "scan_id": 46511731, + "score": 0, + "start_time": "Sun, 14 Jan 2024 21:41:39 GMT", + "state": "FINISHED", + "status_code": 503, + "tests_failed": 6, + "tests_passed": 6, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": null, + "redirects": false, + "route": [ + "http://cje.beta.gouv.fr/" + ], + "status_code": null + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "preload": false, + "preloaded": false + }, + "pass": false, + "result": "hsts-not-implemented", + "score_description": "HTTP Strict Transport Security (HSTS) header not implemented", + "score_modifier": -20 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 + } + } + }, "updownio": null, "nmap": { "host": "cje.beta.gouv.fr", @@ -612705,7 +608857,8 @@ }, { "service": { - "name": "cpdlc", + "name": "http", + "product": "JBoss Enterprise Application Platform", "id": "5911", "vulnerabilities": [] } @@ -612732,70 +608885,70 @@ "testssl": [ { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -612803,7 +608956,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -612811,7 +608964,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -612819,7 +608972,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -612827,7 +608980,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -612835,7 +608988,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -612843,532 +608996,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -613376,7 +609529,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -613385,7 +609538,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -613394,7 +609547,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -613403,7 +609556,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -613412,7 +609565,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -613420,7 +609573,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -613429,7 +609582,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -613438,7 +609591,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -613447,7 +609600,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -613456,14 +609609,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -613472,7 +609625,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -613481,7 +609634,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -613490,7 +609643,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -613499,7 +609652,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -613508,7 +609661,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -613517,7 +609670,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -613526,7 +609679,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -613535,7 +609688,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -613544,7 +609697,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -613553,392 +609706,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.216", + "ip": "cje.beta.gouv.fr/91.208.207.215", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -613946,7 +610099,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -613954,7 +610107,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -613962,7 +610115,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -613970,7 +610123,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -613978,7 +610131,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -613986,532 +610139,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE7TCCA9WgAwIBAgISBHKweHaYHM62+n9o+K46PuUsMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjQwNTU5NDNaFw0yNDAyMjIwNTU5NDJaMBsxGTAXBgNVBAMTEGNqZS5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85LF+K3ZkuwdYSi1QkMvC5MbRimO0Y/g7G2ddO+WvNYyMaZqKR/G1dVuXYv4z/EmNJ0LoRv6eGtXv/bHJ507VxxsaYjyXjLIwwE/Ua4HxIonwB6SNkn2MMQWunXaG2Nf9eI1iBHXrBND0bHcTdmzYXX42YMNntlgERG0z/8gec6cIstnf77Pdm73uH2DrLs2KX7l6AfFQvf1HyvfgGM1lZLgcGcAQQBjEwlFpG71rwi7dkTl+i+/BchN/MXHZLgAEGrXiUmTlwiyz5lrXZqdskqII7MqwZq4ogmJUxYvJmqq6BmQJjiJhj6cd4nPqUNSZHwgR6rShVDLPVkMzs0IjAgMBAAGjggISMIICDjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAiDpijaSNxfIB4ada91JHqKUeTIMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMBsGA1UdEQQUMBKCEGNqZS5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYwAIJCEAAAEAwBGMEQCICs+JRoM6Xd1NbYB6O8bZJJmOCPJChu6VwBcbdO6L9YRAiBraW5XehD8BD1MUoQ+h3JRhKpIlAeSk2svfWH0Bhu8aQB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjAAgkI4AAAQDAEgwRgIhAOiv8UZPK/i5wWsU/mOdOeHa2npmm1ZW8/REw8fqAQeLAiEAl7t5ZDG4ju04BqBZ+vx4jtZAcPjFwRd6LWed2UZXTKMwDQYJKoZIhvcNAQELBQADggEBALZh0/IwujsDQJck0e+No1qch82Y2DR4zq5khP0lFhE051eH8XOJ8MyWwjE8u5yJFKQ0aBVADyL7b+68nKVBKUMAEAX+b0U8MxKRGtm41+sS+toKWq68IGiLYFnxW7vmgsSvKkC5aml9wVoohLvRnjt33fisgLJx8oobPUdHRFz/CD5bXZSCb5hCHEROQeuBBskpWATZ+JKhdPM29z2AhbtG2wZCzkwWyfL4wDm3+1C6ZmzbHd36+Ma/jR+KjFSOStu5db3//AbVfyFJ0TckwqgVrpzZU9hPa78RO3P3qHSVzjXw67NLOpu/ZCGIC30W6ju/IcGxd7A2G3KYAuxSSpA=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -614519,7 +610672,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -614528,7 +610681,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -614537,7 +610690,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -614546,7 +610699,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -614555,7 +610708,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -614563,7 +610716,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -614572,7 +610725,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -614581,7 +610734,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -614590,7 +610743,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -614599,14 +610752,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -614615,7 +610768,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -614624,7 +610777,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -614633,7 +610786,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -614642,7 +610795,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -614651,7 +610804,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -614660,7 +610813,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -614669,7 +610822,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -614678,7 +610831,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -614687,7 +610840,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -614696,392 +610849,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.214", + "ip": "cje.beta.gouv.fr/46.252.181.104", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -615089,7 +611242,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -615097,7 +611250,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -615105,7 +611258,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -615113,7 +611266,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -615121,7 +611274,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -615129,532 +611282,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -615662,7 +611815,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -615671,7 +611824,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -615680,7 +611833,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -615689,7 +611842,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -615698,7 +611851,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -615706,7 +611859,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -615715,7 +611868,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -615724,7 +611877,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -615733,7 +611886,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -615742,14 +611895,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -615758,7 +611911,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -615767,7 +611920,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -615776,7 +611929,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -615785,7 +611938,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -615794,7 +611947,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -615803,7 +611956,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -615812,7 +611965,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -615821,7 +611974,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -615830,7 +611983,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -615839,392 +611992,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.217", + "ip": "cje.beta.gouv.fr/91.208.207.218", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -616232,7 +612385,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -616240,7 +612393,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -616248,7 +612401,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -616256,7 +612409,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -616264,7 +612417,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -616272,532 +612425,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -616805,7 +612958,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -616814,7 +612967,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -616823,7 +612976,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -616832,7 +612985,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -616841,7 +612994,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -616849,7 +613002,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -616858,7 +613011,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -616867,7 +613020,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -616876,7 +613029,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -616885,14 +613038,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -616901,7 +613054,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -616910,7 +613063,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -616919,7 +613072,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -616928,7 +613081,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -616937,7 +613090,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -616946,7 +613099,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -616955,7 +613108,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -616964,7 +613117,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -616973,7 +613126,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -616982,392 +613135,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.218", + "ip": "cje.beta.gouv.fr/91.208.207.217", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -617375,7 +613528,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -617383,7 +613536,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -617391,7 +613544,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -617399,7 +613552,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -617407,7 +613560,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -617415,532 +613568,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE7TCCA9WgAwIBAgISBHKweHaYHM62+n9o+K46PuUsMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjQwNTU5NDNaFw0yNDAyMjIwNTU5NDJaMBsxGTAXBgNVBAMTEGNqZS5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85LF+K3ZkuwdYSi1QkMvC5MbRimO0Y/g7G2ddO+WvNYyMaZqKR/G1dVuXYv4z/EmNJ0LoRv6eGtXv/bHJ507VxxsaYjyXjLIwwE/Ua4HxIonwB6SNkn2MMQWunXaG2Nf9eI1iBHXrBND0bHcTdmzYXX42YMNntlgERG0z/8gec6cIstnf77Pdm73uH2DrLs2KX7l6AfFQvf1HyvfgGM1lZLgcGcAQQBjEwlFpG71rwi7dkTl+i+/BchN/MXHZLgAEGrXiUmTlwiyz5lrXZqdskqII7MqwZq4ogmJUxYvJmqq6BmQJjiJhj6cd4nPqUNSZHwgR6rShVDLPVkMzs0IjAgMBAAGjggISMIICDjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAiDpijaSNxfIB4ada91JHqKUeTIMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMBsGA1UdEQQUMBKCEGNqZS5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYwAIJCEAAAEAwBGMEQCICs+JRoM6Xd1NbYB6O8bZJJmOCPJChu6VwBcbdO6L9YRAiBraW5XehD8BD1MUoQ+h3JRhKpIlAeSk2svfWH0Bhu8aQB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjAAgkI4AAAQDAEgwRgIhAOiv8UZPK/i5wWsU/mOdOeHa2npmm1ZW8/REw8fqAQeLAiEAl7t5ZDG4ju04BqBZ+vx4jtZAcPjFwRd6LWed2UZXTKMwDQYJKoZIhvcNAQELBQADggEBALZh0/IwujsDQJck0e+No1qch82Y2DR4zq5khP0lFhE051eH8XOJ8MyWwjE8u5yJFKQ0aBVADyL7b+68nKVBKUMAEAX+b0U8MxKRGtm41+sS+toKWq68IGiLYFnxW7vmgsSvKkC5aml9wVoohLvRnjt33fisgLJx8oobPUdHRFz/CD5bXZSCb5hCHEROQeuBBskpWATZ+JKhdPM29z2AhbtG2wZCzkwWyfL4wDm3+1C6ZmzbHd36+Ma/jR+KjFSOStu5db3//AbVfyFJ0TckwqgVrpzZU9hPa78RO3P3qHSVzjXw67NLOpu/ZCGIC30W6ju/IcGxd7A2G3KYAuxSSpA=\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -617948,7 +614101,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -617957,7 +614110,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -617966,7 +614119,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -617975,7 +614128,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -617984,7 +614137,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -617992,7 +614145,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -618001,7 +614154,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -618010,7 +614163,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -618019,7 +614172,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -618028,14 +614181,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -618044,7 +614197,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -618053,7 +614206,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -618062,7 +614215,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -618071,7 +614224,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -618080,7 +614233,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -618089,7 +614242,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -618098,7 +614251,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -618107,7 +614260,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -618116,7 +614269,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -618125,322 +614278,322 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/46.252.181.104", + "ip": "cje.beta.gouv.fr/185.42.117.108", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" @@ -618799,7 +614952,7 @@ "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", @@ -618917,15 +615070,15 @@ "id": "intermediate_cert_notAfter <#1>", "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", "ip": "cje.beta.gouv.fr/46.252.181.103", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", @@ -619590,70 +615743,70 @@ }, { "id": "service", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -619661,7 +615814,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -619669,7 +615822,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -619677,7 +615830,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -619685,7 +615838,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -619693,7 +615846,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -619701,532 +615854,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -620234,7 +616387,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -620243,7 +616396,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -620252,7 +616405,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -620261,7 +616414,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -620270,7 +616423,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -620278,7 +616431,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -620287,7 +616440,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -620296,7 +616449,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -620305,7 +616458,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -620314,14 +616467,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -620330,7 +616483,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -620339,7 +616492,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -620348,7 +616501,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -620357,7 +616510,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -620366,7 +616519,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -620375,7 +616528,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -620384,7 +616537,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -620393,7 +616546,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -620402,7 +616555,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -620411,392 +616564,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/91.208.207.215", + "ip": "cje.beta.gouv.fr/91.208.207.214", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -620804,7 +616957,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -620812,7 +616965,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -620820,7 +616973,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -620828,7 +616981,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -620836,7 +616989,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -620844,532 +616997,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -621377,7 +617530,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -621386,7 +617539,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -621395,7 +617548,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -621404,7 +617557,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -621413,7 +617566,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -621421,7 +617574,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -621430,7 +617583,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -621439,7 +617592,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -621448,7 +617601,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -621457,14 +617610,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -621473,7 +617626,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -621482,7 +617635,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -621491,7 +617644,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -621500,7 +617653,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -621509,7 +617662,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -621518,7 +617671,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -621527,7 +617680,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -621536,7 +617689,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -621545,7 +617698,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -621554,392 +617707,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/185.42.117.109", + "ip": "cje.beta.gouv.fr/91.208.207.216", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "service", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -621947,7 +618100,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -621955,7 +618108,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -621963,7 +618116,7 @@ }, { "id": "cipherlist_LOW", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -621971,7 +618124,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -621979,7 +618132,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -621987,532 +618140,532 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "cipher-tls1_2_xc030", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc030 ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" }, { "id": "cipher-tls1_2_xc02f", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "TLSv1.2 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256" }, { "id": "supportedciphers_TLSv1_2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "cipher_order", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "NOT a cipher order configured" }, { "id": "FS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1" }, { "id": "TLS_extensions", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "'server name/#0' 'renegotiation info/#65281' 'key share/#51' 'supported versions/#43' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no -- no lifetime advertised" }, { "id": "SSL_sessionID_support", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "yes" }, { "id": "sessionresumption_ticket", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "sessionresumption_ID", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not supported" }, { "id": "TLS_timestamp", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "random" }, { "id": "certificate_compression", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "clientAuth", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "none" }, { "id": "cert_numbers", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "1" }, { "id": "cert_signatureAlgorithm", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "SHA256 with RSA" }, { "id": "cert_keySize", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "RSA 2048 bits (exponent is 65537)" }, { "id": "cert_keyUsage", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Digital Signature, Key Encipherment" }, { "id": "cert_extKeyUsage", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLS Web Server Authentication, TLS Web Client Authentication" }, { "id": "cert_serialNumber", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0472B07876981CCEB6FA7F68F8AE3A3EE52C" }, { "id": "cert_serialNumberLen", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "18" }, { "id": "cert_fingerprintSHA1", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "E4C79E92BB3E247F70AFE84C3A7C2560D59CF983" }, { "id": "cert_fingerprintSHA256", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "cert", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIE7TCCA9WgAwIBAgISBHKweHaYHM62+n9o+K46PuUsMA0GCSqGSIb3DQEBCwUAMDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJSMzAeFw0yMzExMjQwNTU5NDNaFw0yNDAyMjIwNTU5NDJaMBsxGTAXBgNVBAMTEGNqZS5iZXRhLmdvdXYuZnIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85LF+K3ZkuwdYSi1QkMvC5MbRimO0Y/g7G2ddO+WvNYyMaZqKR/G1dVuXYv4z/EmNJ0LoRv6eGtXv/bHJ507VxxsaYjyXjLIwwE/Ua4HxIonwB6SNkn2MMQWunXaG2Nf9eI1iBHXrBND0bHcTdmzYXX42YMNntlgERG0z/8gec6cIstnf77Pdm73uH2DrLs2KX7l6AfFQvf1HyvfgGM1lZLgcGcAQQBjEwlFpG71rwi7dkTl+i+/BchN/MXHZLgAEGrXiUmTlwiyz5lrXZqdskqII7MqwZq4ogmJUxYvJmqq6BmQJjiJhj6cd4nPqUNSZHwgR6rShVDLPVkMzs0IjAgMBAAGjggISMIICDjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAiDpijaSNxfIB4ada91JHqKUeTIMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMBsGA1UdEQQUMBKCEGNqZS5iZXRhLmdvdXYuZnIwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYwAIJCEAAAEAwBGMEQCICs+JRoM6Xd1NbYB6O8bZJJmOCPJChu6VwBcbdO6L9YRAiBraW5XehD8BD1MUoQ+h3JRhKpIlAeSk2svfWH0Bhu8aQB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjAAgkI4AAAQDAEgwRgIhAOiv8UZPK/i5wWsU/mOdOeHa2npmm1ZW8/REw8fqAQeLAiEAl7t5ZDG4ju04BqBZ+vx4jtZAcPjFwRd6LWed2UZXTKMwDQYJKoZIhvcNAQELBQADggEBALZh0/IwujsDQJck0e+No1qch82Y2DR4zq5khP0lFhE051eH8XOJ8MyWwjE8u5yJFKQ0aBVADyL7b+68nKVBKUMAEAX+b0U8MxKRGtm41+sS+toKWq68IGiLYFnxW7vmgsSvKkC5aml9wVoohLvRnjt33fisgLJx8oobPUdHRFz/CD5bXZSCb5hCHEROQeuBBskpWATZ+JKhdPM29z2AhbtG2wZCzkwWyfL4wDm3+1C6ZmzbHd36+Ma/jR+KjFSOStu5db3//AbVfyFJ0TckwqgVrpzZU9hPa78RO3P3qHSVzjXw67NLOpu/ZCGIC30W6ju/IcGxd7A2G3KYAuxSSpA=\n-----END CERTIFICATE-----" }, { "id": "cert_commonName", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "cje.beta.gouv.fr" }, { "id": "cert_commonName_wo_SNI", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "request w/o SNI didn't succeed" }, { "id": "cert_subjectAltName", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr" }, { "id": "cert_trust", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "Ok via SAN and CN (SNI mandatory)" }, { "id": "cert_chain_of_trust", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "passed." }, { "id": "cert_certificatePolicies_EV", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_expirationStatus", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", - "finding": "45 >= 30 days" + "finding": "38 >= 30 days" }, { "id": "cert_notBefore", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "cert_notAfter", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-02-22 05:59" }, { "id": "cert_extlifeSpan", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "4" }, { "id": "certs_list_ordering_problem", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "yes" }, { "id": "cert_caIssuers", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "49B76DEF13D04E5444DAFAF6E47E7DE3116B6E467DEE7CABBBB246D3F28B67A6" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2023-11-24 05:59" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-22 05:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "cje.beta.gouv.fr <-- R3" }, { "id": "intermediate_cert <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMTDkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1owTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XCov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpLwYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+DLtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5ysR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZXmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBcSLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2qlPRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TNDTwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwSwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx+tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEBATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQub3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9EU1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26ZtuMA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuGWCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9Ohe8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFCDfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#3>", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "WARN", "finding": "Unexpected 503 Service Unavailable @ '/'" }, { "id": "HTTP_clock_skew", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Got no HTTP time, maybe try different URL?" }, { "id": "HSTS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "HPKP", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "Cache-Control", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -622520,7 +618673,7 @@ }, { "id": "heartbleed", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -622529,7 +618682,7 @@ }, { "id": "CCS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -622538,7 +618691,7 @@ }, { "id": "ticketbleed", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -622547,7 +618700,7 @@ }, { "id": "ROBOT", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -622556,7 +618709,7 @@ }, { "id": "secure_renego", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -622564,7 +618717,7 @@ }, { "id": "secure_client_renego", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -622573,7 +618726,7 @@ }, { "id": "CRIME_TLS", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -622582,7 +618735,7 @@ }, { "id": "BREACH", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -622591,7 +618744,7 @@ }, { "id": "POODLE_SSL", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -622600,14 +618753,14 @@ }, { "id": "fallback_SCSV", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -622616,7 +618769,7 @@ }, { "id": "FREAK", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -622625,7 +618778,7 @@ }, { "id": "DROWN", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -622634,7 +618787,7 @@ }, { "id": "DROWN_hint", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -622643,7 +618796,7 @@ }, { "id": "LOGJAM", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -622652,7 +618805,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -622661,7 +618814,7 @@ }, { "id": "BEAST", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -622670,7 +618823,7 @@ }, { "id": "LUCKY13", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -622679,7 +618832,7 @@ }, { "id": "winshock", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -622688,7 +618841,7 @@ }, { "id": "RC4", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -622697,332 +618850,332 @@ }, { "id": "clientsimulation-android_60", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_81", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_90", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_X", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_11", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-android_12", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-ie_6_xp", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win81", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_CHACHA20_POLY1305_SHA256" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java_7u25", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-java1703", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "clientsimulation-libressl_283", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305" }, { "id": "clientsimulation-openssl_102e", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_128_GCM_SHA256" }, { "id": "rating_spec", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "cipher_strength_score_weighted", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "36" }, { "id": "final_score", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "93" }, { "id": "overall_grade", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "OK", "finding": "A" }, { "id": "grade_cap_reason_1", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", "finding": "Grade capped to A. HSTS is not offered" }, { "id": "scanTime", - "ip": "cje.beta.gouv.fr/185.42.117.108", + "ip": "cje.beta.gouv.fr/185.42.117.109", "port": "443", "severity": "INFO", - "finding": "527" + "finding": "864" } ], "thirdparties": { @@ -623037,7 +619190,7 @@ "endpoints": [ { "hostname": "cje.beta.gouv.fr", - "ip": "91.208.207.217", + "ip": "91.208.207.216", "geoip": { "continent": { "code": "EU", @@ -623104,7 +619257,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 21:56:31", + "@generated": "Sun, 14 Jan 2024 21:41:07", "site": [ { "@name": "https://cje.beta.gouv.fr", @@ -623193,7 +619346,722 @@ } ] }, - "nuclei": [], + "nuclei": [ + { + "template": "dns/dns-saas-service-detection.yaml", + "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", + "template-id": "dns-saas-service-detection", + "template-path": "/home/runner/nuclei-templates/dns/dns-saas-service-detection.yaml", + "info": { + "name": "DNS SaaS Service Detection", + "author": [ + "noah @thesubtlety", + "pdteam" + ], + "tags": [ + "dns", + "service" + ], + "description": "A CNAME DNS record was discovered", + "reference": [ + "https://ns1.com/resources/cname", + "https://www.theregister.com/2021/02/24/dns_cname_tracking/", + "https://www.ionos.com/digitalguide/hosting/technical-matters/cname-record/" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "dns", + "host": "cje.beta.gouv.fr.", + "matched-at": "cje.beta.gouv.fr", + "extracted-results": [ + "domain.par.clever-cloud.com." + ], + "timestamp": "2024-01-14T21:56:02.252225687Z", + "matcher-status": true + }, + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "cje.beta.gouv.fr.", + "matched-at": "cje.beta.gouv.fr", + "timestamp": "2024-01-14T21:56:02.287100938Z", + "matcher-status": true + }, + { + "template": "http/technologies/switch-protocol.yaml", + "template-url": "https://templates.nuclei.sh/public/switch-protocol", + "template-id": "switch-protocol", + "template-path": "/home/runner/nuclei-templates/http/technologies/switch-protocol.yaml", + "info": { + "name": "Switching Protocol Detection", + "author": [ + "pdteam" + ], + "tags": [ + "protocol", + "switching", + "tech", + "websocket", + "h2c" + ], + "severity": "info", + "metadata": { + "max-request": 1, + "shodan-query": "\"connection: upgrade\"", + "verified": true + } + }, + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:56:19.481967427Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/technologies/metatag-cms.yaml", + "template-url": "https://templates.nuclei.sh/public/metatag-cms", + "template-id": "metatag-cms", + "template-path": "/home/runner/nuclei-templates/http/technologies/metatag-cms.yaml", + "info": { + "name": "Metatag CMS Detection", + "author": [ + "dadevel" + ], + "tags": [ + "tech", + "cms" + ], + "description": "Generic CMS Detection using html meta generator tag", + "reference": [ + "https://www.w3schools.com/tags/att_meta_name.asp" + ], + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "extracted-results": [ + "HTML Tidy for Linux (vers 25 March 2009), see www.w3.org" + ], + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:56:53.153887311Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "strict-transport-security", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529651616Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "permissions-policy", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529693374Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-content-type-options", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529707941Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "referrer-policy", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.52972369Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "clear-site-data", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529767061Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-embedder-policy", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529783783Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-opener-policy", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529798059Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "cross-origin-resource-policy", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529812056Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "content-security-policy", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529828416Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-frame-options", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529844256Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "http/misconfiguration/http-missing-security-headers.yaml", + "template-url": "https://templates.nuclei.sh/public/http-missing-security-headers", + "template-id": "http-missing-security-headers", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/http-missing-security-headers.yaml", + "info": { + "name": "HTTP Missing Security Headers", + "author": [ + "socketz", + "geeknik", + "g4l1t0", + "convisoappsec", + "kurohost", + "dawid-czarnecki", + "forgedhallpass", + "jub0bs" + ], + "tags": [ + "misconfig", + "headers", + "generic" + ], + "description": "This template searches for missing HTTP security headers. The impact of these missing headers can vary.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "matcher-name": "x-permitted-cross-domain-policies", + "type": "http", + "host": "https://cje.beta.gouv.fr", + "matched-at": "https://cje.beta.gouv.fr", + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:57:06.529854816Z", + "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://cje.beta.gouv.fr'", + "matcher-status": true + }, + { + "template": "network/detection/openssh-detect.yaml", + "template-url": "https://templates.nuclei.sh/public/openssh-detect", + "template-id": "openssh-detect", + "template-path": "/home/runner/nuclei-templates/network/detection/openssh-detect.yaml", + "info": { + "name": "OpenSSH Service - Detect", + "author": [ + "r3dg33k", + "daffainfo", + "iamthefrogy" + ], + "tags": [ + "seclists", + "network", + "ssh", + "openssh", + "detect" + ], + "description": "OpenSSH service was detected.\n", + "reference": [ + "http://www.openwall.com/lists/oss-security/2016/08/01/2", + "http://www.openwall.com/lists/oss-security/2018/08/15/5", + "http://seclists.org/fulldisclosure/2016/jul/51", + "https://nvd.nist.gov/vuln/detail/cve-2016-6210", + "https://nvd.nist.gov/vuln/detail/cve-2018-15473" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ], + "cvss-metrics": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" + } + }, + "type": "tcp", + "host": "cje.beta.gouv.fr:22", + "matched-at": "cje.beta.gouv.fr:22", + "extracted-results": [ + "SSH-2.0-OpenSSH_9.4" + ], + "ip": "91.208.207.214", + "timestamp": "2024-01-14T21:58:41.582271811Z", + "matcher-status": true + }, + { + "template": "ssl/detect-ssl-issuer.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-issuer", + "template-id": "ssl-issuer", + "template-path": "/home/runner/nuclei-templates/ssl/detect-ssl-issuer.yaml", + "info": { + "name": "Detect SSL Certificate Issuer", + "author": [ + "lingtren" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "cje.beta.gouv.fr", + "matched-at": "cje.beta.gouv.fr:443", + "extracted-results": [ + "Let's Encrypt" + ], + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:58:52.944740023Z", + "matcher-status": true + }, + { + "template": "ssl/ssl-dns-names.yaml", + "template-url": "https://templates.nuclei.sh/public/ssl-dns-names", + "template-id": "ssl-dns-names", + "template-path": "/home/runner/nuclei-templates/ssl/ssl-dns-names.yaml", + "info": { + "name": "SSL DNS Names", + "author": [ + "pdteam" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate.\n", + "severity": "info", + "metadata": { + "max-request": 1 + } + }, + "type": "ssl", + "host": "cje.beta.gouv.fr", + "matched-at": "cje.beta.gouv.fr:443", + "extracted-results": [ + "cje.beta.gouv.fr" + ], + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:58:52.944862813Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "cje.beta.gouv.fr", + "matched-at": "cje.beta.gouv.fr:443", + "extracted-results": [ + "tls12" + ], + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:59:15.030628108Z", + "matcher-status": true + }, + { + "template": "ssl/tls-version.yaml", + "template-url": "https://templates.nuclei.sh/public/tls-version", + "template-id": "tls-version", + "template-path": "/home/runner/nuclei-templates/ssl/tls-version.yaml", + "info": { + "name": "TLS Version - Detect", + "author": [ + "pdteam", + "pussycat0x" + ], + "tags": [ + "ssl", + "tls" + ], + "description": "TLS version detection is a security process used to determine the version of the Transport Layer Security (TLS) protocol used by a computer or server.\nIt is important to detect the TLS version in order to ensure secure communication between two computers or servers.\n", + "severity": "info", + "metadata": { + "max-request": 4 + } + }, + "type": "ssl", + "host": "cje.beta.gouv.fr", + "matched-at": "cje.beta.gouv.fr:443", + "extracted-results": [ + "tls13" + ], + "ip": "185.42.117.108", + "timestamp": "2024-01-14T21:59:27.81517241Z", + "matcher-status": true + } + ], "lhr": null, "screenshot": true, "stats": { @@ -623266,6 +620134,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "F", "nmapGrade": "B", "nmapOpenPortsCount": 14, "nmapOpenPortsGrade": "F", @@ -623289,7 +620158,213 @@ "url": "https://aplypro.beta.gouv.fr", "category": "startup", "betaId": "valorisation.des.stages.pro", - "http": null, + "http": { + "url": "https://aplypro.beta.gouv.fr", + "algorithm_version": 2, + "end_time": "Sun, 14 Jan 2024 21:41:36 GMT", + "grade": "C", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Cache-Control": "max-age=0, private, must-revalidate", + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 14 Jan 2024 21:41:35 GMT", + "ETag": "W/\"46bda07670ea24d2af7b5290daeed78b\"", + "Link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", + "Referrer-Policy": "strict-origin-when-cross-origin", + "Set-Cookie": "_aplypro_session=IZASMD1SwVF2Kdwq7Y2%2Fr8IN%2FSZf3T9R9FEjyDof6OlCiJob5Z1V%2B7xO7SvOE2kCU4DllbGRZLq7akW7xx1A1cXvlFudOZkDZntalGOU5AOmRzOGDDutbeF4zD4UYGAOIQDJog6SX7gYxB48FerGEbiw2qs5zMDYnamPTdS7SYnwW32qPY968ue5Rz%2BANkEe1wodGKhY8CyJFwX86jxUE8wr%2FZDlXGdTx5AFTDch9YfiQ1lD%2FtPnSHNTzcDk3YA3pUuusdsa0pLWVdlOLvgNom93BBw6LHju--BDOKX3Ol%2Bx4aXMWx--HX25ARfBizN33yCPtpebTQ%3D%3D; path=/; HttpOnly; SameSite=Lax", + "Strict-Transport-Security": "max-age=31536000", + "Transfer-Encoding": "chunked", + "Vary": "Accept", + "X-Content-Type-Options": "nosniff", + "X-Frame-Options": "SAMEORIGIN", + "X-Permitted-Cross-Domain-Policies": "none", + "X-Request-ID": "82beb53e-f43b-428e-aacc-08608a18e671, 82beb53e-f43b-428e-aacc-08608a18e671", + "X-Runtime": "0.008323", + "X-XSS-Protection": "0" + }, + "scan_id": 46511719, + "score": 55, + "start_time": "Sun, 14 Jan 2024 21:41:31 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 9, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": null, + "http": false, + "meta": false, + "numPolicies": 0, + "policy": null + }, + "pass": false, + "result": "csp-not-implemented", + "score_description": "Content Security Policy (CSP) header not implemented", + "score_modifier": -25 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "_aplypro_session": { + "domain": "aplypro.beta.gouv.fr", + "expires": null, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Lax", + "secure": false + } + }, + "sameSite": null + }, + "pass": false, + "result": "cookies-session-without-secure-flag-but-protected-by-hsts", + "score_description": "Session cookie set without the Secure flag, but transmission over HTTP prevented by HSTS", + "score_modifier": -10 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://aplypro.beta.gouv.fr/login", + "redirects": true, + "route": [ + "http://aplypro.beta.gouv.fr/", + "https://aplypro.beta.gouv.fr/", + "https://aplypro.beta.gouv.fr/login" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": "strict-origin-when-cross-origin", + "http": true, + "meta": false + }, + "pass": true, + "result": "referrer-policy-private", + "score_description": "Referrer-Policy header set to \"no-referrer\", \"same-origin\", \"strict-origin\" or \"strict-origin-when-cross-origin\"", + "score_modifier": 5 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-sameorigin-or-deny", + "score_description": "X-Frame-Options (XFO) header set to SAMEORIGIN or DENY", + "score_modifier": 0 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": "0" + }, + "pass": false, + "result": "x-xss-protection-disabled", + "score_description": "X-XSS-Protection header set to \"0\" (disabled)", + "score_modifier": -10 + } + } + }, "updownio": null, "nmap": { "host": "aplypro.beta.gouv.fr", @@ -623318,77 +620393,77 @@ "testssl": [ { "id": "service", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -623396,7 +620471,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -623404,7 +620479,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -623412,7 +620487,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -623420,7 +620495,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -623428,7 +620503,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -623436,525 +620511,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-12-31 11:44" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-03-30 11:44" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704666138" + "finding": "1705268593" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -623962,7 +621037,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -623971,7 +621046,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -623980,7 +621055,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -623989,7 +621064,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -623998,7 +621073,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -624006,7 +621081,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -624015,7 +621090,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -624024,7 +621099,7 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -624033,7 +621108,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -624042,14 +621117,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -624058,7 +621133,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -624067,7 +621142,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -624076,7 +621151,7 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -624085,7 +621160,7 @@ }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -624094,7 +621169,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -624103,7 +621178,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -624112,7 +621187,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -624121,7 +621196,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -624130,7 +621205,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -624139,315 +621214,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/80.247.13.145", + "ip": "aplypro.beta.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" @@ -624652,7 +621727,7 @@ "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "supported" + "finding": "not supported" }, { "id": "sessionresumption_ID", @@ -624799,7 +621874,7 @@ "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "82 >= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", @@ -625002,7 +622077,7 @@ "ip": "aplypro.beta.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704666232" + "finding": "1705268649" }, { "id": "HSTS_time", @@ -625590,77 +622665,77 @@ }, { "id": "service", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -625668,7 +622743,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -625676,7 +622751,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -625684,7 +622759,7 @@ }, { "id": "cipherlist_LOW", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -625692,7 +622767,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -625700,7 +622775,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -625708,525 +622783,525 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-12-31 11:44" }, { "id": "cert_notAfter", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-03-30 11:44" }, { "id": "cert_extlifeSpan", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://r3.o.lencr.org" }, { "id": "OCSP_stapling", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "LOW", "finding": "--" }, { "id": "certificate_transparency", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "3" }, { "id": "certs_list_ordering_problem", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 (Let's Encrypt from US)" }, { "id": "intermediate_cert <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\nMIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAwWhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3MgRW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cPR5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdxsxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8ZutmNHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxgZ3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG/kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYBAf8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaAFHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRwOi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQBgt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6WPTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wlikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQzCkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BImlJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1OyK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90IdshCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6ZvMldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqXnLRbwHOoq7hHwg==\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2020-09-04 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-09-15 16:00" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "R3 <-- ISRG Root X1" }, { "id": "intermediate_cert <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" }, { "id": "intermediate_cert_notBefore <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2021-01-20 19:14" }, { "id": "intermediate_cert_notAfter <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "2024-09-30 18:14" }, { "id": "intermediate_cert_expiration <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#2>", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ISRG Root X1 <-- DST Root CA X3" }, { "id": "intermediate_cert_badOCSP", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "302 Found ('/')" }, { "id": "HTTP_clock_skew", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704666325" + "finding": "1705268706" }, { "id": "HSTS_time", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "only for this domain" }, { "id": "HSTS_preload", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "domain is NOT marked for preloading" }, { "id": "HPKP", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No application banner found" }, { "id": "cookie_count", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 at '/' (30x detected, better try target URL of 30x)" }, { "id": "X-Frame-Options", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "SAMEORIGIN" }, { "id": "X-Content-Type-Options", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "X-XSS-Protection", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0" }, { "id": "Referrer-Policy", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "strict-origin-when-cross-origin" }, { "id": "Cache-Control", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no-cache" }, { "id": "banner_reverseproxy", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -626234,7 +623309,7 @@ }, { "id": "heartbleed", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -626243,7 +623318,7 @@ }, { "id": "CCS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -626252,7 +623327,7 @@ }, { "id": "ticketbleed", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -626261,7 +623336,7 @@ }, { "id": "ROBOT", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -626270,7 +623345,7 @@ }, { "id": "secure_renego", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -626278,7 +623353,7 @@ }, { "id": "secure_client_renego", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -626287,7 +623362,7 @@ }, { "id": "CRIME_TLS", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -626296,7 +623371,7 @@ }, { "id": "BREACH", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -626305,7 +623380,7 @@ }, { "id": "POODLE_SSL", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -626314,14 +623389,14 @@ }, { "id": "fallback_SCSV", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -626330,7 +623405,7 @@ }, { "id": "FREAK", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -626339,7 +623414,7 @@ }, { "id": "DROWN", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -626348,7 +623423,7 @@ }, { "id": "DROWN_hint", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -626357,7 +623432,7 @@ }, { "id": "LOGJAM", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -626366,7 +623441,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -626375,7 +623450,7 @@ }, { "id": "BEAST", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -626384,7 +623459,7 @@ }, { "id": "LUCKY13", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -626393,7 +623468,7 @@ }, { "id": "winshock", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -626402,7 +623477,7 @@ }, { "id": "RC4", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -626411,315 +623486,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "aplypro.beta.gouv.fr/185.21.194.105", + "ip": "aplypro.beta.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" @@ -627071,7 +624146,7 @@ "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "OK", - "finding": "82 >= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", @@ -627274,7 +624349,7 @@ "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704666418" + "finding": "1705268764" }, { "id": "HSTS_time", @@ -627865,7 +624940,7 @@ "ip": "aplypro.beta.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "377" + "finding": "227" } ], "thirdparties": { @@ -627876,7 +624951,7 @@ "value": "1", "domain": "aplypro.beta.gouv.fr", "path": "/", - "expires": 1704667845, + "expires": 1705270330, "size": 16, "httpOnly": false, "secure": false, @@ -627888,10 +624963,10 @@ }, { "name": "_pk_id.27.0c8d", - "value": "9bd62b48a738ab0c.1704666045.", + "value": "3ea6c84b8a9c5724.1705268530.", "domain": "aplypro.beta.gouv.fr", "path": "/", - "expires": 1738621245, + "expires": 1739223730, "size": 42, "httpOnly": false, "secure": false, @@ -627903,11 +624978,11 @@ }, { "name": "_aplypro_session", - "value": "I71t06MkD%2BgfqjelFlNmE9j2nzfy1vRIRsy4njvIOqYcZ9QYWZT%2FyhDbxSjr%2B9HmcvhmRxIdV1Nc1n7rVyRjkgvPXKembvZlS2PoiTac1o%2BRKczrtWZq5zBGBZqy%2FG7eGe1oj2Aq4%2Bhu%2BRZkMeJ3qM0U3cr3ifh2T5VWVlQQsiHtcmRT%2F2pDVKjkif4gt3ZSGgfrh0T7mgBHkAwFh2pk4tQ205MlcOoldtIcQ1IwTWD7fAh5EqBf2YinA0Yg4SjZiSfIGo8ceNmVeTUd9bTSACUdYs%2FAXpf4--wp1v2XbVTqCZYKAX--MArypn0be5kQIwJF8mZR0g%3D%3D", + "value": "DclgEzr1goruYx0JQhjXdrWMaL488vG5sGrtAADhihf1zkCpNPo7jRTB%2FuK9JsKRzRO%2BjC4rUaMKDs6itMEBfVukO32Ts3FLXhwT8cEb%2FUdYYwbS2wV8kyHeDhaoOHvdiy9kq1lsBIU7A55tLI77%2Fe7cSEAQBEtOb9nKBOdQsuAgOiC2lyyXFTUgKJwVGZKgY4%2FFlhJ2REoIxqtFon5F4hbT8S6luDH9Tp%2BR3aiNyq%2BICpqd90Q8kxvWu6aNqHlA1WMfD9MXnhDNwwoHkSf1IeCatuLkx4qj--SuiGDRL%2FN95eOUVj--U3R5KxAbGZNdTrh0z0i8bQ%3D%3D", "domain": "aplypro.beta.gouv.fr", "path": "/", "expires": -1, - "size": 370, + "size": 368, "httpOnly": true, "secure": false, "session": true, @@ -627921,17 +624996,17 @@ "cache-control": "max-age=0, private, must-revalidate", "content-encoding": "gzip", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 22:20:43 GMT", - "etag": "W/\"933fc2742378688fd0819c512bb0812f\"", - "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", + "date": "Sun, 14 Jan 2024 21:42:09 GMT", + "etag": "W/\"0b7ab1692e4a253d17795667fdbbe47d\"", + "link": "; rel=preload; as=style; nopush,; rel=preload; as=style; nopush,; rel=modulepreload; as=script; nopush,; rel=preload; as=script; nopush,; rel=preload; as=script; nopush", "referrer-policy": "strict-origin-when-cross-origin", - "set-cookie": "_aplypro_session=I71t06MkD%2BgfqjelFlNmE9j2nzfy1vRIRsy4njvIOqYcZ9QYWZT%2FyhDbxSjr%2B9HmcvhmRxIdV1Nc1n7rVyRjkgvPXKembvZlS2PoiTac1o%2BRKczrtWZq5zBGBZqy%2FG7eGe1oj2Aq4%2Bhu%2BRZkMeJ3qM0U3cr3ifh2T5VWVlQQsiHtcmRT%2F2pDVKjkif4gt3ZSGgfrh0T7mgBHkAwFh2pk4tQ205MlcOoldtIcQ1IwTWD7fAh5EqBf2YinA0Yg4SjZiSfIGo8ceNmVeTUd9bTSACUdYs%2FAXpf4--wp1v2XbVTqCZYKAX--MArypn0be5kQIwJF8mZR0g%3D%3D; path=/; HttpOnly; SameSite=Lax", + "set-cookie": "_aplypro_session=DclgEzr1goruYx0JQhjXdrWMaL488vG5sGrtAADhihf1zkCpNPo7jRTB%2FuK9JsKRzRO%2BjC4rUaMKDs6itMEBfVukO32Ts3FLXhwT8cEb%2FUdYYwbS2wV8kyHeDhaoOHvdiy9kq1lsBIU7A55tLI77%2Fe7cSEAQBEtOb9nKBOdQsuAgOiC2lyyXFTUgKJwVGZKgY4%2FFlhJ2REoIxqtFon5F4hbT8S6luDH9Tp%2BR3aiNyq%2BICpqd90Q8kxvWu6aNqHlA1WMfD9MXnhDNwwoHkSf1IeCatuLkx4qj--SuiGDRL%2FN95eOUVj--U3R5KxAbGZNdTrh0z0i8bQ%3D%3D; path=/; HttpOnly; SameSite=Lax", "strict-transport-security": "max-age=31536000", "x-content-type-options": "nosniff", "x-frame-options": "SAMEORIGIN", "x-permitted-cross-domain-policies": "none", - "x-request-id": "ec180894-0918-4a71-a060-8365a600243b\nec180894-0918-4a71-a060-8365a600243b", - "x-runtime": "0.014583", + "x-request-id": "ce66cc1c-d985-4d50-9efb-0220ca3a8215\nce66cc1c-d985-4d50-9efb-0220ca3a8215", + "x-runtime": "0.014940", "x-xss-protection": "0" }, "endpoints": [ @@ -628099,7 +625174,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 22:06:29", + "@generated": "Sun, 14 Jan 2024 21:41:07", "site": [ { "@name": "https://aplypro.beta.gouv.fr", @@ -628232,20 +625307,23 @@ }, "nuclei": [ { - "template": "dns/nameserver-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", - "template-id": "nameserver-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "NS Record Detection", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "ns" + "txt" + ], + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "reference": [ + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], - "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -628261,10 +625339,10 @@ "host": "aplypro.beta.gouv.fr.", "matched-at": "aplypro.beta.gouv.fr", "extracted-results": [ - "ns107.ovh.net.", - "dns107.ovh.net." + "\"1|www.aplypro.beta.gouv.fr\"", + "\"v=spf1 include:mx.ovh.com -all\"" ], - "timestamp": "2024-01-07T22:28:42.912705236Z", + "timestamp": "2024-01-14T21:47:31.894166608Z", "matcher-status": true }, { @@ -628301,31 +625379,28 @@ "host": "aplypro.beta.gouv.fr.", "matched-at": "aplypro.beta.gouv.fr", "extracted-results": [ - "5 mx2.mail.ovh.net.", + "100 mx3.mail.ovh.net.", "1 mx1.mail.ovh.net.", - "100 mx3.mail.ovh.net." + "5 mx2.mail.ovh.net." ], - "timestamp": "2024-01-07T22:28:43.144851303Z", + "timestamp": "2024-01-14T21:47:32.900410844Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/nameserver-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/nameserver-fingerprint", + "template-id": "nameserver-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/nameserver-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "NS Record Detection", "author": [ "pdteam" ], "tags": [ "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "ns" ], + "description": "An NS record was detected. An NS record delegates a subdomain to a set of name servers.", "severity": "info", "metadata": { "max-request": 1 @@ -628340,26 +625415,30 @@ "type": "dns", "host": "aplypro.beta.gouv.fr.", "matched-at": "aplypro.beta.gouv.fr", - "timestamp": "2024-01-07T22:28:43.338184495Z", + "extracted-results": [ + "dns107.ovh.net.", + "ns107.ovh.net." + ], + "timestamp": "2024-01-14T21:47:32.916249886Z", "matcher-status": true }, { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -628375,11 +625454,7 @@ "type": "dns", "host": "aplypro.beta.gouv.fr.", "matched-at": "aplypro.beta.gouv.fr", - "extracted-results": [ - "\"v=spf1 include:mx.ovh.com -all\"", - "\"1|www.aplypro.beta.gouv.fr\"" - ], - "timestamp": "2024-01-07T22:28:43.864325207Z", + "timestamp": "2024-01-14T21:47:33.058042574Z", "matcher-status": true }, { @@ -628414,8 +625489,8 @@ "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:29:52.113526261Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:48:27.698130124Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -628451,8 +625526,8 @@ "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:29:52.113583719Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:48:27.698182902Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -628488,8 +625563,8 @@ "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:29:52.113604548Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:48:27.698200625Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -628525,8 +625600,8 @@ "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:29:52.113622031Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:48:27.698220983Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -628562,8 +625637,8 @@ "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:29:52.113640465Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:48:27.698239718Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -628599,8 +625674,8 @@ "type": "http", "host": "https://aplypro.beta.gouv.fr", "matched-at": "https://aplypro.beta.gouv.fr/login", - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:29:52.113658699Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:48:27.698255217Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://aplypro.beta.gouv.fr'", "matcher-status": true }, @@ -628630,8 +625705,8 @@ "extracted-results": [ "Let's Encrypt" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:36:17.744520274Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:54:39.030582114Z", "matcher-status": true }, { @@ -628660,8 +625735,8 @@ "extracted-results": [ "aplypro.beta.gouv.fr" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:36:17.744632574Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:54:39.030691658Z", "matcher-status": true }, { @@ -628691,8 +625766,8 @@ "extracted-results": [ "tls12" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:36:20.026308509Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:54:40.691885477Z", "matcher-status": true }, { @@ -628722,8 +625797,8 @@ "extracted-results": [ "tls13" ], - "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:36:20.432116545Z", + "ip": "185.21.194.105", + "timestamp": "2024-01-14T21:54:41.032923444Z", "matcher-status": true } ], @@ -628731,7 +625806,7 @@ { "requestedUrl": "https://aplypro.beta.gouv.fr/", "finalUrl": "https://aplypro.beta.gouv.fr/login", - "fetchTime": "2024-01-07T22:06:43.794Z", + "fetchTime": "2024-01-14T21:41:21.137Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://aplypro.beta.gouv.fr/) was redirected to https://aplypro.beta.gouv.fr/login. Try testing the second URL directly." ], @@ -628796,53 +625871,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2855, + "numericValue": 2243, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2102, - "firstMeaningfulPaint": 2252, - "largestContentfulPaint": 2552, - "interactive": 2855, - "speedIndex": 3180, - "totalBlockingTime": 56, - "maxPotentialFID": 105, + "firstContentfulPaint": 2120, + "firstMeaningfulPaint": 2196, + "largestContentfulPaint": 2499, + "interactive": 2243, + "speedIndex": 2550, + "totalBlockingTime": 44, + "maxPotentialFID": 107, "cumulativeLayoutShift": 0.030533053927951387, "cumulativeLayoutShiftMainFrame": 0.030533053927951387, "totalCumulativeLayoutShift": 0.030533053927951387, "observedTimeOrigin": 0, - "observedTimeOriginTs": 202339351, + "observedTimeOriginTs": 264610236, "observedNavigationStart": 0, - "observedNavigationStartTs": 202339351, - "observedFirstPaint": 1163, - "observedFirstPaintTs": 203502268, - "observedFirstContentfulPaint": 1201, - "observedFirstContentfulPaintTs": 203540233, - "observedFirstContentfulPaintAllFrames": 1201, - "observedFirstContentfulPaintAllFramesTs": 203540233, - "observedFirstMeaningfulPaint": 1201, - "observedFirstMeaningfulPaintTs": 203540233, - "observedLargestContentfulPaint": 1201, - "observedLargestContentfulPaintTs": 203540233, - "observedLargestContentfulPaintAllFrames": 1201, - "observedLargestContentfulPaintAllFramesTs": 203540233, - "observedTraceEnd": 4233, - "observedTraceEndTs": 206572698, - "observedLoad": 1925, - "observedLoadTs": 204263853, - "observedDomContentLoaded": 1161, - "observedDomContentLoadedTs": 203500394, + "observedNavigationStartTs": 264610236, + "observedFirstPaint": 867, + "observedFirstPaintTs": 265477010, + "observedFirstContentfulPaint": 911, + "observedFirstContentfulPaintTs": 265521447, + "observedFirstContentfulPaintAllFrames": 911, + "observedFirstContentfulPaintAllFramesTs": 265521447, + "observedFirstMeaningfulPaint": 911, + "observedFirstMeaningfulPaintTs": 265521447, + "observedLargestContentfulPaint": 911, + "observedLargestContentfulPaintTs": 265521447, + "observedLargestContentfulPaintAllFrames": 911, + "observedLargestContentfulPaintAllFramesTs": 265521447, + "observedTraceEnd": 3712, + "observedTraceEndTs": 268322174, + "observedLoad": 1405, + "observedLoadTs": 266015044, + "observedDomContentLoaded": 878, + "observedDomContentLoadedTs": 265487944, "observedCumulativeLayoutShift": 0.030533053927951387, "observedCumulativeLayoutShiftMainFrame": 0.030533053927951387, "observedTotalCumulativeLayoutShift": 0.030533053927951387, - "observedFirstVisualChange": 1202, - "observedFirstVisualChangeTs": 203541351, - "observedLastVisualChange": 1485, - "observedLastVisualChangeTs": 203824351, - "observedSpeedIndex": 1211, - "observedSpeedIndexTs": 203549858 + "observedFirstVisualChange": 912, + "observedFirstVisualChangeTs": 265522236, + "observedLastVisualChange": 1195, + "observedLastVisualChangeTs": 265805236, + "observedSpeedIndex": 920, + "observedSpeedIndexTs": 265530045 }, { "lcpInvalidated": false @@ -628865,18 +625940,18 @@ "numStylesheets": 2, "numFonts": 3, "numTasks": 737, - "numTasksOver10ms": 5, + "numTasksOver10ms": 4, "numTasksOver25ms": 1, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 136.28799999999998, - "throughput": 5082263.748297568, - "maxRtt": 146.663, - "maxServerLatency": 2.348000000000013, - "totalByteWeight": 452849, - "totalTaskTime": 206.9359999999994, - "mainDocumentTransferSize": 6033 + "rtt": 99.50200000000001, + "throughput": 7070334.862834453, + "maxRtt": 101.07000000000001, + "maxServerLatency": 1.6659999999999968, + "totalByteWeight": 452990, + "totalTaskTime": 198.82899999999924, + "mainDocumentTransferSize": 6029 } ] } @@ -628980,6 +626055,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "C", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", @@ -629013,7 +626089,271 @@ "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "category": "startup", "betaId": "MonAideCyber", - "http": null, + "http": { + "url": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "algorithm_version": 2, + "end_time": "Sun, 14 Jan 2024 21:46:23 GMT", + "grade": "C+", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Accept-Ranges": "bytes", + "Cache-Control": "public, max-age=0", + "Connection": "keep-alive", + "Content-Length": "970", + "Content-Security-Policy": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';", + "Content-Type": "text/html; charset=UTF-8", + "Date": "Sun, 14 Jan 2024 21:46:22 GMT", + "ETag": "W/\"3ca-18ccb41bfc8\"", + "Last-Modified": "Tue, 02 Jan 2024 17:38:53 GMT", + "RateLimit-Limit": "100", + "RateLimit-Remaining": "98", + "RateLimit-Reset": "40", + "Set-Cookie": "session=eyJfY3NyZlNlY3JldCI6IkFXOEdDYVZrYVVUV0NRPT0ifQ==; path=/; expires=Sun, 14 Jan 2024 22:46:22 GMT; samesite=strict; secure; httponly, session.sig=ZaLKWHCYqO0cmu9XfNVvh0AoAMw; path=/; expires=Sun, 14 Jan 2024 22:46:22 GMT; samesite=strict; secure; httponly", + "Strict-Transport-Security": "max-age=63072000; includeSubDomains; preload", + "X-Content-Type-Options": "nosniff", + "X-Powered-By": "Express", + "X-Request-ID": "80014daf-6096-4ac6-9625-69cd1a280e67" + }, + "scan_id": 46512073, + "score": 60, + "start_time": "Sun, 14 Jan 2024 21:46:20 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 2, + "tests_passed": 10, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "base-uri": [ + "'self'" + ], + "connect-src": [ + "'self'" + ], + "default-src": [ + "'self'" + ], + "font-src": [ + "'self'" + ], + "frame-src": [ + "'self'" + ], + "img-src": [ + "data:", + "'self'", + "https" + ], + "manifest-src": [ + "'self'" + ], + "media-src": [ + "'self'" + ], + "object-src": [ + "'none'" + ], + "script-src": [ + "'report-sample'", + "'self'" + ], + "style-src": [ + "'sha256-hzhujvbe6oi2wcxum7bmy2rp9vdlmhyddyr9malnmoy='", + "'report-sample'", + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": false, + "defaultNone": false, + "insecureBaseUri": false, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": false, + "unsafeInlineStyle": false, + "unsafeObjects": false + } + }, + "pass": true, + "result": "csp-implemented-with-no-unsafe", + "score_description": "Content Security Policy (CSP) implemented without 'unsafe-inline' or 'unsafe-eval'", + "score_modifier": 5 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": { + "session": { + "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", + "expires": 1705272382, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Strict", + "secure": true + }, + "session.sig": { + "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", + "expires": 1705272382, + "httponly": true, + "max-age": null, + "path": "/", + "port": null, + "samesite": "Strict", + "secure": true + } + }, + "sameSite": true + }, + "pass": true, + "result": "cookies-secure-with-httponly-sessions-and-samesite", + "score_description": "All cookies use the Secure flag, session cookies use the HttpOnly flag, and cross-origin restrictions are in place via the SameSite flag", + "score_modifier": 5 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "http://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", + "redirects": false, + "route": [ + "http://anssi-mac-prod.osc-secnum-fr1.scalingo.io/" + ], + "status_code": 200 + }, + "pass": false, + "result": "redirection-missing", + "score_description": "Does not redirect to an HTTPS site", + "score_modifier": -20 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=63072000; includeSubDomains; preload", + "includeSubDomains": true, + "max-age": 63072000, + "preload": true, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": "nosniff" + }, + "pass": true, + "result": "x-content-type-options-nosniff", + "score_description": "X-Content-Type-Options header set to \"nosniff\"", + "score_modifier": 0 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-frame-options-not-implemented", + "score_description": "X-Frame-Options (XFO) header not implemented", + "score_modifier": -20 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": true, + "result": "x-xss-protection-not-needed-due-to-csp", + "score_description": "X-XSS-Protection header not needed due to strong Content Security Policy (CSP) header", + "score_modifier": 0 + } + } + }, "updownio": null, "nmap": { "host": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", @@ -629042,77 +626382,77 @@ "testssl": [ { "id": "service", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -629120,7 +626460,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -629128,7 +626468,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -629136,7 +626476,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -629144,7 +626484,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -629152,7 +626492,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -629160,490 +626500,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704666369" + "finding": "1705268856" }, { "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';" }, { "id": "Cache-Control", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -629651,7 +626991,7 @@ }, { "id": "heartbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -629660,7 +627000,7 @@ }, { "id": "CCS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -629669,7 +627009,7 @@ }, { "id": "ticketbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -629678,7 +627018,7 @@ }, { "id": "ROBOT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -629687,7 +627027,7 @@ }, { "id": "secure_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -629695,7 +627035,7 @@ }, { "id": "secure_client_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -629704,7 +627044,7 @@ }, { "id": "CRIME_TLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -629713,7 +627053,7 @@ }, { "id": "BREACH", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -629722,7 +627062,7 @@ }, { "id": "POODLE_SSL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -629731,14 +627071,14 @@ }, { "id": "fallback_SCSV", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -629747,7 +627087,7 @@ }, { "id": "FREAK", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -629756,7 +627096,7 @@ }, { "id": "DROWN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -629765,7 +627105,7 @@ }, { "id": "DROWN_hint", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -629774,7 +627114,7 @@ }, { "id": "LOGJAM", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -629783,7 +627123,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -629792,7 +627132,7 @@ }, { "id": "BEAST", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -629801,7 +627141,7 @@ }, { "id": "LUCKY13", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -629810,7 +627150,7 @@ }, { "id": "winshock", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -629819,7 +627159,7 @@ }, { "id": "RC4", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -629828,315 +627168,315 @@ }, { "id": "clientsimulation-android_60", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", "port": "443", "severity": "OK", "finding": "A+" @@ -630495,7 +627835,7 @@ "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "OK", - "finding": "371 >= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", @@ -630656,7 +627996,7 @@ "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "1704666419" + "finding": "1705268907" }, { "id": "HSTS_time", @@ -631244,77 +628584,77 @@ }, { "id": "service", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -631322,7 +628662,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -631330,7 +628670,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -631338,7 +628678,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -631346,7 +628686,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -631354,7 +628694,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -631362,490 +628702,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704666469" + "finding": "1705268958" }, { "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';" }, { "id": "Cache-Control", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -631853,7 +629193,7 @@ }, { "id": "heartbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -631862,7 +629202,7 @@ }, { "id": "CCS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -631871,7 +629211,7 @@ }, { "id": "ticketbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -631880,7 +629220,7 @@ }, { "id": "ROBOT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -631889,7 +629229,7 @@ }, { "id": "secure_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -631897,7 +629237,7 @@ }, { "id": "secure_client_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -631906,7 +629246,7 @@ }, { "id": "CRIME_TLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -631915,7 +629255,7 @@ }, { "id": "BREACH", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -631924,7 +629264,7 @@ }, { "id": "POODLE_SSL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -631933,14 +629273,14 @@ }, { "id": "fallback_SCSV", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -631949,7 +629289,7 @@ }, { "id": "FREAK", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -631958,7 +629298,7 @@ }, { "id": "DROWN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -631967,7 +629307,7 @@ }, { "id": "DROWN_hint", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -631976,7 +629316,7 @@ }, { "id": "LOGJAM", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -631985,7 +629325,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -631994,7 +629334,7 @@ }, { "id": "BEAST", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -632003,7 +629343,7 @@ }, { "id": "LUCKY13", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -632012,7 +629352,7 @@ }, { "id": "winshock", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -632021,7 +629361,7 @@ }, { "id": "RC4", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -632030,392 +629370,392 @@ }, { "id": "clientsimulation-android_60", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/148.253.96.193", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "service", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "HTTP" }, { "id": "pre_128cipher", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No 128 cipher limit bug" }, { "id": "SSLv2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "SSLv3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "not offered" }, { "id": "TLS1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_1", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "TLS1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "TLS1_3", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered with final" }, { "id": "ALPN_HTTP2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "h2" }, { "id": "ALPN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http/1.1" }, { "id": "cipherlist_NULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -632423,7 +629763,7 @@ }, { "id": "cipherlist_aNULL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -632431,7 +629771,7 @@ }, { "id": "cipherlist_EXPORT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -632439,7 +629779,7 @@ }, { "id": "cipherlist_LOW", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-327", @@ -632447,7 +629787,7 @@ }, { "id": "cipherlist_3DES_IDEA", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -632455,7 +629795,7 @@ }, { "id": "cipherlist_OBSOLETED", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-310", @@ -632463,490 +629803,490 @@ }, { "id": "cipherlist_STRONG_NOFS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not offered" }, { "id": "cipherlist_STRONG_FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "cipher_order-tls1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "cipherorder_TLSv1_2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "cipher_order", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "server" }, { "id": "FS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "offered" }, { "id": "FS_ciphers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "FS_ECDHE_curves", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "prime256v1 secp384r1 secp521r1" }, { "id": "TLS_extensions", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" }, { "id": "TLS_session_ticket", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "valid for 300 seconds only (= 60 days" + "finding": "364 >= 60 days" }, { "id": "cert_notBefore", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2024-01-02 00:00" }, { "id": "cert_notAfter", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "2025-01-12 23:59" }, { "id": "cert_extlifeSpan", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "certificate has no extended life time according to browser forum" }, { "id": "cert_eTLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "not present" }, { "id": "cert_crlDistributionPoints", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "cert_ocspURL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "http://ocsp.sectigo.com" }, { "id": "OCSP_stapling", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "LOW", "finding": "not offered" }, { "id": "cert_mustStapleExtension", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "--" }, { "id": "DNS_CAArecord", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "issue=comodoca.com, issue=digicert.com;, issue=letsencrypt.org, issue=pki.goog;, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;" }, { "id": "certificate_transparency", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "yes (certificate extension)" }, { "id": "certs_countServer", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2" }, { "id": "certs_list_ordering_problem", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "no" }, { "id": "cert_caIssuers", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 (Gandi from FR)" }, { "id": "intermediate_cert <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" }, { "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "F0104FF17274608F1A18A1E1EABF8E68A51F500A87E2EFA22ECB622763FEF4CF" }, { "id": "intermediate_cert_notBefore <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2023-08-02 00:00" }, { "id": "intermediate_cert_notAfter <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "2033-08-01 23:59" }, { "id": "intermediate_cert_expiration <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "ok > 40 days" }, { "id": "intermediate_cert_chain <#1>", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "Gandi RSA Domain Validation Secure Server CA 3 <-- USERTrust RSA Certification Authority" }, { "id": "intermediate_cert_badOCSP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "intermediate certificate(s) is/are ok" }, { "id": "HTTP_status_code", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "200 OK ('/')" }, { "id": "HTTP_clock_skew", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "0 seconds from localtime" }, { "id": "HTTP_headerTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704666520" + "finding": "1705269009" }, { "id": "HSTS_time", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "730 days (=63072000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "includes subdomains" }, { "id": "HSTS_preload", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "domain IS marked for preloading" }, { "id": "HPKP", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No support for HTTP Public Key Pinning" }, { "id": "banner_server", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No Server banner line in header, interesting!" }, { "id": "banner_application", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "X-Powered-By: Express" }, { "id": "cookie_count", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "2 at '/'" }, { "id": "cookie_secure", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as secure" }, { "id": "cookie_httponly", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "All (2) at '/' marked as HttpOnly" }, { "id": "X-Content-Type-Options", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "nosniff" }, { "id": "Content-Security-Policy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';" }, { "id": "Cache-Control", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "public, max-age=0" }, { "id": "banner_reverseproxy", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cwe": "CWE-200", @@ -632954,7 +630294,7 @@ }, { "id": "heartbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0160", @@ -632963,7 +630303,7 @@ }, { "id": "CCS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-0224", @@ -632972,7 +630312,7 @@ }, { "id": "ticketbleed", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-9244", @@ -632981,7 +630321,7 @@ }, { "id": "ROBOT", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", @@ -632990,7 +630330,7 @@ }, { "id": "secure_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cwe": "CWE-310", @@ -632998,7 +630338,7 @@ }, { "id": "secure_client_renego", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-1473", @@ -633007,7 +630347,7 @@ }, { "id": "CRIME_TLS", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2012-4929", @@ -633016,7 +630356,7 @@ }, { "id": "BREACH", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-3587", @@ -633025,7 +630365,7 @@ }, { "id": "POODLE_SSL", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-3566", @@ -633034,14 +630374,14 @@ }, { "id": "fallback_SCSV", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "no protocol below TLS 1.2 offered" }, { "id": "SWEET32", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-2183 CVE-2016-6329", @@ -633050,7 +630390,7 @@ }, { "id": "FREAK", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-0204", @@ -633059,7 +630399,7 @@ }, { "id": "DROWN", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -633068,7 +630408,7 @@ }, { "id": "DROWN_hint", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "cve": "CVE-2016-0800 CVE-2016-0703", @@ -633077,7 +630417,7 @@ }, { "id": "LOGJAM", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -633086,7 +630426,7 @@ }, { "id": "LOGJAM-common_primes", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2015-4000", @@ -633095,7 +630435,7 @@ }, { "id": "BEAST", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2011-3389", @@ -633104,7 +630444,7 @@ }, { "id": "LUCKY13", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-0169", @@ -633113,7 +630453,7 @@ }, { "id": "winshock", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2014-6321", @@ -633122,7 +630462,7 @@ }, { "id": "RC4", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "cve": "CVE-2013-2566 CVE-2015-2808", @@ -633131,325 +630471,325 @@ }, { "id": "clientsimulation-android_60", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" }, { "id": "clientsimulation-android_70", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-android_90", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_X", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_11", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-android_12", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_79_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-chrome_101_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_66_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-firefox_100_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-ie_6_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_8_xp", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win7", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_win81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-ie_11_winphone81", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-ie_11_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_15_win10", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-edge_101_win10_21h2", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_121_ios_122", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_130_osx_10146", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-safari_154_osx_1231", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java_7u25", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "No connection" }, { "id": "clientsimulation-java_8u161", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-java1102", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-java1703", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-go_1178", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-libressl_283", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_102e", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_110l", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-openssl_111d", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-openssl_303", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "clientsimulation-apple_mail_16_0", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" }, { "id": "clientsimulation-thunderbird_91_9", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" }, { "id": "rating_spec", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" }, { "id": "rating_doc", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" }, { "id": "protocol_support_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "100" }, { "id": "protocol_support_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "30" }, { "id": "key_exchange_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "90" }, { "id": "key_exchange_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "27" }, { "id": "cipher_strength_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "60" }, { "id": "cipher_strength_score_weighted", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "24" }, { "id": "final_score", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", "finding": "81" }, { "id": "overall_grade", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "OK", "finding": "A+" }, { "id": "scanTime", - "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/80.247.13.145", + "ip": "anssi-mac-prod.osc-secnum-fr1.scalingo.io/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "204" + "finding": "207" } ], "thirdparties": { @@ -633457,10 +630797,10 @@ "cookies": [ { "name": "session.sig", - "value": "frSu0OhW9G6jPR_CS_S-U2tMsBo", + "value": "Zt830Gf3BvuhM2x7Iaz1q5hB8nA", "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", "path": "/", - "expires": 1704669929.047654, + "expires": 1705272416.521174, "size": 38, "httpOnly": true, "secure": true, @@ -633472,10 +630812,10 @@ }, { "name": "session", - "value": "eyJfY3NyZlNlY3JldCI6Imh3RHFQbmVaclowL1B3PT0ifQ==", + "value": "eyJfY3NyZlNlY3JldCI6IjB6dC8rUGdETDg0bTFRPT0ifQ==", "domain": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", "path": "/", - "expires": 1704669929.047526, + "expires": 1705272416.521071, "size": 55, "httpOnly": true, "secure": true, @@ -633492,22 +630832,22 @@ "content-length": "970", "content-security-policy": "default-src 'self'; script-src 'report-sample' 'self'; style-src 'report-sample' 'self' 'sha256-HzhUjVBe6Oi2wcxUM7bmy2Rp9VdLMHYDdYr9MalNmOY='; object-src 'none'; base-uri 'self'; connect-src 'self'; font-src 'self'; frame-src 'self'; img-src 'self' data: https; manifest-src 'self'; media-src 'self';", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 22:25:29 GMT", + "date": "Sun, 14 Jan 2024 21:46:56 GMT", "etag": "W/\"3ca-18ccb41bfc8\"", "last-modified": "Tue, 02 Jan 2024 17:38:53 GMT", "ratelimit-limit": "100", - "ratelimit-remaining": "99", - "ratelimit-reset": "92", - "set-cookie": "session=eyJfY3NyZlNlY3JldCI6Imh3RHFQbmVaclowL1B3PT0ifQ==; path=/; expires=Sun, 07 Jan 2024 23:25:29 GMT; samesite=strict; secure; httponly\nsession.sig=frSu0OhW9G6jPR_CS_S-U2tMsBo; path=/; expires=Sun, 07 Jan 2024 23:25:29 GMT; samesite=strict; secure; httponly", + "ratelimit-remaining": "11", + "ratelimit-reset": "6", + "set-cookie": "session=eyJfY3NyZlNlY3JldCI6IjB6dC8rUGdETDg0bTFRPT0ifQ==; path=/; expires=Sun, 14 Jan 2024 22:46:56 GMT; samesite=strict; secure; httponly\nsession.sig=Zt830Gf3BvuhM2x7Iaz1q5hB8nA; path=/; expires=Sun, 14 Jan 2024 22:46:56 GMT; samesite=strict; secure; httponly", "strict-transport-security": "max-age=63072000; includeSubDomains; preload", "x-content-type-options": "nosniff", "x-powered-by": "Express", - "x-request-id": "e41b8f87-eb64-4505-baee-692158db468e" + "x-request-id": "c373e06b-5e27-4cc3-a5b7-707e80fbba57" }, "endpoints": [ { "hostname": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "ip": "80.247.12.255", + "ip": "80.247.13.145", "geoip": { "continent": { "code": "EU", @@ -633686,7 +631026,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 22:11:23", + "@generated": "Sun, 14 Jan 2024 21:45:56", "site": [ { "@name": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io", @@ -633797,6 +631137,41 @@ ] }, "nuclei": [ + { + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "info": { + "name": "CAA Record", + "author": [ + "pdteam" + ], + "tags": [ + "dns", + "caa" + ], + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "reference": [ + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + ], + "severity": "info", + "metadata": { + "max-request": 1 + }, + "classification": { + "cve-id": null, + "cwe-id": [ + "cwe-200" + ] + } + }, + "type": "dns", + "host": "anssi-mac-prod.osc-secnum-fr1.scalingo.io.", + "matched-at": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", + "timestamp": "2024-01-14T21:51:30.268869281Z", + "matcher-status": true + }, { "template": "dns/dns-saas-service-detection.yaml", "template-url": "https://templates.nuclei.sh/public/dns-saas-service-detection", @@ -633829,53 +631204,19 @@ "extracted-results": [ "sc-lb-pool-01.osc-secnum-fr1.scalingo-network.com." ], - "timestamp": "2024-01-07T22:30:00.456809572Z", + "timestamp": "2024-01-14T21:51:31.259263858Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", - "info": { - "name": "CAA Record", - "author": [ - "pdteam" - ], - "tags": [ - "dns", - "caa" - ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", - "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" - ], - "severity": "info", - "metadata": { - "max-request": 1 - }, - "classification": { - "cve-id": null, - "cwe-id": [ - "cwe-200" - ] - } - }, - "type": "dns", - "host": "anssi-mac-prod.osc-secnum-fr1.scalingo.io.", - "matched-at": "anssi-mac-prod.osc-secnum-fr1.scalingo.io", - "timestamp": "2024-01-07T22:30:01.45581854Z", - "matcher-status": true - }, - { - "template": "http/misconfiguration/httponly-cookie-detect.yaml", - "template-url": "https://templates.nuclei.sh/public/httponly-cookie-detect", - "template-id": "httponly-cookie-detect", - "template-path": "/home/runner/nuclei-templates/http/misconfiguration/httponly-cookie-detect.yaml", + "template": "http/misconfiguration/cookies-without-httponly-secure.yaml", + "template-url": "https://templates.nuclei.sh/public/cookies-without-httponly-secure", + "template-id": "cookies-without-httponly-secure", + "template-path": "/home/runner/nuclei-templates/http/misconfiguration/cookies-without-httponly-secure.yaml", "info": { - "name": "HttpOnly Cookie - Detect", + "name": "Cookies without HttpOnly or Secure attribute - Detect", "author": [ - "mr. bobo hp" + "princechaddha", + "mr.bobo hp" ], "tags": [ "misconfig", @@ -633884,8 +631225,9 @@ "generic" ], "description": "Checks whether cookies in the HTTP response contain the HttpOnly attribute. If the HttpOnly flag is set, it means that the cookie is HTTP-only\n", + "impact": "Lack of HttpOnly flag on cookies increases the risk of client-side attacks, compromising user session security and data privacy.\n", "reference": [ - "https://stackoverflow.com/questions/4316539/how-do-i-test-httponly-cookie-flag" + "https://owasp.org/www-community/httponly" ], "severity": "info", "metadata": { @@ -633896,13 +631238,14 @@ "cve-id": null, "cwe-id": null, "cvss-metrics": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N" - } + }, + "remediation": "Ensure that all cookies are set with the HttpOnly attribute to prevent client-side access.\n" }, "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:11.487371171Z", + "timestamp": "2024-01-14T21:52:03.518915464Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -633929,7 +631272,7 @@ "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:33.261101146Z", + "timestamp": "2024-01-14T21:52:03.559022985Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -633966,7 +631309,7 @@ "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971612142Z", + "timestamp": "2024-01-14T21:52:12.239625669Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -633998,12 +631341,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971656664Z", + "timestamp": "2024-01-14T21:52:12.239696571Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634035,12 +631378,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971674137Z", + "timestamp": "2024-01-14T21:52:12.239718372Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634072,12 +631415,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971687732Z", + "timestamp": "2024-01-14T21:52:12.239735463Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634109,12 +631452,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971703351Z", + "timestamp": "2024-01-14T21:52:12.239751704Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634146,12 +631489,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "strict-transport-security", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971720002Z", + "timestamp": "2024-01-14T21:52:12.23977124Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634183,12 +631526,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971732976Z", + "timestamp": "2024-01-14T21:52:12.23978744Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634220,12 +631563,12 @@ "max-request": 1 } }, - "matcher-name": "strict-transport-security", + "matcher-name": "x-frame-options", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971746601Z", + "timestamp": "2024-01-14T21:52:12.2398033Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634257,12 +631600,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.97176223Z", + "timestamp": "2024-01-14T21:52:12.23981929Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634294,12 +631637,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971778631Z", + "timestamp": "2024-01-14T21:52:12.23983541Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634331,12 +631674,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "matched-at": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:30:41.971793769Z", + "timestamp": "2024-01-14T21:52:12.239852853Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/'", "matcher-status": true }, @@ -634367,7 +631710,7 @@ "Gandi" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:36:43.115456835Z", + "timestamp": "2024-01-14T21:58:13.224627452Z", "matcher-status": true }, { @@ -634398,7 +631741,7 @@ "osc-secnum-fr1.scalingo.io" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:36:43.11560497Z", + "timestamp": "2024-01-14T21:58:13.224760701Z", "matcher-status": true }, { @@ -634433,7 +631776,7 @@ " SAN: [*.osc-secnum-fr1.scalingo.io osc-secnum-fr1.scalingo.io]" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:36:43.115654662Z", + "timestamp": "2024-01-14T21:58:13.224806827Z", "matcher-status": true }, { @@ -634464,7 +631807,7 @@ "tls12" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:36:44.194846163Z", + "timestamp": "2024-01-14T21:58:14.452905662Z", "matcher-status": true }, { @@ -634495,7 +631838,7 @@ "tls13" ], "ip": "80.247.12.255", - "timestamp": "2024-01-07T22:36:44.411986436Z", + "timestamp": "2024-01-14T21:58:14.669685541Z", "matcher-status": true } ], @@ -634503,7 +631846,7 @@ { "requestedUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", "finalUrl": "https://anssi-mac-prod.osc-secnum-fr1.scalingo.io/", - "fetchTime": "2024-01-07T22:11:37.270Z", + "fetchTime": "2024-01-14T21:46:10.621Z", "runWarnings": [], "categories": { "performance": { @@ -634566,53 +631909,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 2039, + "numericValue": 2021, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 2039, - "firstMeaningfulPaint": 2039, - "largestContentfulPaint": 2114, - "interactive": 2039, - "speedIndex": 2117, + "firstContentfulPaint": 2021, + "firstMeaningfulPaint": 2021, + "largestContentfulPaint": 2096, + "interactive": 2021, + "speedIndex": 2075, "totalBlockingTime": 0, "maxPotentialFID": 45, "cumulativeLayoutShift": 0.058466012107001405, "cumulativeLayoutShiftMainFrame": 0.058466012107001405, "totalCumulativeLayoutShift": 0.058466012107001405, "observedTimeOrigin": 0, - "observedTimeOriginTs": 200205174, + "observedTimeOriginTs": 251272205, "observedNavigationStart": 0, - "observedNavigationStartTs": 200205174, + "observedNavigationStartTs": 251272205, "observedFirstPaint": 680, - "observedFirstPaintTs": 200884751, + "observedFirstPaintTs": 251952284, "observedFirstContentfulPaint": 680, - "observedFirstContentfulPaintTs": 200884751, + "observedFirstContentfulPaintTs": 251952284, "observedFirstContentfulPaintAllFrames": 680, - "observedFirstContentfulPaintAllFramesTs": 200884751, + "observedFirstContentfulPaintAllFramesTs": 251952284, "observedFirstMeaningfulPaint": 680, - "observedFirstMeaningfulPaintTs": 200884751, + "observedFirstMeaningfulPaintTs": 251952284, "observedLargestContentfulPaint": 680, - "observedLargestContentfulPaintTs": 200884751, + "observedLargestContentfulPaintTs": 251952284, "observedLargestContentfulPaintAllFrames": 680, - "observedLargestContentfulPaintAllFramesTs": 200884751, - "observedTraceEnd": 3194, - "observedTraceEndTs": 203399403, - "observedLoad": 639, - "observedLoadTs": 200844599, - "observedDomContentLoaded": 639, - "observedDomContentLoadedTs": 200843745, + "observedLargestContentfulPaintAllFramesTs": 251952284, + "observedTraceEnd": 3150, + "observedTraceEndTs": 254421908, + "observedLoad": 642, + "observedLoadTs": 251913722, + "observedDomContentLoaded": 640, + "observedDomContentLoadedTs": 251911978, "observedCumulativeLayoutShift": 0.058466012107001405, "observedCumulativeLayoutShiftMainFrame": 0.058466012107001405, "observedTotalCumulativeLayoutShift": 0.058466012107001405, - "observedFirstVisualChange": 686, - "observedFirstVisualChangeTs": 200891174, - "observedLastVisualChange": 1520, - "observedLastVisualChangeTs": 201725174, - "observedSpeedIndex": 744, - "observedSpeedIndexTs": 200949628 + "observedFirstVisualChange": 684, + "observedFirstVisualChangeTs": 251956205, + "observedLastVisualChange": 1451, + "observedLastVisualChangeTs": 252723205, + "observedSpeedIndex": 723, + "observedSpeedIndexTs": 251994920 }, { "lcpInvalidated": false @@ -634634,18 +631977,18 @@ "numScripts": 2, "numStylesheets": 3, "numFonts": 3, - "numTasks": 489, - "numTasksOver10ms": 3, + "numTasks": 502, + "numTasksOver10ms": 4, "numTasksOver25ms": 0, "numTasksOver50ms": 0, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.955, - "throughput": 14011254.409480598, - "maxRtt": 80.955, - "maxServerLatency": 88.86, - "totalByteWeight": 620611, - "totalTaskTime": 134.34999999999988, + "rtt": 82.93, + "throughput": 15510967.24200443, + "maxRtt": 82.93, + "maxServerLatency": 70.518, + "totalByteWeight": 620524, + "totalTaskTime": 129.55000000000018, "mainDocumentTransferSize": 1795 } ] @@ -634726,6 +632069,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "C+", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", @@ -634759,7 +632103,211 @@ "url": "https://vae.gouv.fr", "category": "startup", "betaId": "reva", - "http": null, + "http": { + "url": "https://vae.gouv.fr", + "algorithm_version": 2, + "end_time": "Sun, 14 Jan 2024 22:08:17 GMT", + "grade": "B-", + "hidden": false, + "likelihood_indicator": "MEDIUM", + "response_headers": { + "Connection": "keep-alive", + "Content-Encoding": "gzip", + "Content-Security-Policy": "frame-ancestors 'self';", + "Content-Type": "text/html; charset=utf-8", + "Date": "Sun, 14 Jan 2024 22:08:15 GMT", + "Etag": "\"e9v07wm6c8pbo\"", + "Strict-Transport-Security": "max-age=31536000", + "Transfer-Encoding": "chunked", + "Vary": "Accept-Encoding", + "X-Frame-Options": "SAMEORIGIN", + "X-Powered-By": "Next.js", + "X-Request-ID": "c3410d52-2513-4524-8e43-70336405a27e" + }, + "scan_id": 46513784, + "score": 65, + "start_time": "Sun, 14 Jan 2024 22:08:12 GMT", + "state": "FINISHED", + "status_code": 200, + "tests_failed": 3, + "tests_passed": 9, + "tests_quantity": 12, + "details": { + "content-security-policy": { + "expectation": "csp-implemented-with-no-unsafe", + "name": "content-security-policy", + "output": { + "data": { + "frame-ancestors": [ + "'self'" + ] + }, + "http": true, + "meta": false, + "numPolicies": 1, + "policy": { + "antiClickjacking": true, + "defaultNone": false, + "insecureBaseUri": true, + "insecureFormAction": true, + "insecureSchemeActive": false, + "insecureSchemePassive": false, + "strictDynamic": false, + "unsafeEval": false, + "unsafeInline": true, + "unsafeInlineStyle": true, + "unsafeObjects": true + } + }, + "pass": false, + "result": "csp-implemented-with-unsafe-inline", + "score_description": "Content Security Policy (CSP) implemented unsafely. This includes 'unsafe-inline' or data: inside script-src, overly broad sources such as https: inside object-src or script-src, or not restricting the sources for object-src or script-src.", + "score_modifier": -20 + }, + "contribute": { + "expectation": "contribute-json-only-required-on-mozilla-properties", + "name": "contribute", + "output": { + "data": null + }, + "pass": true, + "result": "contribute-json-only-required-on-mozilla-properties", + "score_description": "Contribute.json isn't required on websites that don't belong to Mozilla", + "score_modifier": 0 + }, + "cookies": { + "expectation": "cookies-secure-with-httponly-sessions", + "name": "cookies", + "output": { + "data": null, + "sameSite": null + }, + "pass": true, + "result": "cookies-not-found", + "score_description": "No cookies detected", + "score_modifier": 0 + }, + "cross-origin-resource-sharing": { + "expectation": "cross-origin-resource-sharing-not-implemented", + "name": "cross-origin-resource-sharing", + "output": { + "data": { + "acao": null, + "clientaccesspolicy": null, + "crossdomain": null + } + }, + "pass": true, + "result": "cross-origin-resource-sharing-not-implemented", + "score_description": "Content is not visible via cross-origin resource sharing (CORS) files or headers", + "score_modifier": 0 + }, + "public-key-pinning": { + "expectation": "hpkp-not-implemented", + "name": "public-key-pinning", + "output": { + "data": null, + "includeSubDomains": false, + "max-age": null, + "numPins": null, + "preloaded": false + }, + "pass": true, + "result": "hpkp-not-implemented", + "score_description": "HTTP Public Key Pinning (HPKP) header not implemented", + "score_modifier": 0 + }, + "redirection": { + "expectation": "redirection-to-https", + "name": "redirection", + "output": { + "destination": "https://vae.gouv.fr/", + "redirects": true, + "route": [ + "http://vae.gouv.fr/", + "https://vae.gouv.fr/" + ], + "status_code": 200 + }, + "pass": true, + "result": "redirection-to-https", + "score_description": "Initial redirection is to HTTPS on same host, final destination is HTTPS", + "score_modifier": 0 + }, + "referrer-policy": { + "expectation": "referrer-policy-private", + "name": "referrer-policy", + "output": { + "data": null, + "http": false, + "meta": false + }, + "pass": true, + "result": "referrer-policy-not-implemented", + "score_description": "Referrer-Policy header not implemented", + "score_modifier": 0 + }, + "strict-transport-security": { + "expectation": "hsts-implemented-max-age-at-least-six-months", + "name": "strict-transport-security", + "output": { + "data": "max-age=31536000", + "includeSubDomains": false, + "max-age": 31536000, + "preload": false, + "preloaded": false + }, + "pass": true, + "result": "hsts-implemented-max-age-at-least-six-months", + "score_description": "HTTP Strict Transport Security (HSTS) header set to a minimum of six months (15768000)", + "score_modifier": 0 + }, + "subresource-integrity": { + "expectation": "sri-implemented-and-external-scripts-loaded-securely", + "name": "subresource-integrity", + "output": { + "data": {} + }, + "pass": true, + "result": "sri-not-implemented-but-all-scripts-loaded-from-secure-origin", + "score_description": "Subresource Integrity (SRI) not implemented, but all scripts are loaded from a similar origin", + "score_modifier": 0 + }, + "x-content-type-options": { + "expectation": "x-content-type-options-nosniff", + "name": "x-content-type-options", + "output": { + "data": null + }, + "pass": false, + "result": "x-content-type-options-not-implemented", + "score_description": "X-Content-Type-Options header not implemented", + "score_modifier": -5 + }, + "x-frame-options": { + "expectation": "x-frame-options-sameorigin-or-deny", + "name": "x-frame-options", + "output": { + "data": "SAMEORIGIN" + }, + "pass": true, + "result": "x-frame-options-implemented-via-csp", + "score_description": "X-Frame-Options (XFO) implemented via the CSP frame-ancestors directive", + "score_modifier": 5 + }, + "x-xss-protection": { + "expectation": "x-xss-protection-1-mode-block", + "name": "x-xss-protection", + "output": { + "data": null + }, + "pass": false, + "result": "x-xss-protection-not-implemented", + "score_description": "X-XSS-Protection header not implemented", + "score_modifier": -10 + } + } + }, "updownio": null, "nmap": { "host": "vae.gouv.fr", @@ -634786,1121 +632334,6 @@ "dependabot": null, "codescan": null, "testssl": [ - { - "id": "service", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "HTTP" - }, - { - "id": "pre_128cipher", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No 128 cipher limit bug" - }, - { - "id": "SSLv2", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "SSLv3", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "not offered" - }, - { - "id": "TLS1", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_1", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "TLS1_2", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "TLS1_3", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered with final" - }, - { - "id": "ALPN_HTTP2", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "h2" - }, - { - "id": "ALPN", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "http/1.1" - }, - { - "id": "cipherlist_NULL", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_aNULL", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_EXPORT", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_LOW", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-327", - "finding": "not offered" - }, - { - "id": "cipherlist_3DES_IDEA", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_OBSOLETED", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-310", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_NOFS", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not offered" - }, - { - "id": "cipherlist_STRONG_FS", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "cipher_order-tls1_2", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "cipherorder_TLSv1_2", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "cipher_order", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "server" - }, - { - "id": "FS", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "offered" - }, - { - "id": "FS_ciphers", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "FS_ECDHE_curves", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "prime256v1 secp384r1 secp521r1" - }, - { - "id": "TLS_extensions", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" - }, - { - "id": "TLS_session_ticket", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "valid for 300 seconds only (= 30 days" - }, - { - "id": "cert_notBefore", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "2023-12-17 07:28" - }, - { - "id": "cert_notAfter", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "2024-03-16 07:28" - }, - { - "id": "cert_extlifeSpan", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "certificate has no extended life time according to browser forum" - }, - { - "id": "cert_eTLS", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "not present" - }, - { - "id": "cert_crlDistributionPoints", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "cert_ocspURL", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "http://r3.o.lencr.org" - }, - { - "id": "OCSP_stapling", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "LOW", - "finding": "not offered" - }, - { - "id": "cert_mustStapleExtension", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "--" - }, - { - "id": "DNS_CAArecord", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "LOW", - "finding": "--" - }, - { - "id": "certificate_transparency", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "yes (certificate extension)" - }, - { - "id": "certs_countServer", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "3" - }, - { - "id": "certs_list_ordering_problem", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "no" - }, - { - "id": "cert_caIssuers", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "R3 (Let's Encrypt from US)" - }, - { - "id": "intermediate_cert <#1>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#1>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" - }, - { - "id": "intermediate_cert_notBefore <#1>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "2020-09-04 00:00" - }, - { - "id": "intermediate_cert_notAfter <#1>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "2025-09-15 16:00" - }, - { - "id": "intermediate_cert_expiration <#1>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#1>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "R3 <-- ISRG Root X1" - }, - { - "id": "intermediate_cert <#2>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" - }, - { - "id": "intermediate_cert_fingerprintSHA256 <#2>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" - }, - { - "id": "intermediate_cert_notBefore <#2>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "2021-01-20 19:14" - }, - { - "id": "intermediate_cert_notAfter <#2>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "2024-09-30 18:14" - }, - { - "id": "intermediate_cert_expiration <#2>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "ok > 40 days" - }, - { - "id": "intermediate_cert_chain <#2>", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "ISRG Root X1 <-- DST Root CA X3" - }, - { - "id": "intermediate_cert_badOCSP", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "intermediate certificate(s) is/are ok" - }, - { - "id": "HTTP_status_code", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "200 OK ('/')" - }, - { - "id": "HTTP_clock_skew", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0 seconds from localtime" - }, - { - "id": "HTTP_headerTime", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "1704667767" - }, - { - "id": "HSTS_time", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "365 days (=31536000 seconds) > 15552000 seconds" - }, - { - "id": "HSTS_subdomains", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "only for this domain" - }, - { - "id": "HSTS_preload", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "domain is NOT marked for preloading" - }, - { - "id": "HPKP", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No support for HTTP Public Key Pinning" - }, - { - "id": "banner_server", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No Server banner line in header, interesting!" - }, - { - "id": "banner_application", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "X-Powered-By: Next.js" - }, - { - "id": "cookie_count", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "0 at '/'" - }, - { - "id": "X-Frame-Options", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "SAMEORIGIN" - }, - { - "id": "Content-Security-Policy", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "frame-ancestors 'self';" - }, - { - "id": "banner_reverseproxy", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cwe": "CWE-200", - "finding": "--" - }, - { - "id": "heartbleed", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0160", - "cwe": "CWE-119", - "finding": "not vulnerable, no heartbeat extension" - }, - { - "id": "CCS", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-0224", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "ticketbleed", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-9244", - "cwe": "CWE-200", - "finding": "not vulnerable" - }, - { - "id": "ROBOT", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", - "cwe": "CWE-203", - "finding": "not vulnerable, no RSA key transport cipher" - }, - { - "id": "secure_renego", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cwe": "CWE-310", - "finding": "supported" - }, - { - "id": "secure_client_renego", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-1473", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "CRIME_TLS", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2012-4929", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "BREACH", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "MEDIUM", - "cve": "CVE-2013-3587", - "cwe": "CWE-310", - "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" - }, - { - "id": "POODLE_SSL", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-3566", - "cwe": "CWE-310", - "finding": "not vulnerable, no SSLv3" - }, - { - "id": "fallback_SCSV", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "no protocol below TLS 1.2 offered" - }, - { - "id": "SWEET32", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-2183 CVE-2016-6329", - "cwe": "CWE-327", - "finding": "not vulnerable" - }, - { - "id": "FREAK", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-0204", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "DROWN", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "not vulnerable on this host and port" - }, - { - "id": "DROWN_hint", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "cve": "CVE-2016-0800 CVE-2016-0703", - "cwe": "CWE-310", - "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=16581015EB760A09F000DE6171B63866C7C1CE39AA3CD6F35FB6DC63D72ACF80" - }, - { - "id": "LOGJAM", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "not vulnerable, no DH EXPORT ciphers," - }, - { - "id": "LOGJAM-common_primes", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2015-4000", - "cwe": "CWE-310", - "finding": "--" - }, - { - "id": "BEAST", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2011-3389", - "cwe": "CWE-20", - "finding": "not vulnerable, no SSL3 or TLS1" - }, - { - "id": "LUCKY13", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-0169", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "winshock", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2014-6321", - "cwe": "CWE-94", - "finding": "not vulnerable" - }, - { - "id": "RC4", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "cve": "CVE-2013-2566 CVE-2015-2808", - "cwe": "CWE-310", - "finding": "not vulnerable" - }, - { - "id": "clientsimulation-android_60", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" - }, - { - "id": "clientsimulation-android_70", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_81", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-android_90", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_X", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_11", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-android_12", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_79_win10", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-chrome_101_win10", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_66_win81", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-firefox_100_win10", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-ie_6_xp", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_win7", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_8_xp", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win7", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_win81", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-ie_11_winphone81", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-ie_11_win10", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_15_win10", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-edge_101_win10_21h2", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_121_ios_122", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_130_osx_10146", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-safari_154_osx_1231", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java_7u25", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "No connection" - }, - { - "id": "clientsimulation-java_8u161", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-java1102", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-java1703", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-go_1178", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-libressl_283", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_102e", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_110l", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-openssl_111d", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-openssl_303", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "clientsimulation-apple_mail_16_0", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" - }, - { - "id": "clientsimulation-thunderbird_91_9", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" - }, - { - "id": "rating_spec", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" - }, - { - "id": "rating_doc", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" - }, - { - "id": "protocol_support_score", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "100" - }, - { - "id": "protocol_support_score_weighted", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "30" - }, - { - "id": "key_exchange_score", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "90" - }, - { - "id": "key_exchange_score_weighted", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "27" - }, - { - "id": "cipher_strength_score", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "60" - }, - { - "id": "cipher_strength_score_weighted", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "24" - }, - { - "id": "final_score", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "INFO", - "finding": "81" - }, - { - "id": "overall_grade", - "ip": "vae.gouv.fr/80.247.12.255", - "port": "443", - "severity": "OK", - "finding": "A+" - }, { "id": "service", "ip": "vae.gouv.fr/80.247.13.145", @@ -636248,7 +632681,7 @@ "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "OK", - "finding": "68 >= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", @@ -636451,7 +632884,7 @@ "ip": "vae.gouv.fr/80.247.13.145", "port": "443", "severity": "INFO", - "finding": "1704667821" + "finding": "1705270225" }, { "id": "HSTS_time", @@ -637363,7 +633796,7 @@ "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "OK", - "finding": "68 >= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", @@ -637566,7 +633999,7 @@ "ip": "vae.gouv.fr/185.21.194.105", "port": "443", "severity": "INFO", - "finding": "1704667875" + "finding": "1705270324" }, { "id": "HSTS_time", @@ -638478,7 +634911,7 @@ "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "OK", - "finding": "68 >= 30 days" + "finding": "61 >= 30 days" }, { "id": "cert_notBefore", @@ -638681,7 +635114,7 @@ "ip": "vae.gouv.fr/148.253.96.193", "port": "443", "severity": "INFO", - "finding": "1704667930" + "finding": "1705270423" }, { "id": "HSTS_time", @@ -639246,12 +635679,1127 @@ "severity": "OK", "finding": "A+" }, + { + "id": "service", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "HTTP" + }, + { + "id": "pre_128cipher", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No 128 cipher limit bug" + }, + { + "id": "SSLv2", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "SSLv3", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "not offered" + }, + { + "id": "TLS1", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_1", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "TLS1_2", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "TLS1_3", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered with final" + }, + { + "id": "ALPN_HTTP2", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "h2" + }, + { + "id": "ALPN", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "http/1.1" + }, + { + "id": "cipherlist_NULL", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_aNULL", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_EXPORT", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_LOW", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-327", + "finding": "not offered" + }, + { + "id": "cipherlist_3DES_IDEA", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_OBSOLETED", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "cwe": "CWE-310", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_NOFS", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not offered" + }, + { + "id": "cipherlist_STRONG_FS", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "cipher_order-tls1_2", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "cipherorder_TLSv1_2", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "cipher_order", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "server" + }, + { + "id": "FS", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "offered" + }, + { + "id": "FS_ciphers", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "FS_ECDHE_curves", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "prime256v1 secp384r1 secp521r1" + }, + { + "id": "TLS_extensions", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'" + }, + { + "id": "TLS_session_ticket", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "valid for 300 seconds only (= 30 days" + }, + { + "id": "cert_notBefore", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "2023-12-17 07:28" + }, + { + "id": "cert_notAfter", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "2024-03-16 07:28" + }, + { + "id": "cert_extlifeSpan", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "certificate has no extended life time according to browser forum" + }, + { + "id": "cert_eTLS", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "not present" + }, + { + "id": "cert_crlDistributionPoints", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "cert_ocspURL", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "http://r3.o.lencr.org" + }, + { + "id": "OCSP_stapling", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "LOW", + "finding": "not offered" + }, + { + "id": "cert_mustStapleExtension", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "--" + }, + { + "id": "DNS_CAArecord", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "LOW", + "finding": "--" + }, + { + "id": "certificate_transparency", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "yes (certificate extension)" + }, + { + "id": "certs_countServer", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "3" + }, + { + "id": "certs_list_ordering_problem", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "no" + }, + { + "id": "cert_caIssuers", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "R3 (Let's Encrypt from US)" + }, + { + "id": "intermediate_cert <#1>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#1>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "67ADD1166B020AE61B8F5FC96813C04C2AA589960796865572A3C7E737613DFD" + }, + { + "id": "intermediate_cert_notBefore <#1>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "2020-09-04 00:00" + }, + { + "id": "intermediate_cert_notAfter <#1>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "2025-09-15 16:00" + }, + { + "id": "intermediate_cert_expiration <#1>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#1>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "R3 <-- ISRG Root X1" + }, + { + "id": "intermediate_cert <#2>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "-----BEGIN CERTIFICATE-----\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\n-----END CERTIFICATE-----" + }, + { + "id": "intermediate_cert_fingerprintSHA256 <#2>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "6D99FB265EB1C5B3744765FCBC648F3CD8E1BFFAFDC4C2F99B9D47CF7FF1C24F" + }, + { + "id": "intermediate_cert_notBefore <#2>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "2021-01-20 19:14" + }, + { + "id": "intermediate_cert_notAfter <#2>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "2024-09-30 18:14" + }, + { + "id": "intermediate_cert_expiration <#2>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "ok > 40 days" + }, + { + "id": "intermediate_cert_chain <#2>", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "ISRG Root X1 <-- DST Root CA X3" + }, + { + "id": "intermediate_cert_badOCSP", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "intermediate certificate(s) is/are ok" + }, + { + "id": "HTTP_status_code", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "200 OK ('/')" + }, + { + "id": "HTTP_clock_skew", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "0 seconds from localtime" + }, + { + "id": "HTTP_headerTime", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "1705270522" + }, + { + "id": "HSTS_time", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "365 days (=31536000 seconds) > 15552000 seconds" + }, + { + "id": "HSTS_subdomains", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "only for this domain" + }, + { + "id": "HSTS_preload", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "domain is NOT marked for preloading" + }, + { + "id": "HPKP", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No support for HTTP Public Key Pinning" + }, + { + "id": "banner_server", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No Server banner line in header, interesting!" + }, + { + "id": "banner_application", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "X-Powered-By: Next.js" + }, + { + "id": "cookie_count", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "0 at '/'" + }, + { + "id": "X-Frame-Options", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "SAMEORIGIN" + }, + { + "id": "Content-Security-Policy", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "frame-ancestors 'self';" + }, + { + "id": "banner_reverseproxy", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "cwe": "CWE-200", + "finding": "--" + }, + { + "id": "heartbleed", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0160", + "cwe": "CWE-119", + "finding": "not vulnerable, no heartbeat extension" + }, + { + "id": "CCS", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-0224", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "ticketbleed", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-9244", + "cwe": "CWE-200", + "finding": "not vulnerable" + }, + { + "id": "ROBOT", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168", + "cwe": "CWE-203", + "finding": "not vulnerable, no RSA key transport cipher" + }, + { + "id": "secure_renego", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cwe": "CWE-310", + "finding": "supported" + }, + { + "id": "secure_client_renego", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-1473", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "CRIME_TLS", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2012-4929", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "BREACH", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "MEDIUM", + "cve": "CVE-2013-3587", + "cwe": "CWE-310", + "finding": "potentially VULNERABLE, gzip deflate HTTP compression detected - only supplied '/' tested" + }, + { + "id": "POODLE_SSL", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-3566", + "cwe": "CWE-310", + "finding": "not vulnerable, no SSLv3" + }, + { + "id": "fallback_SCSV", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "no protocol below TLS 1.2 offered" + }, + { + "id": "SWEET32", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-2183 CVE-2016-6329", + "cwe": "CWE-327", + "finding": "not vulnerable" + }, + { + "id": "FREAK", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-0204", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "DROWN", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "not vulnerable on this host and port" + }, + { + "id": "DROWN_hint", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "cve": "CVE-2016-0800 CVE-2016-0703", + "cwe": "CWE-310", + "finding": "Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://search.censys.io/search?resource=hosts&virtual_hosts=INCLUDE&q=16581015EB760A09F000DE6171B63866C7C1CE39AA3CD6F35FB6DC63D72ACF80" + }, + { + "id": "LOGJAM", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "not vulnerable, no DH EXPORT ciphers," + }, + { + "id": "LOGJAM-common_primes", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2015-4000", + "cwe": "CWE-310", + "finding": "--" + }, + { + "id": "BEAST", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2011-3389", + "cwe": "CWE-20", + "finding": "not vulnerable, no SSL3 or TLS1" + }, + { + "id": "LUCKY13", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-0169", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "winshock", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2014-6321", + "cwe": "CWE-94", + "finding": "not vulnerable" + }, + { + "id": "RC4", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "cve": "CVE-2013-2566 CVE-2015-2808", + "cwe": "CWE-310", + "finding": "not vulnerable" + }, + { + "id": "clientsimulation-android_60", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256" + }, + { + "id": "clientsimulation-android_70", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_81", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-android_90", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_X", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_11", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-android_12", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_79_win10", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-chrome_101_win10", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_66_win81", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-firefox_100_win10", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-ie_6_xp", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_win7", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_8_xp", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win7", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_win81", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 DHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-ie_11_winphone81", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-ie_11_win10", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_15_win10", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-edge_101_win10_21h2", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_121_ios_122", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_130_osx_10146", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-safari_154_osx_1231", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java_7u25", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "No connection" + }, + { + "id": "clientsimulation-java_8u161", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-java1102", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-java1703", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-go_1178", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-libressl_283", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_102e", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_110l", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-openssl_111d", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-openssl_303", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "clientsimulation-apple_mail_16_0", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384" + }, + { + "id": "clientsimulation-thunderbird_91_9", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "TLSv1.3 TLS_AES_256_GCM_SHA384" + }, + { + "id": "rating_spec", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)" + }, + { + "id": "rating_doc", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide" + }, + { + "id": "protocol_support_score", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "100" + }, + { + "id": "protocol_support_score_weighted", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "30" + }, + { + "id": "key_exchange_score", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "90" + }, + { + "id": "key_exchange_score_weighted", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "27" + }, + { + "id": "cipher_strength_score", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "60" + }, + { + "id": "cipher_strength_score_weighted", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "24" + }, + { + "id": "final_score", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "INFO", + "finding": "81" + }, + { + "id": "overall_grade", + "ip": "vae.gouv.fr/80.247.12.255", + "port": "443", + "severity": "OK", + "finding": "A+" + }, { "id": "scanTime", - "ip": "vae.gouv.fr/148.253.96.193", + "ip": "vae.gouv.fr/80.247.12.255", "port": "443", "severity": "INFO", - "finding": "221" + "finding": "400" } ], "thirdparties": { @@ -639261,18 +636809,18 @@ "content-encoding": "gzip", "content-security-policy": "frame-ancestors 'self';", "content-type": "text/html; charset=utf-8", - "date": "Sun, 07 Jan 2024 22:48:29 GMT", - "etag": "\"6hc115v2r8pbo\"", + "date": "Sun, 14 Jan 2024 22:08:48 GMT", + "etag": "\"e9v07wm6c8pbo\"", "strict-transport-security": "max-age=31536000", "vary": "Accept-Encoding", "x-frame-options": "SAMEORIGIN", "x-powered-by": "Next.js", - "x-request-id": "454927bf-30ef-4735-a71c-404e82e9f296" + "x-request-id": "c9adec24-618b-45ad-9776-564c8baa1e75" }, "endpoints": [ { "hostname": "vae.gouv.fr", - "ip": "80.247.13.145", + "ip": "80.247.12.255", "geoip": { "continent": { "code": "EU", @@ -639557,7 +637105,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 22:33:55", + "@generated": "Sun, 14 Jan 2024 22:07:19", "site": [ { "@name": "https://vae.gouv.fr", @@ -639649,6 +637197,13 @@ "riskdesc": "Informational (Medium)", "desc": "

Base64 encoded data was disclosed by the application/web server. Note: in the interests of performance not all base64 strings in the response were analyzed individually, the entire response should be looked at by the analyst/security team/developer(s).

" }, + { + "name": "Content-Type Header Missing", + "riskcode": "0", + "confidence": "2", + "riskdesc": "Informational (Medium)", + "desc": "

The Content-Type header was either missing or empty.

" + }, { "name": "GraphQL Endpoint Supports Introspection", "riskcode": "0", @@ -639742,7 +637297,7 @@ { "requestedUrl": "https://vae.gouv.fr/", "finalUrl": "https://vae.gouv.fr/", - "fetchTime": "2024-01-07T22:34:32.826Z", + "fetchTime": "2024-01-14T22:08:01.103Z", "runWarnings": [], "categories": { "performance": { @@ -639805,53 +637360,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 5269, + "numericValue": 5387, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 1355, - "firstMeaningfulPaint": 1355, - "largestContentfulPaint": 3977, - "interactive": 5269, - "speedIndex": 3966, - "totalBlockingTime": 287, - "maxPotentialFID": 182, + "firstContentfulPaint": 1361, + "firstMeaningfulPaint": 1361, + "largestContentfulPaint": 4006, + "interactive": 5387, + "speedIndex": 5118, + "totalBlockingTime": 381, + "maxPotentialFID": 225, "cumulativeLayoutShift": 0.31113302930196124, "cumulativeLayoutShiftMainFrame": 0.31113302930196124, "totalCumulativeLayoutShift": 0.31113302930196124, "observedTimeOrigin": 0, - "observedTimeOriginTs": 264627397, + "observedTimeOriginTs": 460158915, "observedNavigationStart": 0, - "observedNavigationStartTs": 264627397, - "observedFirstPaint": 902, - "observedFirstPaintTs": 265529048, - "observedFirstContentfulPaint": 902, - "observedFirstContentfulPaintTs": 265529048, - "observedFirstContentfulPaintAllFrames": 902, - "observedFirstContentfulPaintAllFramesTs": 265529048, - "observedFirstMeaningfulPaint": 902, - "observedFirstMeaningfulPaintTs": 265529048, - "observedLargestContentfulPaint": 1062, - "observedLargestContentfulPaintTs": 265689429, - "observedLargestContentfulPaintAllFrames": 1062, - "observedLargestContentfulPaintAllFramesTs": 265689429, - "observedTraceEnd": 3526, - "observedTraceEndTs": 268153236, - "observedLoad": 1107, - "observedLoadTs": 265734757, - "observedDomContentLoaded": 919, - "observedDomContentLoadedTs": 265546063, + "observedNavigationStartTs": 460158915, + "observedFirstPaint": 1310, + "observedFirstPaintTs": 461468947, + "observedFirstContentfulPaint": 1310, + "observedFirstContentfulPaintTs": 461468947, + "observedFirstContentfulPaintAllFrames": 1310, + "observedFirstContentfulPaintAllFramesTs": 461468947, + "observedFirstMeaningfulPaint": 1310, + "observedFirstMeaningfulPaintTs": 461468947, + "observedLargestContentfulPaint": 1597, + "observedLargestContentfulPaintTs": 461756323, + "observedLargestContentfulPaintAllFrames": 1597, + "observedLargestContentfulPaintAllFramesTs": 461756323, + "observedTraceEnd": 4173, + "observedTraceEndTs": 464331824, + "observedLoad": 1790, + "observedLoadTs": 461949276, + "observedDomContentLoaded": 1426, + "observedDomContentLoadedTs": 461584869, "observedCumulativeLayoutShift": 0.31113302930196124, "observedCumulativeLayoutShiftMainFrame": 0.31113302930196124, "observedTotalCumulativeLayoutShift": 0.31113302930196124, - "observedFirstVisualChange": 861, - "observedFirstVisualChangeTs": 265488397, - "observedLastVisualChange": 1478, - "observedLastVisualChangeTs": 266105397, - "observedSpeedIndex": 1270, - "observedSpeedIndexTs": 265897030 + "observedFirstVisualChange": 1289, + "observedFirstVisualChangeTs": 461447915, + "observedLastVisualChange": 2205, + "observedLastVisualChangeTs": 462363915, + "observedSpeedIndex": 2037, + "observedSpeedIndexTs": 462196178 }, { "lcpInvalidated": false @@ -639873,19 +637428,19 @@ "numScripts": 19, "numStylesheets": 2, "numFonts": 4, - "numTasks": 943, - "numTasksOver10ms": 8, - "numTasksOver25ms": 5, - "numTasksOver50ms": 1, - "numTasksOver100ms": 0, + "numTasks": 962, + "numTasksOver10ms": 9, + "numTasksOver25ms": 4, + "numTasksOver50ms": 2, + "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 81.12700000000001, - "throughput": 16754190.757308776, - "maxRtt": 81.12700000000001, - "maxServerLatency": 4.958999999999989, - "totalByteWeight": 877662, - "totalTaskTime": 429.3769999999987, - "mainDocumentTransferSize": 7775 + "rtt": 148.64499999999998, + "throughput": 12266614.492070679, + "maxRtt": 148.64499999999998, + "maxServerLatency": 11.228000000000009, + "totalByteWeight": 877733, + "totalTaskTime": 491.6269999999989, + "mainDocumentTransferSize": 7784 } ] } @@ -639979,6 +637534,7 @@ "ecoindex": null, "sonarcloud": null, "summary": { + "httpGrade": "B-", "nmapGrade": "A", "nmapOpenPortsCount": 2, "nmapOpenPortsGrade": "A", @@ -640015,7 +637571,7 @@ "http": { "url": "https://selexpert.anje-justice.fr", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 22:49:23 GMT", + "end_time": "Sun, 14 Jan 2024 22:10:15 GMT", "grade": "F", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -640027,17 +637583,17 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 22:49:22 GMT", - "ETag": "W/\"6579590b-d384\"", - "Last-Modified": "Wed, 13 Dec 2023 07:11:07 GMT", + "Date": "Sun, 14 Jan 2024 22:10:14 GMT", + "ETag": "W/\"659e4492-d384\"", + "Last-Modified": "Wed, 10 Jan 2024 07:17:38 GMT", "Server": "nginx/1.25.3", - "Sozu-Id": "01HKK1VKM86EJNFBVAQCV7ZVTX", + "Sozu-Id": "01HM50CZ9KD3MFPSX11BKZCZZ9", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding" }, - "scan_id": 46239572, + "scan_id": 46513920, "score": 20, - "start_time": "Sun, 07 Jan 2024 22:48:41 GMT", + "start_time": "Sun, 14 Jan 2024 22:10:11 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 5, @@ -640670,7 +638226,7 @@ "ip": "selexpert.anje-justice.fr/185.42.117.108", "port": "443", "severity": "OK", - "finding": "42 >= 30 days" + "finding": "35 >= 30 days" }, { "id": "cert_notBefore", @@ -640788,15 +638344,15 @@ "id": "intermediate_cert_notAfter <#1>", "ip": "selexpert.anje-justice.fr/185.42.117.108", "port": "443", - "severity": "OK", + "severity": "MEDIUM", "finding": "2024-02-19 05:23" }, { "id": "intermediate_cert_expiration <#1>", "ip": "selexpert.anje-justice.fr/185.42.117.108", "port": "443", - "severity": "OK", - "finding": "ok > 40 days" + "severity": "MEDIUM", + "finding": "expires <= 40 days" }, { "id": "intermediate_cert_chain <#1>", @@ -640908,14 +638464,14 @@ "ip": "selexpert.anje-justice.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "selexpert.anje-justice.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "1704667847" + "finding": "1705270323" }, { "id": "HSTS", @@ -641471,7 +639027,7 @@ "ip": "selexpert.anje-justice.fr/185.42.117.108", "port": "443", "severity": "INFO", - "finding": "67" + "finding": "102" } ], "thirdparties": { @@ -641487,7 +639043,7 @@ "value": "1", "domain": "selexpert.anje-justice.fr", "path": "/", - "expires": 1704669598, + "expires": 1705272048, "size": 16, "httpOnly": false, "secure": false, @@ -641499,10 +639055,10 @@ }, { "name": "_pk_id.47.3a5f", - "value": "7dabcbb3bf37e252.1704667798.", + "value": "d0503dfdd3711fbc.1705270248.", "domain": "selexpert.anje-justice.fr", "path": "/", - "expires": 1738622998, + "expires": 1739225448, "size": 42, "httpOnly": false, "secure": false, @@ -641521,11 +639077,11 @@ "connection": "keep-alive", "content-encoding": "gzip", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 22:49:57 GMT", - "etag": "W/\"6579590b-d384\"", - "last-modified": "Wed, 13 Dec 2023 07:11:07 GMT", + "date": "Sun, 14 Jan 2024 22:10:46 GMT", + "etag": "W/\"659e4492-d384\"", + "last-modified": "Wed, 10 Jan 2024 07:17:38 GMT", "server": "nginx/1.25.3", - "sozu-id": "01HKK1WNDNTKARKH2TKBMCQ9CK", + "sozu-id": "01HM50DZ1CPQQBH30QJ103YE90", "transfer-encoding": "chunked", "vary": "Accept-Encoding" }, @@ -641784,7 +639340,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 22:48:17", + "@generated": "Sun, 14 Jan 2024 22:09:46", "site": [ { "@name": "https://selexpert.anje-justice.fr", @@ -641948,7 +639504,7 @@ "type": "dns", "host": "selexpert.anje-justice.fr.", "matched-at": "selexpert.anje-justice.fr", - "timestamp": "2024-01-07T22:54:51.62558435Z", + "timestamp": "2024-01-14T22:16:16.187774971Z", "matcher-status": true }, { @@ -641983,7 +639539,7 @@ "extracted-results": [ "clevercloud-1.zone.anje-justice.fr." ], - "timestamp": "2024-01-07T22:54:52.017207469Z", + "timestamp": "2024-01-14T22:16:16.746107796Z", "matcher-status": true }, { @@ -642014,7 +639570,7 @@ "nginx/1.25.3" ], "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:03.189297159Z", + "timestamp": "2024-01-14T22:16:33.201185186Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642041,7 +639597,7 @@ "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:27.068277517Z", + "timestamp": "2024-01-14T22:17:08.881432685Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642073,12 +639629,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.989500829Z", + "timestamp": "2024-01-14T22:17:19.990567197Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642110,12 +639666,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.989551874Z", + "timestamp": "2024-01-14T22:17:19.990609506Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642147,12 +639703,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "permissions-policy", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.989567904Z", + "timestamp": "2024-01-14T22:17:19.990624184Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642184,12 +639740,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.98958719Z", + "timestamp": "2024-01-14T22:17:19.990638631Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642221,12 +639777,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.989601456Z", + "timestamp": "2024-01-14T22:17:19.990650763Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642258,12 +639814,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "referrer-policy", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.989618588Z", + "timestamp": "2024-01-14T22:17:19.990668527Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642295,12 +639851,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "clear-site-data", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.98963021Z", + "timestamp": "2024-01-14T22:17:19.990677894Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642332,12 +639888,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.989641291Z", + "timestamp": "2024-01-14T22:17:19.990686801Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642374,7 +639930,7 @@ "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.989654455Z", + "timestamp": "2024-01-14T22:17:19.990697842Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642406,12 +639962,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.98966773Z", + "timestamp": "2024-01-14T22:17:19.990713391Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642443,12 +639999,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:32.989681315Z", + "timestamp": "2024-01-14T22:17:19.990726605Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr'", "matcher-status": true }, @@ -642488,7 +640044,7 @@ "host": "https://selexpert.anje-justice.fr", "matched-at": "https://selexpert.anje-justice.fr/", "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:55:54.116791828Z", + "timestamp": "2024-01-14T22:17:54.366511449Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: selexpert.anje-justice.fr' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://selexpert.anje-justice.fr/'", "matcher-status": true }, @@ -642519,7 +640075,7 @@ "Let's Encrypt" ], "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:56:15.692370235Z", + "timestamp": "2024-01-14T22:18:27.57461518Z", "matcher-status": true }, { @@ -642549,7 +640105,7 @@ "selexpert.anje-justice.fr" ], "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:56:15.6924914Z", + "timestamp": "2024-01-14T22:18:27.574740474Z", "matcher-status": true }, { @@ -642580,7 +640136,7 @@ "tls12" ], "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:56:20.875815755Z", + "timestamp": "2024-01-14T22:18:29.483489383Z", "matcher-status": true }, { @@ -642611,7 +640167,7 @@ "tls13" ], "ip": "185.42.117.108", - "timestamp": "2024-01-07T22:56:21.051489204Z", + "timestamp": "2024-01-14T22:18:29.853138833Z", "matcher-status": true } ], @@ -642619,7 +640175,7 @@ { "requestedUrl": "https://selexpert.anje-justice.fr/", "finalUrl": "https://selexpert.anje-justice.fr/", - "fetchTime": "2024-01-07T22:48:31.143Z", + "fetchTime": "2024-01-14T22:10:00.154Z", "runWarnings": [], "categories": { "performance": { @@ -642682,53 +640238,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 3921, + "numericValue": 4317, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3546, - "firstMeaningfulPaint": 3771, - "largestContentfulPaint": 5064, - "interactive": 3921, - "speedIndex": 4062, - "totalBlockingTime": 36, - "maxPotentialFID": 140, - "cumulativeLayoutShift": 0.05149252149793837, - "cumulativeLayoutShiftMainFrame": 0.05149252149793837, - "totalCumulativeLayoutShift": 0.05149252149793837, + "firstContentfulPaint": 3537, + "firstMeaningfulPaint": 3762, + "largestContentfulPaint": 4974, + "interactive": 4317, + "speedIndex": 4738, + "totalBlockingTime": 107, + "maxPotentialFID": 176, + "cumulativeLayoutShift": 0.05157919650607638, + "cumulativeLayoutShiftMainFrame": 0.05157919650607638, + "totalCumulativeLayoutShift": 0.05157919650607638, "observedTimeOrigin": 0, - "observedTimeOriginTs": 212672710, + "observedTimeOriginTs": 204678251, "observedNavigationStart": 0, - "observedNavigationStartTs": 212672710, - "observedFirstPaint": 1292, - "observedFirstPaintTs": 213965114, - "observedFirstContentfulPaint": 1292, - "observedFirstContentfulPaintTs": 213965114, - "observedFirstContentfulPaintAllFrames": 1292, - "observedFirstContentfulPaintAllFramesTs": 213965114, - "observedFirstMeaningfulPaint": 1292, - "observedFirstMeaningfulPaintTs": 213965114, - "observedLargestContentfulPaint": 1377, - "observedLargestContentfulPaintTs": 214049439, - "observedLargestContentfulPaintAllFrames": 1377, - "observedLargestContentfulPaintAllFramesTs": 214049439, - "observedTraceEnd": 3885, - "observedTraceEndTs": 216557887, - "observedLoad": 1577, - "observedLoadTs": 214250158, - "observedDomContentLoaded": 974, - "observedDomContentLoadedTs": 213646300, - "observedCumulativeLayoutShift": 0.05149252149793837, - "observedCumulativeLayoutShiftMainFrame": 0.05149252149793837, - "observedTotalCumulativeLayoutShift": 0.05149252149793837, - "observedFirstVisualChange": 1302, - "observedFirstVisualChangeTs": 213974710, - "observedLastVisualChange": 1602, - "observedLastVisualChangeTs": 214274710, - "observedSpeedIndex": 1352, - "observedSpeedIndexTs": 214024772 + "observedNavigationStartTs": 204678251, + "observedFirstPaint": 1801, + "observedFirstPaintTs": 206479133, + "observedFirstContentfulPaint": 1801, + "observedFirstContentfulPaintTs": 206479133, + "observedFirstContentfulPaintAllFrames": 1801, + "observedFirstContentfulPaintAllFramesTs": 206479133, + "observedFirstMeaningfulPaint": 1801, + "observedFirstMeaningfulPaintTs": 206479133, + "observedLargestContentfulPaint": 1939, + "observedLargestContentfulPaintTs": 206617036, + "observedLargestContentfulPaintAllFrames": 1939, + "observedLargestContentfulPaintAllFramesTs": 206617036, + "observedTraceEnd": 4513, + "observedTraceEndTs": 209191301, + "observedLoad": 2204, + "observedLoadTs": 206882571, + "observedDomContentLoaded": 1307, + "observedDomContentLoadedTs": 205985159, + "observedCumulativeLayoutShift": 0.05157919650607638, + "observedCumulativeLayoutShiftMainFrame": 0.05157919650607638, + "observedTotalCumulativeLayoutShift": 0.05157919650607638, + "observedFirstVisualChange": 1813, + "observedFirstVisualChangeTs": 206491251, + "observedLastVisualChange": 2230, + "observedLastVisualChangeTs": 206908251, + "observedSpeedIndex": 1882, + "observedSpeedIndexTs": 206560571 }, { "lcpInvalidated": false @@ -642750,19 +640306,19 @@ "numScripts": 5, "numStylesheets": 3, "numFonts": 6, - "numTasks": 703, - "numTasksOver10ms": 3, - "numTasksOver25ms": 2, + "numTasks": 702, + "numTasksOver10ms": 4, + "numTasksOver25ms": 3, "numTasksOver50ms": 1, "numTasksOver100ms": 0, "numTasksOver500ms": 0, - "rtt": 80.73400000000001, - "throughput": 6736646.790154451, - "maxRtt": 83.73899999999999, - "maxServerLatency": 3.6199999999999903, - "totalByteWeight": 637179, - "totalTaskTime": 265.36199999999934, - "mainDocumentTransferSize": 10774 + "rtt": 135.059, + "throughput": 5861157.510233236, + "maxRtt": 145.005, + "maxServerLatency": 2.9949999999999477, + "totalByteWeight": 638620, + "totalTaskTime": 319.50599999999906, + "mainDocumentTransferSize": 10772 } ] } @@ -642883,7 +640439,7 @@ "http": { "url": "https://element.preprod.eimis.incubateur.net/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 22:50:03 GMT", + "end_time": "Sun, 14 Jan 2024 22:17:12 GMT", "grade": "B", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -642891,16 +640447,16 @@ "Accept-Ranges": "bytes", "Cache-Control": "no-cache", "Connection": "keep-alive", - "Content-Length": "7550", + "Content-Length": "7534", "Content-Type": "text/html", - "Date": "Sun, 07 Jan 2024 22:50:01 GMT", - "ETag": "\"6516a849-1d7e\"", - "Last-Modified": "Fri, 29 Sep 2023 10:34:49 GMT", - "Strict-Transport-Security": "max-age=15724800; includeSubDomains" + "Date": "Sun, 14 Jan 2024 22:17:11 GMT", + "ETag": "\"6581bf21-1d6e\"", + "Last-Modified": "Tue, 19 Dec 2023 16:04:49 GMT", + "Strict-Transport-Security": "max-age=31536000; includeSubDomains" }, - "scan_id": 46239576, + "scan_id": 46514227, "score": 75, - "start_time": "Sun, 07 Jan 2024 22:49:15 GMT", + "start_time": "Sun, 14 Jan 2024 22:15:08 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 2, @@ -642913,9 +640469,9 @@ "output": { "data": { "child-src": [ + "data:", "*", - "blob:", - "data:" + "blob:" ], "connect-src": [ "*", @@ -642932,36 +640488,36 @@ "'self'" ], "frame-src": [ + "data:", "*", - "blob:", - "data:" + "blob:" ], "img-src": [ + "data:", "*", - "blob:", - "data:" + "blob:" ], "manifest-src": [ "'self'" ], "media-src": [ + "data:", "*", - "blob:", - "data:" + "blob:" ], "script-src": [ - "https://www.recaptcha.net/recaptcha/", "https://www.gstatic.com/recaptcha/", "'wasm-unsafe-eval'", + "https://www.recaptcha.net/recaptcha/", "'self'" ], "style-src": [ - "'unsafe-inline'", - "'self'" + "'self'", + "'unsafe-inline'" ], "worker-src": [ - "blob:", - "'self'" + "'self'", + "blob:" ] }, "http": false, @@ -643073,9 +640629,9 @@ "expectation": "hsts-implemented-max-age-at-least-six-months", "name": "strict-transport-security", "output": { - "data": "max-age=15724800; includeSubDomains", + "data": "max-age=31536000; includeSubDomains", "includeSubDomains": true, - "max-age": 15724800, + "max-age": 31536000, "preload": false, "preloaded": false }, @@ -643505,7 +641061,7 @@ "ip": "element.preprod.eimis.incubateur.net/162.19.108.95", "port": "443", "severity": "OK", - "finding": "37 >= 30 days" + "finding": "30 >= 30 days" }, { "id": "cert_notBefore", @@ -643708,14 +641264,14 @@ "ip": "element.preprod.eimis.incubateur.net/162.19.108.95", "port": "443", "severity": "INFO", - "finding": "1704667873" + "finding": "1705270719" }, { "id": "HSTS_time", "ip": "element.preprod.eimis.incubateur.net/162.19.108.95", "port": "443", "severity": "OK", - "finding": "182 days (=15724800 seconds) > 15552000 seconds" + "finding": "365 days (=31536000 seconds) > 15552000 seconds" }, { "id": "HSTS_subdomains", @@ -644271,7 +641827,7 @@ "ip": "element.preprod.eimis.incubateur.net/162.19.108.95", "port": "443", "severity": "INFO", - "finding": "52" + "finding": "64" } ], "thirdparties": { @@ -644285,12 +641841,12 @@ "headers": { "accept-ranges": "bytes", "cache-control": "no-cache", - "content-length": "7550", + "content-length": "7534", "content-type": "text/html", - "date": "Sun, 07 Jan 2024 22:50:31 GMT", - "etag": "\"6516a849-1d7e\"", - "last-modified": "Fri, 29 Sep 2023 10:34:49 GMT", - "strict-transport-security": "max-age=15724800; includeSubDomains" + "date": "Sun, 14 Jan 2024 22:17:47 GMT", + "etag": "\"6581bf21-1d6e\"", + "last-modified": "Tue, 19 Dec 2023 16:04:49 GMT", + "strict-transport-security": "max-age=31536000; includeSubDomains" }, "endpoints": [ { @@ -644351,47 +641907,13 @@ }, { "hostname": "vector.im", - "ip": "172.67.144.66", + "ip": "104.21.28.52", "geoip": { - "continent": { - "code": "NA", - "geoname_id": 6255149, - "names": { - "de": "Nordamerika", - "en": "North America", - "es": "Norteamérica", - "fr": "Amérique du Nord", - "ja": "北アメリカ", - "pt-BR": "América do Norte", - "ru": "Северная Америка", - "zh-CN": "北美洲" - } - }, - "country": { - "geoname_id": 6252001, - "iso_code": "US", - "names": { - "de": "Vereinigte Staaten", - "en": "United States", - "es": "Estados Unidos", - "fr": "États Unis", - "ja": "アメリカ", - "pt-BR": "EUA", - "ru": "США", - "zh-CN": "美国" - } - }, - "location": { - "accuracy_radius": 1000, - "latitude": 37.751, - "longitude": -97.822, - "time_zone": "America/Chicago" - }, "registered_country": { "geoname_id": 6252001, "iso_code": "US", "names": { - "de": "Vereinigte Staaten", + "de": "USA", "en": "United States", "es": "Estados Unidos", "fr": "États Unis", @@ -644408,8 +641930,7 @@ "wappalyzer": { "urls": { "https://element.preprod.eimis.incubateur.net/": { - "status": 200, - "error": "Navigation timeout of 10000 ms exceeded (https://element.preprod.eimis.incubateur.net/)" + "status": 200 } }, "technologies": [ @@ -644453,26 +641974,40 @@ ] }, { - "slug": "web-vitals", - "name": "web-vitals", - "description": "The web-vitals JavaScript is a tiny, modular library for measuring all the web vitals metrics on real users.", + "slug": "element", + "name": "Element", + "description": "Element is a Matrix-based end-to-end encrypted messenger and secure collaboration app.", "confidence": 100, "version": null, - "icon": "web-vitals.svg", - "website": "https://github.com/GoogleChrome/web-vitals", + "icon": "elementio.svg", + "website": "https://element.io", "cpe": null, + "categories": [ + { + "id": 52, + "slug": "live-chat", + "name": "Live chat" + } + ], + "rootPath": true + }, + { + "slug": "lodash", + "name": "Lodash", + "description": "Lodash is a JavaScript library which provides utility functions for common programming tasks using the functional programming paradigm.", + "confidence": 100, + "version": "4.17.21", + "icon": "Lodash.svg", + "website": "https://www.lodash.com", + "cpe": "cpe:2.3:a:lodash:lodash:*:*:*:*:*:*:*:*", "categories": [ { "id": 59, "slug": "javascript-libraries", "name": "JavaScript libraries" - }, - { - "id": 78, - "slug": "rum", - "name": "RUM" } - ] + ], + "rootPath": true }, { "slug": "recaptcha", @@ -644508,13 +642043,83 @@ } ], "rootPath": true + }, + { + "slug": "webpack", + "name": "Webpack", + "description": "Webpack is an open-source JavaScript module bundler.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] + }, + { + "slug": "pwa", + "name": "PWA", + "description": "Progressive Web Apps (PWAs) are web apps built and enhanced with modern APIs to deliver enhanced capabilities, reliability, and installability while reaching anyone, anywhere, on any device, all with a single codebase.", + "confidence": 100, + "version": null, + "icon": "PWA.svg", + "website": "https://web.dev/progressive-web-apps/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "open-graph", + "name": "Open Graph", + "description": "Open Graph is a protocol that is used to integrate any web page into the social graph.", + "confidence": 100, + "version": null, + "icon": "Open Graph.png", + "website": "https://ogp.me", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ], + "rootPath": true + }, + { + "slug": "module-federation", + "name": "Module Federation", + "description": "Module Federation is a webpack technology for dynamically loading parts of other independently deployed builds.", + "confidence": 50, + "version": null, + "icon": "Webpack.svg", + "website": "https://webpack.js.org/concepts/module-federation/", + "cpe": null, + "categories": [ + { + "id": 19, + "slug": "miscellaneous", + "name": "Miscellaneous" + } + ] } ] }, "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 22:48:50", + "@generated": "Sun, 14 Jan 2024 22:14:43", "site": [ { "@name": "https://element.preprod.eimis.incubateur.net", @@ -644668,22 +642273,22 @@ }, "nuclei": [ { - "template": "dns/txt-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", - "template-id": "txt-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", + "template": "dns/caa-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", + "template-id": "caa-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", "info": { - "name": "DNS TXT Record Detected", + "name": "CAA Record", "author": [ "pdteam" ], "tags": [ "dns", - "txt" + "caa" ], - "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", + "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", "reference": [ - "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" + "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" ], "severity": "info", "metadata": { @@ -644699,29 +642304,26 @@ "type": "dns", "host": "element.preprod.eimis.incubateur.net.", "matched-at": "element.preprod.eimis.incubateur.net", - "extracted-results": [ - "\"heritage=external-dns,external-dns/owner=preprod,external-dns/resource=ingress/element-web/element-web\"" - ], - "timestamp": "2024-01-07T22:52:21.646308328Z", + "timestamp": "2024-01-14T22:19:53.717183565Z", "matcher-status": true }, { - "template": "dns/caa-fingerprint.yaml", - "template-url": "https://templates.nuclei.sh/public/caa-fingerprint", - "template-id": "caa-fingerprint", - "template-path": "/home/runner/nuclei-templates/dns/caa-fingerprint.yaml", + "template": "dns/txt-fingerprint.yaml", + "template-url": "https://templates.nuclei.sh/public/txt-fingerprint", + "template-id": "txt-fingerprint", + "template-path": "/home/runner/nuclei-templates/dns/txt-fingerprint.yaml", "info": { - "name": "CAA Record", + "name": "DNS TXT Record Detected", "author": [ "pdteam" ], "tags": [ "dns", - "caa" + "txt" ], - "description": "A CAA record was discovered. A CAA record is used to specify which certificate authorities (CAs) are allowed to issue certificates for a domain.", + "description": "A DNS TXT record was detected. The TXT record lets a domain admin leave notes on a DNS server.", "reference": [ - "https://support.dnsimple.com/articles/caa-record/#whats-a-caa-record" + "https://www.netspi.com/blog/technical/network-penetration-testing/analyzing-dns-txt-records-to-fingerprint-service-providers/" ], "severity": "info", "metadata": { @@ -644737,7 +642339,10 @@ "type": "dns", "host": "element.preprod.eimis.incubateur.net.", "matched-at": "element.preprod.eimis.incubateur.net", - "timestamp": "2024-01-07T22:52:22.652612908Z", + "extracted-results": [ + "\"heritage=external-dns,external-dns/owner=preprod,external-dns/resource=ingress/element-web/element-web\"" + ], + "timestamp": "2024-01-14T22:19:54.438029795Z", "matcher-status": true }, { @@ -644768,12 +642373,12 @@ "max-request": 1 } }, - "matcher-name": "x-content-type-options", + "matcher-name": "permissions-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231149701Z", + "timestamp": "2024-01-14T22:20:44.822822739Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -644805,12 +642410,12 @@ "max-request": 1 } }, - "matcher-name": "x-permitted-cross-domain-policies", + "matcher-name": "x-content-type-options", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231198722Z", + "timestamp": "2024-01-14T22:20:44.822879324Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -644842,12 +642447,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-embedder-policy", + "matcher-name": "referrer-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231215974Z", + "timestamp": "2024-01-14T22:20:44.822890405Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -644879,12 +642484,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-opener-policy", + "matcher-name": "clear-site-data", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231237504Z", + "timestamp": "2024-01-14T22:20:44.822902748Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -644916,12 +642521,12 @@ "max-request": 1 } }, - "matcher-name": "cross-origin-resource-policy", + "matcher-name": "cross-origin-opener-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231253634Z", + "timestamp": "2024-01-14T22:20:44.822925661Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -644953,12 +642558,12 @@ "max-request": 1 } }, - "matcher-name": "x-frame-options", + "matcher-name": "cross-origin-resource-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231271768Z", + "timestamp": "2024-01-14T22:20:44.822937964Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -644990,12 +642595,12 @@ "max-request": 1 } }, - "matcher-name": "permissions-policy", + "matcher-name": "content-security-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231288559Z", + "timestamp": "2024-01-14T22:20:44.822950818Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -645027,12 +642632,12 @@ "max-request": 1 } }, - "matcher-name": "referrer-policy", + "matcher-name": "x-frame-options", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231305841Z", + "timestamp": "2024-01-14T22:20:44.822966237Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -645064,12 +642669,12 @@ "max-request": 1 } }, - "matcher-name": "clear-site-data", + "matcher-name": "x-permitted-cross-domain-policies", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231322542Z", + "timestamp": "2024-01-14T22:20:44.822980814Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -645101,12 +642706,12 @@ "max-request": 1 } }, - "matcher-name": "content-security-policy", + "matcher-name": "cross-origin-embedder-policy", "type": "http", "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:06.231338121Z", + "timestamp": "2024-01-14T22:20:44.823001132Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -645138,10 +642743,10 @@ "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/version", "extracted-results": [ - "1.11.45" + "1.11.52" ], "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:26.744012685Z", + "timestamp": "2024-01-14T22:21:08.623052042Z", "curl-command": "curl -X 'GET' -H 'Accept: */*' -H 'Accept-Language: en' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/version'", "matcher-status": true }, @@ -645181,7 +642786,7 @@ "host": "https://element.preprod.eimis.incubateur.net/", "matched-at": "https://element.preprod.eimis.incubateur.net/", "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:28.99741188Z", + "timestamp": "2024-01-14T22:21:11.422548223Z", "curl-command": "curl -X 'POST' -d '_=' -H 'Content-Type: application/x-www-form-urlencoded' -H 'Host: element.preprod.eimis.incubateur.net' -H 'User-Agent: Nuclei - Open-source project (github.com/projectdiscovery/nuclei)' 'https://element.preprod.eimis.incubateur.net/'", "matcher-status": true }, @@ -645212,7 +642817,7 @@ "Let's Encrypt" ], "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:51.034098386Z", + "timestamp": "2024-01-14T22:21:37.16561009Z", "matcher-status": true }, { @@ -645242,7 +642847,7 @@ "element.preprod.eimis.incubateur.net" ], "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:51.034209101Z", + "timestamp": "2024-01-14T22:21:37.165744902Z", "matcher-status": true }, { @@ -645273,7 +642878,7 @@ "tls12" ], "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:52.631706435Z", + "timestamp": "2024-01-14T22:21:38.742736091Z", "matcher-status": true }, { @@ -645304,7 +642909,7 @@ "tls13" ], "ip": "162.19.108.95", - "timestamp": "2024-01-07T22:53:52.845266924Z", + "timestamp": "2024-01-14T22:21:39.10577366Z", "matcher-status": true } ], @@ -645312,7 +642917,7 @@ { "requestedUrl": "https://element.preprod.eimis.incubateur.net/", "finalUrl": "https://element.preprod.eimis.incubateur.net/mobile_guide/", - "fetchTime": "2024-01-07T22:49:04.234Z", + "fetchTime": "2024-01-14T22:14:57.355Z", "runWarnings": [ "The page may not be loading as expected because your test URL (https://element.preprod.eimis.incubateur.net/) was redirected to https://element.preprod.eimis.incubateur.net/mobile_guide/. Try testing the second URL directly." ], @@ -645377,53 +642982,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 47236, + "numericValue": 49003, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 38535, - "firstMeaningfulPaint": 38535, - "largestContentfulPaint": 47709, - "interactive": 47236, - "speedIndex": 38535, - "totalBlockingTime": 328, - "maxPotentialFID": 277, + "firstContentfulPaint": 39922, + "firstMeaningfulPaint": 39922, + "largestContentfulPaint": 49356, + "interactive": 49003, + "speedIndex": 39922, + "totalBlockingTime": 488, + "maxPotentialFID": 472, "cumulativeLayoutShift": 0.04476708306206598, "cumulativeLayoutShiftMainFrame": 0.04476708306206598, "totalCumulativeLayoutShift": 0.04476708306206598, "observedTimeOrigin": 0, - "observedTimeOriginTs": 353673662, + "observedTimeOriginTs": 214017142, "observedNavigationStart": 0, - "observedNavigationStartTs": 353673662, - "observedFirstPaint": 189, - "observedFirstPaintTs": 353862679, - "observedFirstContentfulPaint": 189, - "observedFirstContentfulPaintTs": 353862679, - "observedFirstContentfulPaintAllFrames": 189, - "observedFirstContentfulPaintAllFramesTs": 353862679, - "observedFirstMeaningfulPaint": 189, - "observedFirstMeaningfulPaintTs": 353862679, - "observedLargestContentfulPaint": 311, - "observedLargestContentfulPaintTs": 353984338, - "observedLargestContentfulPaintAllFrames": 311, - "observedLargestContentfulPaintAllFramesTs": 353984338, - "observedTraceEnd": 2653, - "observedTraceEndTs": 356326452, - "observedLoad": 202, - "observedLoadTs": 353876044, - "observedDomContentLoaded": 202, - "observedDomContentLoadedTs": 353875980, + "observedNavigationStartTs": 214017142, + "observedFirstPaint": 165, + "observedFirstPaintTs": 214182338, + "observedFirstContentfulPaint": 165, + "observedFirstContentfulPaintTs": 214182338, + "observedFirstContentfulPaintAllFrames": 165, + "observedFirstContentfulPaintAllFramesTs": 214182338, + "observedFirstMeaningfulPaint": 165, + "observedFirstMeaningfulPaintTs": 214182338, + "observedLargestContentfulPaint": 341, + "observedLargestContentfulPaintTs": 214358553, + "observedLargestContentfulPaintAllFrames": 341, + "observedLargestContentfulPaintAllFramesTs": 214358553, + "observedTraceEnd": 2682, + "observedTraceEndTs": 216699488, + "observedLoad": 223, + "observedLoadTs": 214239950, + "observedDomContentLoaded": 223, + "observedDomContentLoadedTs": 214239845, "observedCumulativeLayoutShift": 0.04476708306206598, "observedCumulativeLayoutShiftMainFrame": 0.04476708306206598, "observedTotalCumulativeLayoutShift": 0.04476708306206598, - "observedFirstVisualChange": 195, - "observedFirstVisualChangeTs": 353868662, - "observedLastVisualChange": 312, - "observedLastVisualChangeTs": 353985662, - "observedSpeedIndex": 204, - "observedSpeedIndexTs": 353877344 + "observedFirstVisualChange": 174, + "observedFirstVisualChangeTs": 214191142, + "observedLastVisualChange": 340, + "observedLastVisualChangeTs": 214357142, + "observedSpeedIndex": 186, + "observedSpeedIndexTs": 214203098 }, { "lcpInvalidated": false @@ -645445,19 +643050,19 @@ "numScripts": 9, "numStylesheets": 1, "numFonts": 8, - "numTasks": 1116, + "numTasks": 880, "numTasksOver10ms": 5, "numTasksOver25ms": 3, - "numTasksOver50ms": 2, - "numTasksOver100ms": 1, + "numTasksOver50ms": 3, + "numTasksOver100ms": 2, "numTasksOver500ms": 0, - "rtt": 87.999, - "throughput": 94407806.65492643, - "maxRtt": 87.999, - "maxServerLatency": 9.087999999999994, - "totalByteWeight": 9486610, - "totalTaskTime": 352.75099999999827, - "mainDocumentTransferSize": 7759 + "rtt": 99.652, + "throughput": 88576075.59486477, + "maxRtt": 99.652, + "maxServerLatency": 5.683000000000007, + "totalByteWeight": 9777506, + "totalTaskTime": 481.2789999999993, + "mainDocumentTransferSize": 7743 } ] } @@ -645572,7 +643177,7 @@ "http": { "url": "https://world.openfoodfacts.org/", "algorithm_version": 2, - "end_time": "Sun, 07 Jan 2024 23:13:21 GMT", + "end_time": "Sun, 14 Jan 2024 22:34:34 GMT", "grade": "C", "hidden": false, "likelihood_indicator": "MEDIUM", @@ -645580,20 +643185,20 @@ "Connection": "keep-alive", "Content-Encoding": "gzip", "Content-Type": "text/html; charset=UTF-8", - "Date": "Sun, 07 Jan 2024 23:13:18 GMT", - "Expires": "Sat, 06 Jan 2024 23:13:18 GMT", + "Date": "Sun, 14 Jan 2024 22:34:31 GMT", + "Expires": "Sat, 13 Jan 2024 22:34:31 GMT", "Server": "nginx/1.18.0", "Strict-Transport-Security": "max-age=63072000", "Transfer-Encoding": "chunked", "Vary": "Accept-Encoding", "X-Content-Type-Options": "nosniff, nosniff", "X-Download-Options": "noopen", - "X-Request-ID": "rzSYRHc8cOSuxCJG", + "X-Request-ID": "qPXiYKCE6F33XMk2", "X-XSS-Protection": "1; mode=block" }, - "scan_id": 46239840, + "scan_id": 46515606, "score": 50, - "start_time": "Sun, 07 Jan 2024 23:08:33 GMT", + "start_time": "Sun, 14 Jan 2024 22:34:26 GMT", "state": "FINISHED", "status_code": 200, "tests_failed": 3, @@ -645773,8 +643378,8 @@ "version": "8.4p1 Debian 5+deb11u2", "vulnerabilities": [ { - "id": "PRION:CVE-2016-20012", "type": "prion", + "id": "PRION:CVE-2016-20012", "cvss": "5.0", "is_exploit": "false" } @@ -646187,7 +643792,7 @@ "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "OK", - "finding": "82 >= 30 days" + "finding": "75 >= 30 days" }, { "id": "cert_notBefore", @@ -646390,14 +643995,14 @@ "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "0 seconds from localtime" + "finding": "-1 seconds from localtime" }, { "id": "HTTP_headerTime", "ip": "world.openfoodfacts.org/213.36.253.214", "port": "443", "severity": "INFO", - "finding": "1704669286" + "finding": "1705271757" }, { "id": "HSTS_time", @@ -647006,14 +644611,14 @@ "headers": { "content-encoding": "gzip", "content-type": "text/html; charset=UTF-8", - "date": "Sun, 07 Jan 2024 23:13:52 GMT", - "expires": "Sat, 06 Jan 2024 23:13:52 GMT", + "date": "Sun, 14 Jan 2024 22:35:02 GMT", + "expires": "Sat, 13 Jan 2024 22:35:02 GMT", "server": "nginx/1.18.0", "strict-transport-security": "max-age=63072000", "vary": "Accept-Encoding", "x-content-type-options": "nosniff\nnosniff", "x-download-options": "noopen", - "x-request-id": "JuTIfqAVB3kjKjVP", + "x-request-id": "kpNU14OBJLA8HiDK", "x-xss-protection": "1; mode=block" }, "endpoints": [ @@ -647272,7 +644877,7 @@ "zap": { "@programName": "ZAP", "@version": "2.14.0", - "@generated": "Sun, 7 Jan 2024 23:07:35", + "@generated": "Sun, 14 Jan 2024 22:33:19", "site": [ { "@name": "https://world.openfoodfacts.org", @@ -647429,7 +645034,7 @@ { "requestedUrl": "https://world.openfoodfacts.org/", "finalUrl": "https://world.openfoodfacts.org/", - "fetchTime": "2024-01-07T23:08:14.407Z", + "fetchTime": "2024-01-14T22:34:07.596Z", "runWarnings": [], "categories": { "performance": { @@ -647440,7 +645045,7 @@ "snapshot" ], "id": "performance", - "score": 0.2528535842895508 + "score": 0.2501857757568359 }, "accessibility": { "title": "Accessibility", @@ -647492,53 +645097,53 @@ "description": "Collects all available metrics.", "score": null, "scoreDisplayMode": "informative", - "numericValue": 9877, + "numericValue": 9332, "numericUnit": "millisecond", "details": { "type": "debugdata", "items": [ { - "firstContentfulPaint": 3314, - "firstMeaningfulPaint": 3412, - "largestContentfulPaint": 4440, - "interactive": 9877, - "speedIndex": 7808, - "totalBlockingTime": 474, - "maxPotentialFID": 572, + "firstContentfulPaint": 3339, + "firstMeaningfulPaint": 3386, + "largestContentfulPaint": 3566, + "interactive": 9332, + "speedIndex": 7576, + "totalBlockingTime": 353, + "maxPotentialFID": 621, "cumulativeLayoutShift": 0.04070175806681316, "cumulativeLayoutShiftMainFrame": 0.04070175806681316, "totalCumulativeLayoutShift": 0.04070175806681316, "observedTimeOrigin": 0, - "observedTimeOriginTs": 283733231, + "observedTimeOriginTs": 302465238, "observedNavigationStart": 0, - "observedNavigationStartTs": 283733231, - "observedFirstPaint": 2072, - "observedFirstPaintTs": 285805033, - "observedFirstContentfulPaint": 2072, - "observedFirstContentfulPaintTs": 285805033, - "observedFirstContentfulPaintAllFrames": 2072, - "observedFirstContentfulPaintAllFramesTs": 285805033, - "observedFirstMeaningfulPaint": 2175, - "observedFirstMeaningfulPaintTs": 285908514, - "observedLargestContentfulPaint": 2072, - "observedLargestContentfulPaintTs": 285805033, - "observedLargestContentfulPaintAllFrames": 2072, - "observedLargestContentfulPaintAllFramesTs": 285805033, - "observedTraceEnd": 5219, - "observedTraceEndTs": 288951935, - "observedLoad": 2911, - "observedLoadTs": 286644275, - "observedDomContentLoaded": 2386, - "observedDomContentLoadedTs": 286119699, + "observedNavigationStartTs": 302465238, + "observedFirstPaint": 1983, + "observedFirstPaintTs": 304448105, + "observedFirstContentfulPaint": 1983, + "observedFirstContentfulPaintTs": 304448105, + "observedFirstContentfulPaintAllFrames": 1983, + "observedFirstContentfulPaintAllFramesTs": 304448105, + "observedFirstMeaningfulPaint": 2024, + "observedFirstMeaningfulPaintTs": 304489316, + "observedLargestContentfulPaint": 1983, + "observedLargestContentfulPaintTs": 304448105, + "observedLargestContentfulPaintAllFrames": 1983, + "observedLargestContentfulPaintAllFramesTs": 304448105, + "observedTraceEnd": 5183, + "observedTraceEndTs": 307648726, + "observedLoad": 2873, + "observedLoadTs": 305338389, + "observedDomContentLoaded": 2319, + "observedDomContentLoadedTs": 304784496, "observedCumulativeLayoutShift": 0.04070175806681316, "observedCumulativeLayoutShiftMainFrame": 0.04070175806681316, "observedTotalCumulativeLayoutShift": 0.04070175806681316, - "observedFirstVisualChange": 2022, - "observedFirstVisualChangeTs": 285755231, - "observedLastVisualChange": 2788, - "observedLastVisualChangeTs": 286521231, - "observedSpeedIndex": 2086, - "observedSpeedIndexTs": 285819400 + "observedFirstVisualChange": 1972, + "observedFirstVisualChangeTs": 304437238, + "observedLastVisualChange": 2755, + "observedLastVisualChangeTs": 305220238, + "observedSpeedIndex": 2034, + "observedSpeedIndexTs": 304499153 }, { "lcpInvalidated": false @@ -647560,19 +645165,19 @@ "numScripts": 13, "numStylesheets": 3, "numFonts": 2, - "numTasks": 2622, - "numTasksOver10ms": 8, - "numTasksOver25ms": 6, - "numTasksOver50ms": 4, + "numTasks": 2564, + "numTasksOver10ms": 10, + "numTasksOver25ms": 5, + "numTasksOver50ms": 2, "numTasksOver100ms": 1, "numTasksOver500ms": 0, - "rtt": 82.68499999999999, - "throughput": 19309678.787716996, - "maxRtt": 85.006, - "maxServerLatency": 171.69099999999997, - "totalByteWeight": 2344335, - "totalTaskTime": 881.5550000000034, - "mainDocumentTransferSize": 82668 + "rtt": 81.411, + "throughput": 19641185.05624637, + "maxRtt": 85.52, + "maxServerLatency": 220.324, + "totalByteWeight": 2358322, + "totalTaskTime": 822.6520000000044, + "mainDocumentTransferSize": 83988 } ] } @@ -647632,7 +645237,7 @@ "cookiesCount": 0, "trackersGrade": "A", "trackersCount": 0, - "lighthouse_performance": 0.2528535842895508, + "lighthouse_performance": 0.2501857757568359, "lighthouse_performanceGrade": "E", "lighthouse_accessibility": 0.87, "lighthouse_accessibilityGrade": "A",